chore(deps): update github/codeql-action digest to c50c157 #66

	name: Coverage

	on:
	push:
	branches:
	- "main"
	pull_request:
	types:
	- opened
	- reopened
	- synchronize
	branches:
	- "main"

	concurrency:
	group: ${{ github.workflow }}-${{ github.ref }}
	cancel-in-progress: true

	jobs:
	sast:
	name: "SAST"
	runs-on: ubuntu-24.04
	env:
	GO111MODULE: on
	permissions:
	security-events: write
	actions: read
	contents: read
	steps:
	- name: Checkout Source
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	- uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
	with:
	go-version-file: 'go.mod'
	- name: Run Gosec Security Scanner
	uses: securego/gosec@136f6c00402b11775d4f4a45d5a21e2f6dd99db2 # v2.22.2
	with:
	args: '-no-fail -fmt sarif -out gosec.sarif ./...'
	- name: Upload SARIF file
	uses: github/codeql-action/upload-sarif@dc49dcabdb86371d19197fcae2585f548bbbc395
	with:
	sarif_file: gosec.sarif
	unit_tests:
	name: "Unit tests"
	runs-on: ubuntu-24.04
	steps:
	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	- uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0
	with:
	go-version-file: 'go.mod'
	- name: Unit Test
	run: make test
	- name: Check secret
	id: checksecret
	uses: ./.github/actions/exists
	with:
	value: ${{ secrets.CODECOV_TOKEN }}
	- name: Upload Report to Codecov
	if: ${{ steps.checksecret.outputs.result == 'true' }}
	uses: codecov/codecov-action@0565863a31f2c772f9f0395002a31e3f06189574 # v5.4.0
	with:
	token: ${{ secrets.CODECOV_TOKEN }}
	slug: projectcapsule/cortex-proxy
	files: ./coverage.out
	fail_ci_if_error: true
	verbose: true

Provide feedback