From 57c034907d857a37f59567bf2b24cab1c4df2891 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 30 Mar 2026 18:23:32 +0000 Subject: [PATCH] ci: bump the actions group with 2 updates Bumps the actions group with 2 updates: [davelosert/vitest-coverage-report-action](https://github.com/davelosert/vitest-coverage-report-action) and [github/codeql-action](https://github.com/github/codeql-action). Updates `davelosert/vitest-coverage-report-action` from 2.9.3 to 2.10.0 - [Release notes](https://github.com/davelosert/vitest-coverage-report-action/releases) - [Changelog](https://github.com/davelosert/vitest-coverage-report-action/blob/main/release.config.js) - [Commits](https://github.com/davelosert/vitest-coverage-report-action/compare/2500dafcee7dd64f85ab689c0b83798a8359770e...bd52af59d9cd548ea7cd405044d2458042e6d888) Updates `github/codeql-action` from 4.34.1 to 4.35.1 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/38697555549f1db7851b81482ff19f1fa5c4fedc...c10b8064de6f491fea524254123dbe5e09572f13) --- updated-dependencies: - dependency-name: davelosert/vitest-coverage-report-action dependency-version: 2.10.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions - dependency-name: github/codeql-action dependency-version: 4.35.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions ... Signed-off-by: dependabot[bot] --- .github/workflows/ci.yml | 6 +++--- .github/workflows/codeql.yml | 6 +++--- 2 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 1a35224..e1ba775 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -268,21 +268,21 @@ jobs: path: apps/web/coverage - name: Coverage Report Parser - uses: davelosert/vitest-coverage-report-action@2500dafcee7dd64f85ab689c0b83798a8359770e # v2.9.3 + uses: davelosert/vitest-coverage-report-action@bd52af59d9cd548ea7cd405044d2458042e6d888 # v2.10.0 with: working-directory: packages/htoprc-parser name: Parser comment-on: none - name: Coverage Report API - uses: davelosert/vitest-coverage-report-action@2500dafcee7dd64f85ab689c0b83798a8359770e # v2.9.3 + uses: davelosert/vitest-coverage-report-action@bd52af59d9cd548ea7cd405044d2458042e6d888 # v2.10.0 with: working-directory: apps/api name: API comment-on: none - name: Coverage Report Web - uses: davelosert/vitest-coverage-report-action@2500dafcee7dd64f85ab689c0b83798a8359770e # v2.9.3 + uses: davelosert/vitest-coverage-report-action@bd52af59d9cd548ea7cd405044d2458042e6d888 # v2.10.0 with: working-directory: apps/web name: Web diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 99b2359..45be8ba 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -27,15 +27,15 @@ jobs: uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Initialize CodeQL - uses: github/codeql-action/init@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1 + uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1 with: languages: ${{ matrix.language }} queries: security-and-quality - name: Autobuild - uses: github/codeql-action/autobuild@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1 + uses: github/codeql-action/autobuild@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1 + uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1 with: category: "/language:${{ matrix.language }}"