build(deps): bump github/codeql-action in the github-actions group Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 4.31.6 to 4.31.7 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/fe4161a26a8629af62121b670040955b330f9af2...cf1bb45a277cb3c205638b2cd5c984db1c46a412) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.31.7 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

commit: 6410a74e6885f2b0bccb96ec6f61bdc213ed80da [log] [tgz]
author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Mon Dec 08 07:06:51 2025 +0000
committer: GitHub <noreply@github.com> Mon Dec 08 07:06:51 2025 +0000
tree: 5abf9fd98234f1f8ac46ebdf66dfcbdb00931b3f
parent: 8c1e6ca9b896a5a82ea39973a2f677f515f1f45d [diff]
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
index b278665..e266fc7 100644
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml

@@ -48,6 +48,6 @@
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@fe4161a26a8629af62121b670040955b330f9af2 # v4.31.6
+        uses: github/codeql-action/upload-sarif@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v4.31.7
         with:
           sarif_file: results.sarif
commit	6410a74e6885f2b0bccb96ec6f61bdc213ed80da	[log] [tgz]
author	dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	Mon Dec 08 07:06:51 2025 +0000
committer	GitHub <noreply@github.com>	Mon Dec 08 07:06:51 2025 +0000
tree	5abf9fd98234f1f8ac46ebdf66dfcbdb00931b3f
parent	8c1e6ca9b896a5a82ea39973a2f677f515f1f45d [diff]