Bump github/codeql-action from 1.0.29 to 1.0.30 (#619)

* Bump github/codeql-action from 1.0.29 to 1.0.30 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1.0.29 to 1.0.30. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/384cfc42b2131df01c009d3d2eed7b78d8e8556e...8b37404d562d866ad6a65d0ecb4fa5131e047ca4 ) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * update version comments Signed-off-by: Carlos Panato <ctadeu@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Carlos Panato <ctadeu@gmail.com>

Bump github/codeql-action from 1.0.29 to 1.0.30 (#619)
fabfe0b0 · dependabot[bot] · GitHub · 9da7fae9 · fabfe0b0 · fabfe0b0
Unverified Commit fabfe0b0 authored 3 years ago by dependabot[bot] Committed by GitHub 3 years ago
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -35,16 +35,16 @@ jobs:
        language: [ 'go' ]
    steps:
    - name: Checkout repository
-      uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 #v2.4.0
+      uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # v2.4.0

    # Initializes the CodeQL tools for scanning.
    - name: Initialize CodeQL
-      uses: github/codeql-action/init@384cfc42b2131df01c009d3d2eed7b78d8e8556e #v1.0.29
+      uses: github/codeql-action/init@8b37404d562d866ad6a65d0ecb4fa5131e047ca4 # v1.0.30
      with:
        languages: ${{ matrix.language }}

    - name: Autobuild
-      uses: github/codeql-action/autobuild@384cfc42b2131df01c009d3d2eed7b78d8e8556e #v1.0.29
+      uses: github/codeql-action/autobuild@8b37404d562d866ad6a65d0ecb4fa5131e047ca4 # v1.0.30

    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@384cfc42b2131df01c009d3d2eed7b78d8e8556e #v1.0.29
+      uses: github/codeql-action/analyze@8b37404d562d866ad6a65d0ecb4fa5131e047ca4 # v1.0.30
--- a/.github/workflows/scorecard_action.yml
+++ b/.github/workflows/scorecard_action.yml
@@ -52,6 +52,6 @@ jobs:

      # Upload the results to GitHub's code scanning dashboard.
      - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@384cfc42b2131df01c009d3d2eed7b78d8e8556e # v1.0.28
+        uses: github/codeql-action/upload-sarif@8b37404d562d866ad6a65d0ecb4fa5131e047ca4 # v1.0.30
        with:
          sarif_file: results.sarif