1 rok temu · 4a07392fdf
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -39,7 +39,7 @@ jobs:
 
				         with:
			
 
				           swap-size-gb: 10
			
 
				       - name: Initialize CodeQL
			
 
				-        uses: github/codeql-action/init@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5
			
 
				+        uses: github/codeql-action/init@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
			
 
				         with:
			
 
				           languages: ${{ matrix.language }}
			
 
				       - name: Set up JDK 17
			
@@ -53,4 +53,4 @@ jobs:
 
				           echo "org.gradle.jvmargs=-Xmx2g -XX:MaxMetaspaceSize=512m -XX:+HeapDumpOnOutOfMemoryError" > "$HOME/.gradle/gradle.properties"
			
 
				           ./gradlew assembleDebug
			
 
				       - name: Perform CodeQL Analysis
			
 
				-        uses: github/codeql-action/analyze@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5
			
 
				+        uses: github/codeql-action/analyze@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
			
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@@ -1,7 +1,7 @@
 
				 # synced from @nextcloud/android-config
			
 
				 
			
 
				 # SPDX-FileCopyrightText: 2023-2024 Nextcloud GmbH and Nextcloud contributors
			
 
				-# SPDX-FileCopyrightText: 2023 Tobias Kaminsky <tobias@kaminsky.me>
			
 
				+# SPDX-FileCopyrightText: 2023 Andy Scherzinger <info@andy-scherzinger.de>
			
 
				 # SPDX-License-Identifier: GPL-3.0-or-later
			
 
				 
			
 
				 name: Scorecard supply-chain security
			
@@ -42,6 +42,6 @@ jobs:
 
				 
			
 
				       # Upload the results to GitHub's code scanning dashboard.
			
 
				       - name: "Upload to code-scanning"
			
 
				-        uses: github/codeql-action/upload-sarif@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5
			
 
				+        uses: github/codeql-action/upload-sarif@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
			
 
				         with:
			
 
				           sarif_file: results.sarif