Merge pull request #160 from github/dependabot/github_actions/dependencies-4fd2478eb4

jmeridth · web-flow · commit 847d23e3d090 · 2024-08-11T20:40:34.000-05:00
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -63,7 +63,7 @@
         - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
         - name: Push Docker Image
           if: ${{ success() }}
-          uses: docker/build-push-action@5176d81f87c23d6fc96624dfdbcd9f3830bbe445
+          uses: docker/build-push-action@16ebe778df0e7752d2cfcbd924afdbbd89c1a755
           with:
             context: .
             file: ./Dockerfile
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
@@ -36,12 +36,12 @@ jobs:
           results_format: sarif
           publish_results: true
       - name: "Upload artifact"
-        uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5
+        uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6
         with:
           name: SARIF file
           path: results.sarif
           retention-days: 5
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@afb54ba388a7dca6ecae48f608c4ff05ff4cc77a # v3.25.15
+        uses: github/codeql-action/upload-sarif@eb055d739abdc2e8de2e5f4ba1a8b246daa779aa # v3.26.0
         with:
           sarif_file: results.sarif
