diff --git a/.github/workflows/docker_dockerhub_release_callable.yml b/.github/workflows/docker_dockerhub_release_callable.yml index f026da6..aeaeeea 100644 --- a/.github/workflows/docker_dockerhub_release_callable.yml +++ b/.github/workflows/docker_dockerhub_release_callable.yml @@ -74,7 +74,7 @@ jobs: format: "sarif" output: "trivy-results.sarif" - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@429e1977040da7a23b6822b13c129cd1ba93dbb2 # v3.26.2 + uses: github/codeql-action/upload-sarif@883d8588e56d1753a8a58c1c86e88976f0c23449 # v3.26.3 if: ${{ inputs.upload-security-scan-results }} with: sarif_file: "trivy-results.sarif" diff --git a/.github/workflows/terraform_module_terraform_callable.yml b/.github/workflows/terraform_module_terraform_callable.yml index ac689fe..cf24bf7 100644 --- a/.github/workflows/terraform_module_terraform_callable.yml +++ b/.github/workflows/terraform_module_terraform_callable.yml @@ -33,7 +33,7 @@ jobs: steps: - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - - uses: hashicorp/setup-terraform@651471c36a6092792c552e8b1bef71e592b462d8 # v3.1.1 + - uses: hashicorp/setup-terraform@b9cd54a3c349d3f38e8881555d616ced269862dd # v3.1.2 with: terraform_version: ${{ matrix.terraform }} diff --git a/.github/workflows/terraform_module_terraform_tfsec_callable.yml b/.github/workflows/terraform_module_terraform_tfsec_callable.yml index d12aaa0..1c802f0 100644 --- a/.github/workflows/terraform_module_terraform_tfsec_callable.yml +++ b/.github/workflows/terraform_module_terraform_tfsec_callable.yml @@ -32,7 +32,7 @@ jobs: sarif_file: tfsec.sarif - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@429e1977040da7a23b6822b13c129cd1ba93dbb2 # v3.26.2 + uses: github/codeql-action/upload-sarif@883d8588e56d1753a8a58c1c86e88976f0c23449 # v3.26.3 with: # Path to SARIF file relative to the root of the repository sarif_file: tfsec.sarif