Google Git
Sign in
skia/external/github.com/KhronosGroup/SPIRV-Tools/refs/heads/dependabot/github_actions/github-actions-aadb7c6e64^!/.
commit
e7cae826bca3f35b84ce8482b4307c0f5b90a95d
[log]
author
dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Fri Aug 30 08:05:14 2024 +0000
committer
GitHub <noreply@github.com>
Fri Aug 30 08:05:14 2024 +0000
tree
869b76091113d2e6fc10aaaa911deadc6a40b9c0
parent
b21dda0ee7a3ea4e0192a7b2b09db1df1de9d5e7 [diff]
build(deps): bump github/codeql-action

Bumps the github-actions group with 1 update in the / directory: [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/codeql-action` from 3.26.4 to 3.26.6
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/f0f3afee809481da311ca3a6ff1ff51d81dbeb24...4dd16135b69a43b6c8efb853346f8437d92d3c93)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index edcaa4b..bd8742b 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml

@@ -48,6 +48,6 @@
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@f0f3afee809481da311ca3a6ff1ff51d81dbeb24 # v3.26.4
+        uses: github/codeql-action/upload-sarif@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6
         with:
           sarif_file: results.sarif