diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 2f204ea2..17570fca 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -64,7 +64,7 @@ jobs: # It contains mixed content from the npm package "cordova-js" and "./cordova-js-src". # The report might not be resolvable because of the external package. # If the report is related to this repository, it would be detected when scanning "./cordova-js-src". - - uses: github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0 + - uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 with: languages: javascript, java-kotlin queries: security-and-quality @@ -81,7 +81,7 @@ jobs: env: CI: true - - uses: github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0 + - uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 # v4.6.0 - uses: codecov/codecov-action@b9fd7d16f6d7d1b5d2bec1a2887e65ceed900238