Update CodeQL Action and Confirm Permissions #1762
Open
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
PR Feedback (click)
I created this PR to fix the failing GitHub Actions.## Description
This PR addresses the issue with the failing GitHub Actions workflow. The changes involve updating the
github/codeql-action/upload-sarif
action from v2 to v3 to avoid future deprecation issues and confirming the permissions settings within the workflow file.Summary of Changes
github/codeql-action/upload-sarif
action from v2 to v3 in the.github/workflows/ossar.yml
file to align with the latest version and avoid deprecation.security-events
are correctly set towrite
in the.github/workflows/ossar.yml
file. This permission is crucial for thegithub/codeql-action/upload-sarif
action to upload SARIF results successfully.Please review the changes and provide any feedback.