From 0e3a46b8bd226192653520423a4eae115ca83cdf Mon Sep 17 00:00:00 2001
From: Jason Plumb <jplumb@splunk.com>
Date: Tue, 5 Sep 2023 14:58:31 -0700
Subject: [PATCH] update gradle-build-action to mitigate CVE-2023-30853

---
 .github/workflows/codeql-daily.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/codeql-daily.yml b/.github/workflows/codeql-daily.yml
index 0b9eebd7b..6a5b4e5b4 100644
--- a/.github/workflows/codeql-daily.yml
+++ b/.github/workflows/codeql-daily.yml
@@ -27,7 +27,7 @@ jobs:
           # see https://github.com/github/codeql-action/issues/1555#issuecomment-1452228433
           tools: latest
 
-      - uses: gradle/gradle-build-action@v2
+      - uses: gradle/gradle-build-action@v2.8.0
         with:
           # skipping build cache is needed so that all modules will be analyzed
           arguments: assemble --no-build-cache