Bump actions/dependency-review-action from 2.5.1 to 4.3.3

Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2.5.1 to 4.3.3. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](actions/dependency-review-action@0efb1d1...72eb03d) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]>
btschwertfeger · Jun 24, 2024 · 4c9c01d · 4c9c01d
1 parent d3efe88
commit 4c9c01d
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/_codeql.yaml b/.github/workflows/_codeql.yaml
@@ -44,7 +44,7 @@ jobs:
 
       - name: "Dependency Review"
         if: github.event_name == 'pull_request'
-        uses: actions/dependency-review-action@0efb1d1d84fc9633afcdaad14c485cbbc90ef46c # v2.5.1
+        uses: actions/dependency-review-action@72eb03d02c7872a771aacd928f3123ac62ad6d3a # v4.3.3
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL