Update securitycodescan.yml

lduchosal · web-flow · commit 624fc742986d · 2025-04-05T08:10:32.000+02:00
Fix: update securitycodescan to latest workflow
diff --git a/.github/workflows/securitycodescan.yml b/.github/workflows/securitycodescan.yml
@@ -15,30 +15,27 @@ on:
     # The branches below must be a subset of the branches above
     branches: [ "master" ]
   schedule:
-    - cron: '35 15 * * 1'
-    
-env:
-  DOTNET_ROLL_FORWARD: Major
-  
+    - cron: '34 8 * * 4'
+
 jobs:
   SCS:
     runs-on: windows-latest
     steps:
-      - uses: actions/checkout@master
-      - uses: nuget/setup-nuget@v1
+      - uses: actions/checkout@v4
+      - uses: nuget/setup-nuget@04b0c2b8d1b97922f67eca497d7cf0bf17b8ffe1
       - uses: microsoft/setup-msbuild@v1.0.2
-      
+
       - name: Set up projects for analysis
-        uses: security-code-scan/security-code-scan-add-action@main
-        
-      - name: Restore dependencies	
+        uses: security-code-scan/security-code-scan-add-action@f8ff4f2763ed6f229eded80b1f9af82ae7f32a0d
+
+      - name: Restore dependencies
         run: dotnet restore src
 
       - name: Build
         run: dotnet build --no-restore src
 
       - name: Convert sarif for uploading to GitHub
-        uses: security-code-scan/security-code-scan-results-action@main
+        uses: security-code-scan/security-code-scan-results-action@cdb3d5e639054395e45bf401cba8688fcaf7a687
 
       - name: Upload sarif
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
