From 9ee219de77c01eafb442e7db1443fbf65e1db180 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 17 Apr 2026 19:55:59 +0000
Subject: [PATCH] Bump entur/gha-security/.github/workflows/code-scan.yml

Bumps [entur/gha-security/.github/workflows/code-scan.yml](https://github.com/entur/gha-security) from 2 to 2.11.0.
- [Release notes](https://github.com/entur/gha-security/releases)
- [Changelog](https://github.com/entur/gha-security/blob/main/CHANGELOG.md)
- [Commits](https://github.com/entur/gha-security/compare/v2...v2.11.0)

---
updated-dependencies:
- dependency-name: entur/gha-security/.github/workflows/code-scan.yml
  dependency-version: 2.11.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/codeql.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index cd6c502..5a2fb87 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -15,7 +15,7 @@ on:
 jobs:
   code-scan:
     name: CodeQL Scan
-    uses: entur/gha-security/.github/workflows/code-scan.yml@v2
+    uses: entur/gha-security/.github/workflows/code-scan.yml@v2.11.0
     # no secrets necessary
     permissions: # some of these only apply when running on the main branch
       actions: read