commit | 8ed7e2542704570bba589a930c3d396918e2fbad | [log] [tgz] |
---|---|---|
author | dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> | Mon Jul 04 23:49:13 2022 -0400 |
committer | GitHub <noreply@github.com> | Mon Jul 04 23:49:13 2022 -0400 |
tree | 7eb3a0a2286be2612df9637230907f9ec90bbb98 | |
parent | 7c02ebea5d9655e0dcf92ff5d5fdbfd240f6f006 [diff] |
Bump ossf/scorecard-action from 1.1.1 to 1.1.2 (#728) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 1.1.1 to 1.1.2. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/3e15ea8318eee9b333819ec77a36aca8d39df13e...ce330fde6b1a5c9c75b417e7efc510b822a35564) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index 7e62f7b..0a65fb5 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml
@@ -25,7 +25,7 @@ persist-credentials: false - name: "Run analysis" - uses: ossf/scorecard-action@3e15ea8318eee9b333819ec77a36aca8d39df13e # v1.0.4 + uses: ossf/scorecard-action@ce330fde6b1a5c9c75b417e7efc510b822a35564 # v1.0.4 with: results_file: results.sarif results_format: sarif