allthingslinux · renovate · Sep 5, 2025
diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
@@ -348,7 +348,7 @@ jobs:
       # SECURITY RESULTS INTEGRATION
       # Uploads scan results to GitHub Security tab for centralized management
       - name: Upload Trivy scan results
-        uses: github/codeql-action/upload-sarif@51f77329afa6477de8c49fc9c7046c15b9a4e79d # v3
+        uses: github/codeql-action/upload-sarif@f1f6e5f6af878fb37288ce1c627459e94dbf7d01 # v3
         with:
           sarif_file: trivy-results.sarif
 

diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -103,15 +103,15 @@ jobs:
       # CODEQL INITIALIZATION
       # Configures language-specific analysis parameters
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@51f77329afa6477de8c49fc9c7046c15b9a4e79d # v3
+        uses: github/codeql-action/init@f1f6e5f6af878fb37288ce1c627459e94dbf7d01 # v3
         with:
           languages: ${{ matrix.language }}
           build-mode: ${{ matrix.build-mode }}
 
       # SECURITY ANALYSIS EXECUTION
       # Performs comprehensive static analysis with categorized results
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@51f77329afa6477de8c49fc9c7046c15b9a4e79d # v3
+        uses: github/codeql-action/analyze@f1f6e5f6af878fb37288ce1c627459e94dbf7d01 # v3
         with:
           category: /language:${{matrix.language}}