From 6598a7d703b72816237d7625b1b3fa272d886eee Mon Sep 17 00:00:00 2001
From: Jared T <jared+thomson@xoorath.com>
Date: Sat, 26 Aug 2023 07:22:09 -0700
Subject: [PATCH] Update flawfinder-analysis.yml

updating dependency versions
including a manual trigger
---
 .github/workflows/flawfinder-analysis.yml | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/flawfinder-analysis.yml b/.github/workflows/flawfinder-analysis.yml
index bdbe4b8..0f3a5f0 100644
--- a/.github/workflows/flawfinder-analysis.yml
+++ b/.github/workflows/flawfinder-analysis.yml
@@ -6,6 +6,7 @@
 name: flawfinder
 
 on:
+  workflow_dispatch:
   push:
     branches: [ main ]
     paths-ignore:
@@ -34,15 +35,15 @@ jobs:
       security-events: write
     steps:
       - name: Checkout code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
 
       - name: flawfinder_scan
-        uses: david-a-wheeler/flawfinder@8e4a779ad59dbfaee5da586aa9210853b701959c
+        uses: david-a-wheeler/flawfinder@2.0.19
         with:
           arguments: '--sarif ./'
           output: 'flawfinder_results.sarif'
 
       - name: Upload analysis results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v1
+        uses: github/codeql-action/upload-sarif@v2.22.4
         with:
           sarif_file: ${{github.workspace}}/flawfinder_results.sarif