projectcapsule · oliverbaehler · Feb 10, 2025 · Feb 10, 2025
diff --git a/.github/workflows/coverage.yml b/.github/workflows/coverage.yml
@@ -40,7 +40,7 @@
    name: "SAST"
    runs-on: ubuntu-24.04
    env:
      GO111MODULE: on
    permissions:
      security-events: write
      actions: read
@@ -56,7 +56,7 @@
         with:
           args: '-no-fail -fmt sarif -out gosec.sarif ./...'
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@24e1c2d337459cce262cbca8d69998e56cd5eb8e
+        uses: github/codeql-action/upload-sarif@0a35e8f6866a39b001e5f7ad1d0daf9836786896
         with:
           sarif_file: gosec.sarif
   unit_tests:

diff --git a/.github/workflows/docker-build.yml b/.github/workflows/docker-build.yml
@@ -40,6 +40,6 @@ jobs:
           # See: https://github.com/aquasecurity/trivy-action/issues/389#issuecomment-2385416577
           TRIVY_DB_REPOSITORY: 'public.ecr.aws/aquasecurity/trivy-db:2'
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@24e1c2d337459cce262cbca8d69998e56cd5eb8e
+        uses: github/codeql-action/upload-sarif@0a35e8f6866a39b001e5f7ad1d0daf9836786896
         with:
           sarif_file: 'trivy-results.sarif'