Update CodeQL Action to v3 in ossar.yml #1756
Open
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
PR Feedback (click)
I created this PR to fix the failing GitHub Actions.## Description
This PR addresses the issue of a failing GitHub Actions run due to the use of
github/codeql-action/upload-sarif@v2
which is causing an error: "Resource not accessible by integration". Additionally, there's a warning indicating that CodeQL Action v2 will be deprecated on December 5th, 2024.To resolve this issue and future-proof our workflows, we have updated the CodeQL action version from v2 to v3 in the
.github/workflows/ossar.yml
file.Summary of Changes
github/codeql-action/upload-sarif@v2
togithub/codeql-action/upload-sarif@v3
in.github/workflows/ossar.yml
.These changes ensure that our repository's CI/CD pipeline remains functional and up-to-date with GitHub's best practices and recommendations. This is critical for maintaining the security and efficiency of the code scanning process within the CI/CD pipeline.