From a7a27d417d5755df7f58d5e67279ae85259dba22 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sat, 4 Jul 2026 17:33:44 +0000 Subject: [PATCH] Bump github/codeql-action/upload-sarif Bumps [github/codeql-action/upload-sarif](https://github.com/github/codeql-action) from eda5730a8bfb740e03a28087a958444c646e5842 to 3cf0a529d8434171b6af190714e8d5b7abb83927. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/eda5730a8bfb740e03a28087a958444c646e5842...3cf0a529d8434171b6af190714e8d5b7abb83927) --- updated-dependencies: - dependency-name: github/codeql-action/upload-sarif dependency-version: 3cf0a529d8434171b6af190714e8d5b7abb83927 dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- .github/workflows/scorecard.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 526c932d..debb3145 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -68,6 +68,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard (optional). # Commenting out will disable upload of results to your repo's Code Scanning dashboard - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@eda5730a8bfb740e03a28087a958444c646e5842 # v3.30.8 + uses: github/codeql-action/upload-sarif@3cf0a529d8434171b6af190714e8d5b7abb83927 # v3.30.8 with: sarif_file: results.sarif