Skip to content

Commit 9fb8379

Browse files
dependabot[bot]dependabot[bot]
authored
ci(github-actions): Bump the github-actions group across 1 directory with 3 updates
Bumps the github-actions group with 3 updates in the / directory: [google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml](https://github.com/google/osv-scanner-action), [google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml](https://github.com/google/osv-scanner-action) and [trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog). Updates `google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml` from 2.3.0 to 2.3.1 - [Release notes](https://github.com/google/osv-scanner-action/releases) - [Commits](google/osv-scanner-action@b77c075...375a0e8) Updates `google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml` from 2.3.0 to 2.3.1 - [Release notes](https://github.com/google/osv-scanner-action/releases) - [Commits](google/osv-scanner-action@b77c075...375a0e8) Updates `trufflesecurity/trufflehog` from 3.91.2 to 3.92.3 - [Release notes](https://github.com/trufflesecurity/trufflehog/releases) - [Commits](trufflesecurity/trufflehog@821e8b9...05cccb5) --- updated-dependencies: - dependency-name: google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml dependency-version: 2.3.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml dependency-version: 2.3.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: trufflesecurity/trufflehog dependency-version: 3.92.3 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <[email protected]>
1 parent 342fa05 commit 9fb8379

File tree

1 file changed

+3
-3
lines changed

1 file changed

+3
-3
lines changed

.github/workflows/scans.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -269,7 +269,7 @@ jobs:
269269
security-events: write
270270

271271
if: ${{ github.event_name == 'pull_request' || github.event_name == 'merge_group' }}
272-
uses: google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@b77c075a1235514558f0eb88dbd31e22c45e0cd2 # v2
272+
uses: google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@375a0e8ebdc98e99b02ac4338a724f5750f21213 # v2
273273

274274
osv-scan-push:
275275
permissions:
@@ -278,7 +278,7 @@ jobs:
278278
security-events: write
279279

280280
if: ${{ github.event_name == 'push' || github.event_name == 'schedule' }}
281-
uses: google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@b77c075a1235514558f0eb88dbd31e22c45e0cd2 # v2
281+
uses: google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@375a0e8ebdc98e99b02ac4338a724f5750f21213 # v2
282282
with:
283283
fail-on-vuln: false
284284

@@ -390,7 +390,7 @@ jobs:
390390
with:
391391
fetch-depth: (${{ github.event.pull_request.commits || 2 }} + 1)
392392

393-
- uses: trufflesecurity/trufflehog@821e8b9e5cdf8dc484dd23e06f78941fcf6b9191 # v3
393+
- uses: trufflesecurity/trufflehog@05cccb53bc9e13bc6d17997db5a6bcc3df44bf2f # v3
394394
with:
395395
extra_args: --results=verified,unknown
396396

0 commit comments

Comments
 (0)