build(deps): bump github/codeql-action from 2 to 3 (#59)

dependabot[bot] · web-flow · commit f68ce23b8595 · 2024-02-21T13:54:07.000-08:00
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@v2...v3) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/action.yml b/action.yml
@@ -71,7 +71,7 @@ runs:
           SBOM.spdx.json
           SBOM.spdx.yml
         if-no-files-found: ignore
-    - uses: github/codeql-action/upload-sarif@v2
+    - uses: github/codeql-action/upload-sarif@v3
       with:
         sarif_file: /tmp/scan-report.sarif
     - run: rm -f scan-result.html scan-result.pdf scan-result.json
