Constantin07 · Constantin07 · Dec 13, 2023 · Dec 13, 2023
diff --git a/.github/workflows/consul-template.yml b/.github/workflows/consul-template.yml
@@ -6,13 +6,13 @@
 on:
  pull_request:
    paths:
      - 'pipelines/dockerfiles/consul-template/**'
      - .github/workflows/consul-template.yml
    branches: [ master ]

  push:
    paths:
      - 'pipelines/dockerfiles/consul-template/**'
      - .github/workflows/consul-template.yml

  workflow_dispatch:
@@ -49,7 +49,7 @@
           output: 'trivy-results.sarif'
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         if: always()
         with:
           sarif_file: 'trivy-results.sarif'
@@ -76,6 +76,6 @@
           soft_fail: true
 
       - name: Upload Checkov results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'checkov-results.sarif'
diff --git a/.github/workflows/docker-nginx-proxy.yml b/.github/workflows/docker-nginx-proxy.yml
@@ -5,13 +5,13 @@
 on:
  pull_request:
    paths:
      - 'pipelines/dockerfiles/docker-nginx-proxy/**'
      - .github/workflows/docker-nginx-proxy.yml
    branches: [ master ]

  push:
    paths:
      - 'pipelines/dockerfiles/docker-nginx-proxy/**'
      - .github/workflows/docker-nginx-proxy.yml

  workflow_dispatch:
@@ -43,15 +43,15 @@
      - name: Run trivy scan
        uses: aquasecurity/[email protected]
        with:
          image-ref: 'docker.io/constantin07/docker-nginx-proxy:latest'
          security-checks: 'vuln,secret,config'
          format: 'sarif'
           output: 'trivy-results.sarif'
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
 
      - name: Docker push
        run: make push
@@ -75,6 +75,6 @@
           soft_fail: true
 
       - name: Upload Checkov results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'checkov-results.sarif'
diff --git a/.github/workflows/golang-terratest.yml b/.github/workflows/golang-terratest.yml
@@ -46,7 +46,7 @@ jobs:
           output: 'trivy-results.sarif'
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         if: always()
         with:
           sarif_file: 'trivy-results.sarif'
@@ -73,6 +73,6 @@ jobs:
           soft_fail: true
 
       - name: Upload Checkov results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'checkov-results.sarif'
diff --git a/.github/workflows/tool-box.yml b/.github/workflows/tool-box.yml
@@ -75,7 +75,7 @@ jobs:
           output: 'trivy-results.sarif'
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
 

diff --git a/.github/workflows/vault.yml b/.github/workflows/vault.yml
@@ -92,7 +92,7 @@ jobs:
           output: 'trivy-results.sarif'
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2.20.0
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'