diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml index 7a42d063..2bd865ae 100644 --- a/.github/workflows/bandit.yml +++ b/.github/workflows/bandit.yml @@ -45,6 +45,6 @@ jobs: retention-days: 10 - name: Upload to code-scanning dashboard - uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0 + uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5 with: sarif_file: bandit_scan_results.sarif diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index e56a1df8..2fd9a805 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -46,6 +46,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3.27.0 + uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5 with: sarif_file: results.sarif