ci(deps): bump github/codeql-action

Bumps the all-actions group with 1 update in the / directory: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 4.31.6 to 4.31.8 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@v4.31.6...1b168cd) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.31.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-actions ... Signed-off-by: dependabot[bot] <[email protected]>
bit2me-devs · dependabot · Dec 16, 2025 · Dec 16, 2025 · 6278ee29473599855bbebabcc64435092a72715e
commit 6278ee29473599855bbebabcc64435092a72715e
diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml
@@ -50,7 +50,7 @@ jobs:
 
             - name: Upload results to GitHub Security
               if: always()
-              uses: github/codeql-action/upload-sarif@fe4161a26a8629af62121b670040955b330f9af2 # v4
+              uses: github/codeql-action/upload-sarif@1b168cd39490f61582a9beae412bb7057a6b2c4e # v4
               with:
                   sarif_file: results.sarif
 
diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml
@@ -39,7 +39,7 @@ jobs:
                   repo_token: ${{ secrets.GITHUB_TOKEN }}
 
             - name: Upload results to GitHub Security
-              uses: github/codeql-action/upload-sarif@fe4161a26a8629af62121b670040955b330f9af2 # v4
+              uses: github/codeql-action/upload-sarif@1b168cd39490f61582a9beae412bb7057a6b2c4e # v4
               with:
                   sarif_file: results.sarif