diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml index 0e0aac4b..578fc627 100644 --- a/.github/workflows/bandit.yml +++ b/.github/workflows/bandit.yml @@ -32,7 +32,7 @@ jobs: cat bandit-output.sarif - name: Upload Bandit scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v4 with: sarif_file: "bandit-output.sarif" diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index e228cca6..111743e0 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -36,7 +36,7 @@ jobs: - name: Run ansible-lint run: ansible-lint - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v4 with: # Path to SARIF file relative to the root of the repository sarif_file: ansible_lint_result.sarif diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 90f999cb..c3d82a15 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -69,6 +69,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard (optional). # Commenting out will disable upload of results to your repo's Code Scanning dashboard - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v4 with: sarif_file: results.sarif diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml index 4e98d05a..93059885 100644 --- a/.github/workflows/trivy.yml +++ b/.github/workflows/trivy.yml @@ -23,7 +23,7 @@ jobs: severity: "UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL" - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v4 if: always() with: sarif_file: "trivy-results.sarif"