Re-Enable dependabot for GitHub Actions

Sella-GH · Jan 16, 2025 · 483bd96 · 483bd96
1 parent 4357354
commit 483bd96
Show file tree

Hide file tree

Showing 6 changed files with 103 additions and 102 deletions.
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -55,13 +55,14 @@ jobs:
         # see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning.
         # If you are analyzing a compiled language, you can modify the 'build-mode' for that language to customize how
         # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
+
     steps:
     - name: Checkout repository
-      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
+      uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169
+      uses: github/codeql-action/init@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
       with:
         config-file: ./.github/codeql/codeql-config.yml
         languages: ${{ matrix.language }}
@@ -82,7 +83,7 @@ jobs:
     # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
     - if: matrix.build-mode == 'manual'
       name: Setup .NET 9
-      uses: actions/setup-dotnet@3e891b0cb619bf60e2c25674b222b8940e2c1c25
+      uses: actions/setup-dotnet@87b7050bc53ea08284295505d98d2aa94301e852 # v4.2.0
       with:
         dotnet-version: '9'
 
@@ -94,21 +95,21 @@ jobs:
 
     - if: matrix.language == 'actions'
       name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169
+      uses: github/codeql-action/analyze@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
       with:
         category: "/language:${{matrix.language}}"
-    
+
     - if: matrix.language == 'csharp'
       name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169
+      uses: github/codeql-action/analyze@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
       with:
         category: "/language:${{matrix.language}}"
         output: sarif-results
         upload: failure-only
 
     - if: matrix.language == 'csharp'
       name: Filter Sarif Results
-      uses: advanced-security/filter-sarif@f3b8118a9349d88f7b1c0c488476411145b6270d
+      uses: advanced-security/filter-sarif@f3b8118a9349d88f7b1c0c488476411145b6270d # v1.0.1
       with:
         patterns: |
           -**/obj/**
@@ -118,13 +119,13 @@ jobs:
 
     - if: matrix.language == 'csharp'
       name: Upload Sarif
-      uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169
+      uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
       with:
         sarif_file: sarif-results/csharp.sarif
 
     - if: matrix.language == 'csharp'
       name: Upload loc as a build artifact
-      uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b
+      uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
       with:
         name: sarif-results
         path: sarif-results

diff --git a/.github/workflows/dependabot-auto-merge.yml b/.github/workflows/dependabot-auto-merge.yml
@@ -2,7 +2,7 @@ name: Dependabot Auto-Merge
 
 on:
   pull_request_target:
-    types: [assigned, opened, synchronize, reopened, ready_for_review]
+    types: [opened, synchronize, reopened]
   check_suite:
     types: [completed]
 
@@ -14,7 +14,7 @@ jobs:
   dependabot:
     runs-on: ubuntu-24.04
     if: ${{ github.actor == 'dependabot[bot]' }}
-    steps:          
+    steps:
       - name: Get PR URL
         if: ${{ github.event_name == 'pull_request_target' }}
         run: echo "PR_URL=${{ github.event.pull_request.html_url }}" >> $GITHUB_ENV