diff --git a/.github/workflows/release-arm.yaml b/.github/workflows/release-arm.yaml index b0c539736..5452adcf2 100644 --- a/.github/workflows/release-arm.yaml +++ b/.github/workflows/release-arm.yaml @@ -297,7 +297,7 @@ jobs: mkdir sarif sudo mv build/*.sarif sarif/ - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3 + uses: github/codeql-action/upload-sarif@883d8588e56d1753a8a58c1c86e88976f0c23449 # v3 if: startsWith(github.ref, 'refs/tags/') with: sarif_file: 'sarif' @@ -399,7 +399,7 @@ jobs: sudo mv build/*.sarif sarif/ - name: Upload Trivy scan results to GitHub Security tab if: startsWith(github.ref, 'refs/tags/') - uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3 + uses: github/codeql-action/upload-sarif@883d8588e56d1753a8a58c1c86e88976f0c23449 # v3 with: sarif_file: 'sarif' category: ${{ matrix.flavor }} diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index 8f5732fca..d0994ae41 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -210,7 +210,7 @@ jobs: files: | release/* - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3 + uses: github/codeql-action/upload-sarif@883d8588e56d1753a8a58c1c86e88976f0c23449 # v3 if: startsWith(github.ref, 'refs/tags/') with: sarif_file: 'sarif' diff --git a/.github/workflows/reusable-build-flavor.yaml b/.github/workflows/reusable-build-flavor.yaml index 2231f18a3..78de3738d 100644 --- a/.github/workflows/reusable-build-flavor.yaml +++ b/.github/workflows/reusable-build-flavor.yaml @@ -139,7 +139,7 @@ jobs: mv *.sarif sarif/ - name: Upload Trivy scan results to GitHub Security tab if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/master' }} - uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3 + uses: github/codeql-action/upload-sarif@883d8588e56d1753a8a58c1c86e88976f0c23449 # v3 with: sarif_file: 'sarif' category: ${{ inputs.flavor }}-${{ inputs.flavor_release }} diff --git a/.github/workflows/reusable-docker-arm-build.yaml b/.github/workflows/reusable-docker-arm-build.yaml index bf3fd48be..0fa4ce25a 100644 --- a/.github/workflows/reusable-docker-arm-build.yaml +++ b/.github/workflows/reusable-docker-arm-build.yaml @@ -181,7 +181,7 @@ jobs: mkdir sarif sudo mv build/*.sarif sarif/ - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3 + uses: github/codeql-action/upload-sarif@883d8588e56d1753a8a58c1c86e88976f0c23449 # v3 if: startsWith(github.ref, 'refs/tags/v') with: sarif_file: 'sarif' @@ -192,7 +192,7 @@ jobs: mkdir sarif sudo mv build/*.sarif sarif/ - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3 + uses: github/codeql-action/upload-sarif@883d8588e56d1753a8a58c1c86e88976f0c23449 # v3 if: ${{ github.event_name == 'push' && github.ref == 'refs/heads/master' }} with: sarif_file: 'sarif'