Google Git
Sign in
skia/external/github.com/KhronosGroup/SPIRV-Tools/refs/heads/dependabot/github_actions/github-actions-57b824b15f^!/.
commit
14a6462cf18b1a2312e9b297a0357afa9680e488
[log]
author
dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Thu Apr 23 07:14:25 2026 +0000
committer
GitHub <noreply@github.com>
Thu Apr 23 07:14:25 2026 +0000
tree
f1b343aad4f4a926f9dd169cd81c7d15c58de145
parent
ff5c50339cc1e9f34f04cb440a3e5fe89db0161d [diff]
build(deps): bump the github-actions group across 1 directory with 2 updates

Bumps the github-actions group with 2 updates in the / directory: [lukka/get-cmake](https://github.com/lukka/get-cmake) and [github/codeql-action](https://github.com/github/codeql-action).


Updates `lukka/get-cmake` from 4.3.1 to 4.3.2
- [Release notes](https://github.com/lukka/get-cmake/releases)
- [Changelog](https://github.com/lukka/get-cmake/blob/main/RELEASE_PROCESS.md)
- [Commits](https://github.com/lukka/get-cmake/compare/ea83089aa35e08e459464341fe24ad024ee2466f...7bfc9baacbbdcb5e37957ad05c3546b3e222be3c)

Updates `github/codeql-action` from 4.35.1 to 4.35.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/c10b8064de6f491fea524254123dbe5e09572f13...95e58e9a2cdfd71adc6e0353d5c52f41a045d225)

---
updated-dependencies:
- dependency-name: lukka/get-cmake
  dependency-version: 4.3.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
- dependency-name: github/codeql-action
  dependency-version: 4.35.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/ios.yml b/.github/workflows/ios.yml
index b506603..22c87b2 100644
--- a/.github/workflows/ios.yml
+++ b/.github/workflows/ios.yml

@@ -15,7 +15,7 @@
     if: ${{ github.event.workflow_run.conclusion == 'success' }}
     steps:
         - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-        - uses: lukka/get-cmake@ea83089aa35e08e459464341fe24ad024ee2466f # v4.02
+        - uses: lukka/get-cmake@7bfc9baacbbdcb5e37957ad05c3546b3e222be3c # v4.02
         - name: Download dependencies
           run: python3 utils/git-sync-deps
         # NOTE: The MacOS SDK ships universal binaries. CI should reflect this.

diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index ce22372..decd4ed 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml

@@ -48,6 +48,6 @@
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
+        uses: github/codeql-action/upload-sarif@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4.35.2
         with:
           sarif_file: results.sarif