diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 790ba5655..d99eea49c 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -33,10 +33,10 @@ jobs: uses: gradle/gradle-build-action@749f47bda3e44aa060e82d7b3ef7e40d953bd629 # v2 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2 + uses: github/codeql-action/init@f6e388ebf0efc915c6c5b165b019ee61a6746a38 # v2 with: languages: ${{ matrix.language }} - run: | gradle build - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2 + uses: github/codeql-action/analyze@f6e388ebf0efc915c6c5b165b019ee61a6746a38 # v2 diff --git a/.github/workflows/qodana-cloud.yml b/.github/workflows/qodana-cloud.yml index 740159a6d..f76a75a3e 100644 --- a/.github/workflows/qodana-cloud.yml +++ b/.github/workflows/qodana-cloud.yml @@ -15,6 +15,6 @@ jobs: uses: JetBrains/qodana-action@54d3fc653c515607d6b1599201a383e9e07649b1 # v2023.1.5 env: QODANA_TOKEN: ${{ secrets.QODANA_TOKEN }} - - uses: github/codeql-action/upload-sarif@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2 + - uses: github/codeql-action/upload-sarif@f6e388ebf0efc915c6c5b165b019ee61a6746a38 # v2 with: sarif_file: ${{ runner.temp }}/qodana/results/qodana.sarif.json \ No newline at end of file diff --git a/.github/workflows/qodana.yml b/.github/workflows/qodana.yml index 1acf82d97..8ab108702 100644 --- a/.github/workflows/qodana.yml +++ b/.github/workflows/qodana.yml @@ -18,6 +18,6 @@ jobs: uses: JetBrains/qodana-action@54d3fc653c515607d6b1599201a383e9e07649b1 # v2023.1.5 with: args: "--fail-threshold,0" - - uses: github/codeql-action/upload-sarif@6c089f53dd51dc3fc7e599c3cb5356453a52ca9e # v2 + - uses: github/codeql-action/upload-sarif@f6e388ebf0efc915c6c5b165b019ee61a6746a38 # v2 with: sarif_file: ${{ runner.temp }}/qodana/results/qodana.sarif.json \ No newline at end of file