chore(deps): update github/codeql-action action to v4.31.7 #9889
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This action against that any PR targeting the main branch touches released | |
| # sections in CHANGELOG file. If change to released CHANGELOG is required, like | |
| # doing a release, add the \"Unlock Released Changelog\" label to disable this action. | |
| name: Protect released changelog | |
| on: | |
| pull_request: | |
| types: [opened, synchronize, reopened, labeled, unlabeled] | |
| # Declare default permissions as read only. | |
| permissions: read-all | |
| jobs: | |
| protect-released-changelog: | |
| runs-on: ubuntu-latest | |
| if: ${{ !contains(github.event.pull_request.labels.*.name, 'Unlock Released Changelog')}} | |
| steps: | |
| - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 | |
| - name: Protect the released changelog | |
| run: | | |
| ./verify_released_changelog.sh ${{ github.base_ref }} |