From 242d6685e0f63b688a40b89ea54fcace66be566b Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 15 Dec 2023 16:13:08 +0530 Subject: [PATCH] build(deps): Bump github/codeql-action from 2 to 3 (#18742) Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Julien Robert --- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/gosec.yml | 2 +- simapp/upgrades.go | 2 +- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index e7c8ce4544..eb409afa09 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -29,7 +29,7 @@ jobs: check-latest: true # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v2 + uses: github/codeql-action/init@v3 with: languages: "go" queries: +security-and-quality,github/codeql/go/ql/src/experimental/InconsistentCode/DeferInLoop.ql@main,github/codeql/go/ql/src/experimental/Unsafe/WrongUsageOfUnsafe.ql@main,github/codeql/go/ql/src/experimental/CWE-369/DivideByZero.ql@main @@ -42,7 +42,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v2 + uses: github/codeql-action/autobuild@v3 # ℹī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -56,4 +56,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v2 + uses: github/codeql-action/analyze@v3 diff --git a/.github/workflows/gosec.yml b/.github/workflows/gosec.yml index 502285ee16..5513ed3d42 100644 --- a/.github/workflows/gosec.yml +++ b/.github/workflows/gosec.yml @@ -32,7 +32,7 @@ jobs: args: "-exclude=G101,G107 -no-fail -fmt sarif -out results.sarif ./..." - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@v3 with: # Path to SARIF file relative to the root of the repository sarif_file: results.sarif diff --git a/simapp/upgrades.go b/simapp/upgrades.go index ffaaabdf2b..eb83e948f2 100644 --- a/simapp/upgrades.go +++ b/simapp/upgrades.go @@ -13,7 +13,7 @@ import ( ) // UpgradeName defines the on-chain upgrade name for the sample SimApp upgrade -// from v047 to v050. +// from v0.50.x to v0.51.x // // NOTE: This upgrade defines a reference implementation of what an upgrade // could look like when an application is migrating from Cosmos SDK version