gha: bump securego/gosec from 2.20.0 to 2.21.1 (#551)

Bumps [securego/gosec](https://github.com/securego/gosec) from 2.20.0 to 2.21.1. - [Release notes](https://github.com/securego/gosec/releases) - [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml) - [Commits](securego/gosec@6fbd381...0ce4453) --- updated-dependencies: - dependency-name: securego/gosec dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
jauderho · Sep 5, 2024 · 70b7756 · 70b7756
1 parent e3e60bf
commit 70b7756
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/scan.yml b/.github/workflows/scan.yml
@@ -77,7 +77,7 @@ jobs:
         uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v2
 
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@6fbd381238e97e1d1f3358f0d6d65de78dcf9245 # master
+        uses: securego/gosec@0ce4453ddd8cca1291d2056cf903b545baad95a0 # master
         with:
           # we let the report trigger content trigger a failure using the GitHub Security features.
           args: '-no-fail -fmt sarif -out results.sarif ./...'