From bde47a9fa888bb4a465d653d847837f9946057b0 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Thu, 23 Nov 2023 11:30:48 +0000
Subject: [PATCH] Update github/codeql-action action to v2.22.8

---
 .github/workflows/reusable-codeql.yml     | 6 +++---
 .github/workflows/reusable-scorecards.yml | 2 +-
 .github/workflows/reusable-trivy.yml      | 4 ++--
 3 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/reusable-codeql.yml b/.github/workflows/reusable-codeql.yml
index e245813..00c80de 100644
--- a/.github/workflows/reusable-codeql.yml
+++ b/.github/workflows/reusable-codeql.yml
@@ -62,7 +62,7 @@ jobs:
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@f0a12816612c7306b485a22cb164feb43c6df818 # v2.11.2
+        uses: github/codeql-action/init@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8
         with:
           languages: ${{ inputs.language }}
           config-file: ${{ inputs.config-file }}
@@ -74,7 +74,7 @@ jobs:
       # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
       # If this step fails, then you should remove it and run the build manually (see below)
       - name: Autobuild
-        uses: github/codeql-action/autobuild@f0a12816612c7306b485a22cb164feb43c6df818 # v2.11.2
+        uses: github/codeql-action/autobuild@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8
 
       # ℹ️ Command-line programs to run using the OS shell.
       # 📚 https://git.io/JvXDl
@@ -88,5 +88,5 @@ jobs:
       #   make release
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@f0a12816612c7306b485a22cb164feb43c6df818 # v2.11.2
+        uses: github/codeql-action/analyze@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8
 
diff --git a/.github/workflows/reusable-scorecards.yml b/.github/workflows/reusable-scorecards.yml
index 0d7fd4c..e012e90 100644
--- a/.github/workflows/reusable-scorecards.yml
+++ b/.github/workflows/reusable-scorecards.yml
@@ -101,7 +101,7 @@ jobs:
           path: results.sarif
 
       - name: Upload to code-scanning
-        uses: github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898 # v2.1.31
+        uses: github/codeql-action/upload-sarif@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8
         with:
           sarif_file: results.sarif
 
diff --git a/.github/workflows/reusable-trivy.yml b/.github/workflows/reusable-trivy.yml
index 673ea94..283327e 100644
--- a/.github/workflows/reusable-trivy.yml
+++ b/.github/workflows/reusable-trivy.yml
@@ -86,7 +86,7 @@ jobs:
           path: '${{ inputs.sarif }}'
 
       - name: Upload to code-scanning
-        uses: github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898 # v2.1.31
+        uses: github/codeql-action/upload-sarif@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8
         with:
           sarif_file: '${{ inputs.sarif }}'
 
@@ -143,7 +143,7 @@ jobs:
           path: '${{ inputs.sarif }}'
 
       - name: Upload to code-scanning
-        uses: github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898 # v2.1.31
+        uses: github/codeql-action/upload-sarif@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8
         with:
           sarif_file: '${{ inputs.sarif }}'