Update flawfinder-analysis.yml

updating dependency versions including a manual trigger
xoorath · Aug 26, 2023 · 6598a7d · 6598a7d
1 parent b3a566a
commit 6598a7d
Showing 1 changed file with 4 additions and 3 deletions.
diff --git a/.github/workflows/flawfinder-analysis.yml b/.github/workflows/flawfinder-analysis.yml
@@ -6,6 +6,7 @@
 name: flawfinder
 
 on:
+  workflow_dispatch:
   push:
     branches: [ main ]
     paths-ignore:
@@ -34,15 +35,15 @@ jobs:
       security-events: write
     steps:
       - name: Checkout code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
 
       - name: flawfinder_scan
-        uses: david-a-wheeler/flawfinder@8e4a779ad59dbfaee5da586aa9210853b701959c
+        uses: david-a-wheeler/flawfinder@2.0.19
         with:
           arguments: '--sarif ./'
           output: 'flawfinder_results.sarif'
 
       - name: Upload analysis results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v1
+        uses: github/codeql-action/upload-sarif@v2.22.4
         with:
           sarif_file: ${{github.workspace}}/flawfinder_results.sarif