Bump actions/setup-java from 3 to 4 (#267)

* Bump actions/setup-java from 3 to 4 Bumps [actions/setup-java](https://github.com/actions/setup-java) from 3 to 4. - [Release notes](https://github.com/actions/setup-java/releases) - [Commits](actions/setup-java@v3...v4) --- updated-dependencies: - dependency-name: actions/setup-java dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> * try excluding code scanning from dependabot --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Denis Yuen <[email protected]>
dockstore · Dec 1, 2023 · ec69dc0 · ec69dc0
1 parent 57d8335
commit ec69dc0
Show file tree

Hide file tree

Showing 3 changed files with 8 additions and 5 deletions.
diff --git a/.github/workflows/cron.yml b/.github/workflows/cron.yml
@@ -21,7 +21,7 @@ jobs:
       - uses: actions/checkout@v4
 
       - name: Set up JDK
-        uses: actions/setup-java@v3
+        uses: actions/setup-java@v4
         with:
           java-version: ${{ matrix.java }}
           distribution: 'temurin'

diff --git a/.github/workflows/deploy_snapshot.yml b/.github/workflows/deploy_snapshot.yml
@@ -23,7 +23,7 @@ jobs:
            ${{ runner.os }}-maven-
 
       - name: Set up JDK
-        uses: actions/setup-java@v3
+        uses: actions/setup-java@v4
         with:
           java-version: '17.0.4+8'
           distribution: 'adopt'

diff --git a/.github/workflows/mvnw.yml b/.github/workflows/mvnw.yml
@@ -18,7 +18,7 @@ jobs:
             sudo make install   
       - uses: actions/checkout@v4
       - name: Set up JDK
-        uses: actions/setup-java@v3
+        uses: actions/setup-java@v4
         with:
           java-version: ${{ matrix.java }}
           distribution: 'temurin'
@@ -30,7 +30,9 @@ jobs:
           restore-keys: |
            ${{ runner.os }}-maven-
 
-      - name: Initialize CodeQL
+        
+      - if: "!contains(github.ref, 'dependabot')"
+        name: Initialize CodeQL
         uses: github/codeql-action/init@v2
         with:
           languages: java           
@@ -40,5 +42,6 @@ jobs:
       - name: Check license file
         uses: dockstore/workflow-actions/.github/actions/check-license@main
 
-      - name: Perform CodeQL Analysis
+      - if: "!contains(github.ref, 'dependabot')"
+        name: Perform CodeQL Analysis
         uses: github/codeql-action/analyze@v2