Skip to content

Commit 2a7595a

Browse files
Bump the actions group across 1 directory with 3 updates (#188)
Bumps the actions group with 3 updates in the / directory: [step-security/harden-runner](https://github.com/step-security/harden-runner), [github/codeql-action](https://github.com/github/codeql-action) and [codecov/codecov-action](https://github.com/codecov/codecov-action). Updates `step-security/harden-runner` from 2.10.3 to 2.10.4 - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@c95a14d...cb605e5) Updates `github/codeql-action` from 3.28.1 to 3.28.8 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@b6a472f...dd74661) Updates `codecov/codecov-action` from 5.1.2 to 5.3.1 - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@1e68e06...13ce06b) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent da1853c commit 2a7595a

File tree

7 files changed

+16
-16
lines changed

7 files changed

+16
-16
lines changed

.github/workflows/dependency-review.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ jobs:
2020
runs-on: windows-latest
2121
steps:
2222
- name: Harden Runner
23-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
23+
uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
2424
with:
2525
egress-policy: audit
2626

.github/workflows/nuget_update.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -33,7 +33,7 @@ jobs:
3333
steps:
3434
# Check out the main repo.
3535
- name: Harden Runner
36-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
36+
uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
3737
with:
3838
egress-policy: audit
3939

.github/workflows/ossar-scan.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -36,7 +36,7 @@ jobs:
3636

3737
steps:
3838
- name: Harden Runner
39-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
39+
uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
4040
with:
4141
egress-policy: audit
4242

@@ -81,6 +81,6 @@ jobs:
8181

8282
- name: Upload results to Security tab
8383
if: steps.skip_check.outputs.should_skip != 'true'
84-
uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c
84+
uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a
8585
with:
8686
sarif_file: ${{ steps.ossar.outputs.sarifFile }}

.github/workflows/reusable-build.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -66,7 +66,7 @@ jobs:
6666

6767
steps:
6868
- name: Harden Runner
69-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
69+
uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
7070
with:
7171
egress-policy: audit
7272

@@ -102,7 +102,7 @@ jobs:
102102
103103
- name: Initialize CodeQL
104104
if: inputs.build_codeql == true && steps.skip_check.outputs.should_skip != 'true'
105-
uses: github/codeql-action/init@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c
105+
uses: github/codeql-action/init@dd746615b3b9d728a6a37ca2045b68ca76d4841a
106106
with:
107107
languages: 'cpp'
108108

@@ -208,4 +208,4 @@ jobs:
208208

209209
- name: Perform CodeQL Analysis
210210
if: inputs.build_codeql == true && steps.skip_check.outputs.should_skip != 'true'
211-
uses: github/codeql-action/analyze@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c
211+
uses: github/codeql-action/analyze@dd746615b3b9d728a6a37ca2045b68ca76d4841a

.github/workflows/reusable-test.yml

Lines changed: 6 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -85,7 +85,7 @@ jobs:
8585

8686
steps:
8787
- name: Harden Runner
88-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
88+
uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
8989
with:
9090
egress-policy: audit
9191

@@ -231,7 +231,7 @@ jobs:
231231

232232
- name: Upload Report to Codecov attempt 1
233233
if: (steps.skip_check.outputs.should_skip != 'true') && (steps.check_coverage.outputs.files_exists == 'true')
234-
uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303
234+
uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3
235235
id: upload_code_coverage_report_1
236236
continue-on-error: true
237237
with:
@@ -246,7 +246,7 @@ jobs:
246246

247247
- name: Upload Report to Codecov attempt 2
248248
if: (steps.skip_check.outputs.should_skip != 'true') && (steps.upload_code_coverage_report_1.outcome == 'failure')
249-
uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303
249+
uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3
250250
id: upload_code_coverage_report_2
251251
continue-on-error: true
252252
with:
@@ -261,7 +261,7 @@ jobs:
261261

262262
- name: Upload Report to Codecov attempt 3
263263
if: (steps.skip_check.outputs.should_skip != 'true') && (steps.upload_code_coverage_report_2.outcome == 'failure')
264-
uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303
264+
uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3
265265
id: upload_code_coverage_report_3
266266
continue-on-error: true
267267
with:
@@ -276,7 +276,7 @@ jobs:
276276

277277
- name: Upload Report to Codecov attempt 4
278278
if: (steps.skip_check.outputs.should_skip != 'true') && (steps.upload_code_coverage_report_3.outcome == 'failure')
279-
uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303
279+
uses: codecov/codecov-action@13ce06bfc6bbe3ecf90edbbf1bc32fe5978ca1d3
280280
id: upload_code_coverage_report_4
281281
continue-on-error: true
282282
with:
@@ -359,7 +359,7 @@ jobs:
359359
runs-on: ubuntu-latest
360360
steps:
361361
- name: Harden Runner
362-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
362+
uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
363363
with:
364364
disable-sudo: true
365365
egress-policy: block

.github/workflows/scorecards-analysis.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -33,7 +33,7 @@ jobs:
3333

3434
steps:
3535
- name: Harden Runner
36-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
36+
uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
3737
with:
3838
disable-sudo: true
3939
egress-policy: block
@@ -76,6 +76,6 @@ jobs:
7676
# Upload the results to GitHub's code scanning dashboard.
7777
- name: "Upload to code-scanning"
7878
if: github.ref_name == 'main'
79-
uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c
79+
uses: github/codeql-action/upload-sarif@dd746615b3b9d728a6a37ca2045b68ca76d4841a
8080
with:
8181
sarif_file: results.sarif

.github/workflows/update-docs.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,7 @@ jobs:
3030
steps:
3131

3232
- name: Harden Runner
33-
uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350
33+
uses: step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e
3434
with:
3535
egress-policy: block
3636
allowed-endpoints: >

0 commit comments

Comments
 (0)