From bba1040ee1cb84f7f5bd0beabfecc753990eb98d Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 Apr 2024 07:15:08 +0000 Subject: [PATCH 1/3] Bump devops-actions/action-get-tag in /.github/workflows Bumps [devops-actions/action-get-tag](https://github.com/devops-actions/action-get-tag) from 6787980b5b0227cf34a8d845db08fb23514238e0 to 6167776d96bd5da05da534aa9cea6d7c786c1c5a. - [Release notes](https://github.com/devops-actions/action-get-tag/releases) - [Commits](https://github.com/devops-actions/action-get-tag/compare/6787980b5b0227cf34a8d845db08fb23514238e0...6167776d96bd5da05da534aa9cea6d7c786c1c5a) --- updated-dependencies: - dependency-name: devops-actions/action-get-tag dependency-type: direct:production ... Signed-off-by: dependabot[bot] --- .github/workflows/publishing.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/publishing.yml b/.github/workflows/publishing.yml index 74c6769..77e5905 100644 --- a/.github/workflows/publishing.yml +++ b/.github/workflows/publishing.yml @@ -50,7 +50,7 @@ jobs: - name: Get tag value id: tag - uses: devops-actions/action-get-tag@6787980b5b0227cf34a8d845db08fb23514238e0 # v1.0.1 + uses: devops-actions/action-get-tag@6167776d96bd5da05da534aa9cea6d7c786c1c5a # v1.0.1 - name: Use tag run: echo ${{ steps.tag.outputs.tag }} From 7aaa2f4d7a45f74eb8308ec6d09b68398ef6bb92 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 Apr 2024 07:44:59 +0000 Subject: [PATCH 2/3] Bump github/codeql-action from 3.22.12 to 3.24.9 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.22.12 to 3.24.9. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/012739e5082ff0c22ca6d6ab32e07c36df03c4a4...1b1aada464948af03b950897e5eb522f92603cc2) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/codeql.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 7b21779..55fdee2 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -33,7 +33,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@012739e5082ff0c22ca6d6ab32e07c36df03c4a4 # v3.22.12 + uses: github/codeql-action/init@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9 # Override language selection by uncommenting this and choosing your languages # with: # languages: go, javascript, csharp, python, cpp, java, ruby @@ -41,7 +41,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, Go, or Java). # If this step fails, then you should remove it and run the build manually (see below). - name: Autobuild - uses: github/codeql-action/autobuild@012739e5082ff0c22ca6d6ab32e07c36df03c4a4 # v3.22.12 + uses: github/codeql-action/autobuild@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9 # ℹī¸ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -55,4 +55,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@012739e5082ff0c22ca6d6ab32e07c36df03c4a4 # v3.22.12 \ No newline at end of file + uses: github/codeql-action/analyze@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9 \ No newline at end of file From 06bf505c05019c3b5a39c0fbe1fcf7b0670fd9eb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 1 Apr 2024 07:45:08 +0000 Subject: [PATCH 3/3] Bump jessehouwing/actions-semver-checker from 1.0.6 to 1.0.7 Bumps [jessehouwing/actions-semver-checker](https://github.com/jessehouwing/actions-semver-checker) from 1.0.6 to 1.0.7. - [Release notes](https://github.com/jessehouwing/actions-semver-checker/releases) - [Commits](https://github.com/jessehouwing/actions-semver-checker/compare/1a13fd188ebef96fb179faedfabcc8de5cb6189d...3cb8b94e8a9f14b89c86702e5c8c7c3d95559c5e) --- updated-dependencies: - dependency-name: jessehouwing/actions-semver-checker dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/semver-check.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/semver-check.yml b/.github/workflows/semver-check.yml index d9f069e..bdbc6bf 100644 --- a/.github/workflows/semver-check.yml +++ b/.github/workflows/semver-check.yml @@ -13,4 +13,4 @@ jobs: with: fetch-depth: 0 # needed to get all tags - - uses: jessehouwing/actions-semver-checker@1a13fd188ebef96fb179faedfabcc8de5cb6189d # v1 + - uses: jessehouwing/actions-semver-checker@3cb8b94e8a9f14b89c86702e5c8c7c3d95559c5e # v1