This is an automated email from the ASF dual-hosted git repository.
pvillard pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/main by this push:
new 746ff4ddb5d NIFI-15723 Upgraded CodeQL from 3 to 4 (#11015)
746ff4ddb5d is described below
commit 746ff4ddb5d472c6d75617644b56960a7505d8e6
Author: David Handermann <[email protected]>
AuthorDate: Wed Mar 18 04:43:51 2026 -0500
NIFI-15723 Upgraded CodeQL from 3 to 4 (#11015)
- Upgraded Anchore Scan Action from 6 to 7
---
.github/workflows/code-compliance.yml | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/.github/workflows/code-compliance.yml
b/.github/workflows/code-compliance.yml
index 8ff0ce82bd1..ab068ecbf37 100644
--- a/.github/workflows/code-compliance.yml
+++ b/.github/workflows/code-compliance.yml
@@ -76,7 +76,7 @@ jobs:
java-version: '21'
cache: 'maven'
- name: Initialize CodeQL
- uses: github/codeql-action/init@v3
+ uses: github/codeql-action/init@v4
with:
languages: java
- name: Maven Package
@@ -93,7 +93,7 @@ jobs:
package
pmd:check
- name: Perform CodeQL Analysis
- uses: github/codeql-action/analyze@v3
+ uses: github/codeql-action/analyze@v4
- name: Get Project Version
run: echo "PROJECT_VERSION=$(./mvnw help:evaluate
-Dexpression=project.version -q -DforceStdout)" >> $GITHUB_ENV
- name: Generate SBOM
@@ -105,7 +105,7 @@ jobs:
artifact-name: nifi-${{ env.PROJECT_VERSION }}.spdx.json
output-file: nifi-${{ env.PROJECT_VERSION }}.spdx.json
- name: Scan SBOM
- uses: anchore/scan-action@v6
+ uses: anchore/scan-action@v7
with:
sbom: nifi-${{ env.PROJECT_VERSION }}.spdx.json
severity-cutoff: 'medium'
