update gradle-build-action to mitigate CVE-2023-30853

open-telemetry · Sep 5, 2023 · 0e3a46b · 0e3a46b
1 parent c50f674
commit 0e3a46b
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/codeql-daily.yml b/.github/workflows/codeql-daily.yml
@@ -27,7 +27,7 @@ jobs:
           # see https://github.com/github/codeql-action/issues/1555#issuecomment-1452228433
           tools: latest
 
-      - uses: gradle/gradle-build-action@v2
+      - uses: gradle/gradle-build-action@v2.8.0
         with:
           # skipping build cache is needed so that all modules will be analyzed
           arguments: assemble --no-build-cache