chore(deps): update docker/build-push-action action to v6.13.0 (#603) #3588

	name: Semgrep

	on:
	push:
	branches: [main]
	pull_request:
	branches: [main]
	schedule:
	- cron: "41 3 * * 6"

	permissions:
	security-events: write
	actions: read
	contents: read

	jobs:
	semgrep:
	name: Scan
	runs-on: ubuntu-latest

	container:
	image: returntocorp/semgrep@sha256:2769f9ce8e44d2cd7d31e1d660e25b054ff3443fc5f5130fbc6d3a6e7dcec4c2

	steps:
	- name: Check out repo
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: Run semgrep
	shell: bash
	env:
	SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
	run: \|
	semgrep ci --sarif --output=semgrep.sarif
	- name: Upload SARIF file for GitHub Advanced Security Dashboard
	if: always()
	uses: github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 # v3.28.5
	with:
	sarif_file: semgrep.sarif

Provide feedback