File tree Expand file tree Collapse file tree 9 files changed +14
-14
lines changed Expand file tree Collapse file tree 9 files changed +14
-14
lines changed Original file line number Diff line number Diff line change 4141
4242 steps :
4343 - name : Harden Runner
44- uses : step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
44+ uses : step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
4545 with :
4646 disable-sudo : true
4747 egress-policy : block
5757
5858 # Initializes the CodeQL tools for scanning.
5959 - name : Initialize CodeQL
60- uses : github/codeql-action/init@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3.28.18
60+ uses : github/codeql-action/init@ce28f5bb42b7a9f2c824e633a3f6ee835bab6858 # v3.29.0
6161 with :
6262 languages : ${{ matrix.language }}
6363 # If you wish to specify custom queries, you can do so here or in a config file.
6767 # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
6868 # If this step fails, then you should remove it and run the build manually (see below)
6969 - name : Autobuild
70- uses : github/codeql-action/autobuild@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3.28.18
70+ uses : github/codeql-action/autobuild@ce28f5bb42b7a9f2c824e633a3f6ee835bab6858 # v3.29.0
7171
7272 # ℹ️ Command-line programs to run using the OS shell.
7373 # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
8080 # ./location_of_script_within_repo/buildscript.sh
8181
8282 - name : Perform CodeQL Analysis
83- uses : github/codeql-action/analyze@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3.28.18
83+ uses : github/codeql-action/analyze@ce28f5bb42b7a9f2c824e633a3f6ee835bab6858 # v3.29.0
8484 with :
8585 category : " /language:${{matrix.language}}"
Original file line number Diff line number Diff line change 1717 runs-on : ${{ matrix.platform }}
1818 steps :
1919 - name : Harden Runner
20- uses : step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
20+ uses : step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
2121 with :
2222 disable-sudo : true
2323 egress-policy : block
Original file line number Diff line number Diff line change 2222 runs-on : ${{ matrix.platform }}
2323 steps :
2424 - name : Harden Runner
25- uses : step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
25+ uses : step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
2626 with :
2727 disable-sudo : true
2828 egress-policy : block
Original file line number Diff line number Diff line change 1717 runs-on : ubuntu-latest
1818 steps :
1919 - name : Harden Runner
20- uses : step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
20+ uses : step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
2121 with :
2222 disable-sudo : true
2323 egress-policy : block
Original file line number Diff line number Diff line change 1212 runs-on : ubuntu-latest
1313 steps :
1414 - name : Harden Runner
15- uses : step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
15+ uses : step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
1616 with :
1717 disable-sudo : true
1818 egress-policy : block
Original file line number Diff line number Diff line change 1313 runs-on : ubuntu-latest
1414 steps :
1515 - name : Harden Runner
16- uses : step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
16+ uses : step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
1717 with :
1818 egress-policy : audit # TODO: change to 'egress-policy: block' after couple of runs
1919
Original file line number Diff line number Diff line change 2626
2727 steps :
2828 - name : Harden Runner
29- uses : step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
29+ uses : step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
3030 with :
3131 disable-sudo : true
3232 egress-policy : block
5252 persist-credentials : false
5353
5454 - name : " Run analysis"
55- uses : ossf/scorecard-action@f49aabe0b5af0936a0987cfb85d86b75731b0186 # v2.4.1
55+ uses : ossf/scorecard-action@05b42c624433fc40578a4040d5cf5e36ddca8cde # v2.4.2
5656 with :
5757 results_file : results.sarif
5858 results_format : sarif
6464
6565 # Upload the results to GitHub's code scanning dashboard.
6666 - name : " Upload to code-scanning"
67- uses : github/codeql-action/upload-sarif@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3.28.18
67+ uses : github/codeql-action/upload-sarif@ce28f5bb42b7a9f2c824e633a3f6ee835bab6858 # v3.29.0
6868 with :
6969 sarif_file : results.sarif
Original file line number Diff line number Diff line change 4141 runs-on : ${{ matrix.platform }}
4242 steps :
4343 - name : Harden Runner
44- uses : step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
44+ uses : step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
4545 with :
4646 disable-sudo : true
4747 egress-policy : block
Original file line number Diff line number Diff line change @@ -27,7 +27,7 @@ dependencies = [
2727 " click>=7.0,<9.0"
2828 " watchdog>=1.0.0"
2929 " gunicorn>=22.0.0; platform_system!='Windows'"
30- " cloudevents>=1.2 .0,<=1.11 .0" # Must support python 3.7
30+ " cloudevents>=1.12 .0,<=1.12 .0" # Must support python 3.7
3131 " Werkzeug>=0.14,<4.0.0"
3232 " httpx>=0.24.1"
3333]
You can’t perform that action at this time.
0 commit comments