diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 6b33c90..89b1c50 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -36,15 +36,15 @@ jobs: - name: Initialize CodeQL id: initialize - uses: github/codeql-action/init@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11 + uses: github/codeql-action/init@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 # v4.32.0 with: languages: ${{ matrix.language }} source-root: src - name: Autobuild id: autobuild - uses: github/codeql-action/autobuild@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11 + uses: github/codeql-action/autobuild@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 # v4.32.0 - name: Perform CodeQL Analysis id: analyze - uses: github/codeql-action/analyze@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11 + uses: github/codeql-action/analyze@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 # v4.32.0 diff --git a/action.yml b/action.yml index 4313bc6..e6f11c6 100644 --- a/action.yml +++ b/action.yml @@ -71,7 +71,7 @@ runs: id: generate-sbom-predicate with: sbom-path: ${{ inputs.sbom-path }} - - uses: actions/attest@7667f588f2f73a90cea6c7ac70e78266c4f76616 # v3.1.0 + - uses: actions/attest@e59cbc1ad1ac2d59339667419eb8cdde6eb61e3d # v3.2.0 id: attest env: NODE_OPTIONS: '--max-http-header-size=32768'