Skip to content

Bump github/codeql-action from 2.24.6 to 3.24.6 #8

Bump github/codeql-action from 2.24.6 to 3.24.6

Bump github/codeql-action from 2.24.6 to 3.24.6 #8

name: 'Dependency Graph'
on:
pull_request: {}
push:
branches:
- master
permissions:
contents: read
jobs:
dependency-review:
name: 'Dependency Graph'
runs-on: ubuntu-latest
permissions:
contents: read # needed to check out the repository
id-token: write # needed to exchange the graph publish token for an access token
steps:
- name: Harden Runner
uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0
with:
egress-policy: audit
- name: 'Checkout Repository'
uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
- name: Maven Dependency Tree Dependency Submission
uses: advanced-security/maven-dependency-submission-action@bfd2106013da0957cdede0b6c39fb5ca25ae375e # v4.0.2
with:
token: ${{ secrets.GH_GRAPH_PUBLISH_TOKEN }}
- name: 'Dependency Review'
uses: actions/dependency-review-action@0efb1d1d84fc9633afcdaad14c485cbbc90ef46c # v2.5.1
continue-on-error: true
with:
retry-on-snapshot-warnings: true