From 08f5df3c0e1319b5a4079caed032e52924e02ee4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 25 Sep 2025 19:45:04 +0000 Subject: [PATCH] ci/GHA: bump github/codeql-action and actions/cache - bump github/codeql-action from 3.30.3 to 3.30.4 - bump actions/cache from 4.2.4 to 4.3.0 Closes #1681 Closes #1682 --- .github/workflows/ci.yml | 16 ++++++++-------- .github/workflows/codeql.yml | 8 ++++---- 2 files changed, 12 insertions(+), 12 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 3cec6f97..58934ce9 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -316,7 +316,7 @@ jobs: - name: 'cache mbedTLS' if: ${{ matrix.crypto == 'mbedTLS-from-source' }} - uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4 + uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 id: cache-mbedtls with: path: ~/usr @@ -367,7 +367,7 @@ jobs: - name: 'cache BoringSSL' if: ${{ matrix.crypto == 'BoringSSL' }} - uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4 + uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 id: cache-boringssl with: path: ~/usr @@ -389,7 +389,7 @@ jobs: - name: 'cache AWS-LC' if: ${{ matrix.crypto == 'AWS-LC' }} - uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4 + uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 id: cache-aws-lc with: path: ~/usr @@ -407,7 +407,7 @@ jobs: - name: 'cache LibreSSL' if: ${{ matrix.crypto == 'LibreSSL' }} - uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4 + uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 id: cache-libressl with: path: ~/usr @@ -427,7 +427,7 @@ jobs: - name: 'cache OpenSSL' if: ${{ matrix.crypto == 'OpenSSL-3-no-deprecated' }} - uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4 + uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 id: cache-openssl with: path: ~/usr @@ -445,7 +445,7 @@ jobs: - name: 'cache OpenSSL 1.1.1' if: ${{ matrix.crypto == 'OpenSSL-111-from-source' }} - uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4 + uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 id: cache-openssl111 with: path: ~/usr @@ -462,7 +462,7 @@ jobs: - name: 'cache OpenSSL 1.1.0' if: ${{ matrix.crypto == 'OpenSSL-110-from-source' }} - uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4 + uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 id: cache-openssl110 with: path: ~/usr @@ -479,7 +479,7 @@ jobs: - name: 'cache OpenSSL 1.0.2' if: ${{ matrix.crypto == 'OpenSSL-102-from-source' }} - uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4 + uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 id: cache-openssl102 with: path: ~/usr diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 68a8e24e..10a04cf7 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -33,13 +33,13 @@ jobs: persist-credentials: false - name: 'initialize' - uses: github/codeql-action/init@192325c86100d080feab897ff886c34abd4c83a3 # v3 + uses: github/codeql-action/init@303c0aef88fc2fe5ff6d63d3b1596bfd83dfa1f9 # v3 with: languages: actions queries: security-extended - name: 'perform analysis' - uses: github/codeql-action/analyze@192325c86100d080feab897ff886c34abd4c83a3 # v3 + uses: github/codeql-action/analyze@303c0aef88fc2fe5ff6d63d3b1596bfd83dfa1f9 # v3 c: name: 'C' @@ -67,7 +67,7 @@ jobs: persist-credentials: false - name: 'initialize' - uses: github/codeql-action/init@192325c86100d080feab897ff886c34abd4c83a3 # v3 + uses: github/codeql-action/init@303c0aef88fc2fe5ff6d63d3b1596bfd83dfa1f9 # v3 with: languages: cpp build-mode: manual @@ -88,4 +88,4 @@ jobs: fi - name: 'perform analysis' - uses: github/codeql-action/analyze@192325c86100d080feab897ff886c34abd4c83a3 # v3 + uses: github/codeql-action/analyze@303c0aef88fc2fe5ff6d63d3b1596bfd83dfa1f9 # v3