Update pipelinescan.yml - bump action versions

tjarrettveracode · web-flow · commit 444f4170d864 · 2023-07-26T15:32:38.000-04:00
diff --git a/.github/workflows/pipelinescan.yml b/.github/workflows/pipelinescan.yml
@@ -26,7 +26,7 @@ jobs:
     # The type of runner that the job will run on
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v2
+    - uses: actions/checkout@v3
         
   # zip the project and move it to a staging directory
     - name: Zip Project
@@ -35,7 +35,7 @@ jobs:
         build-name: project.zip
       
     - name: Archive package
-      uses: actions/upload-artifact@v2
+      uses: actions/upload-artifact@v3
       with:
         name: CodePackage
         path: project.zip
@@ -49,7 +49,7 @@ jobs:
 
     steps:
     - name: Retrieve artifact
-      uses: actions/download-artifact@v2
+      uses: actions/download-artifact@v3
       with:
         name: CodePackage
         path: /github/home
@@ -61,7 +61,7 @@ jobs:
         java -jar /opt/veracode/pipeline-scan.jar --veracode_api_id="${{secrets.VERACODE_API_ID}}" --veracode_api_key="${{secrets.VERACODE_API_KEY}}" --fail_on_severity="Very High, High" --file="project.zip" --app_id="${{secrets.VERACODE_APP_ID}}" --json_output_file="results.json"
       continue-on-error: true
 
-    - uses: actions/upload-artifact@v2
+    - uses: actions/upload-artifact@v3
       with:
         name: ScanResults
         path: /github/home/results.json
@@ -73,7 +73,7 @@ jobs:
     steps:
 
     - name: Retrieve results
-      uses: actions/download-artifact@v2
+      uses: actions/download-artifact@v3
       with:
         name: ScanResults
 
