deps: update github/codeql-action digest to c36620d

.github/workflows/build-and-test.yml

@@ -33,15 +33,15 @@ jobs:
  - name: Checkout Repository
  uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 # v4
  - name: Initialize CodeQL
- uses: github/codeql-action/init@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3
+ uses: github/codeql-action/init@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3
  with:
  languages: java
  - name: Setup Gradle
  uses: gradle/actions/setup-gradle@d156388eb19639ec20ade50009f3d199ce1e2808 # v4
  - name: Build all classes
  run: ./gradlew -Dorg.gradle.jvmargs=-Xmx1g classes
  - name: Perform CodeQL Analysis
- uses: github/codeql-action/analyze@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3
+ uses: github/codeql-action/analyze@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3
  test:
  needs: build
  runs-on: ubuntu-24.04

.github/workflows/scorecard-analysis.yml

@@ -30,6 +30,6 @@ jobs:
  results_format: sarif
  publish_results: true
  - name: Upload Code Scanning Results
- uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3
+ uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3
  with:
  sarif_file: ossf-results.sarif

.github/workflows/static-analysis.yml

@@ -70,7 +70,7 @@ jobs:
  - name: Check for Detekt Issues
  run: ./gradlew detektAll
  - name: Upload SARIF File
- uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3
+ uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3
  if: always() # Upload even if the previous step failed.
  with:
  sarif_file: build/reports/detekt/merged.sarif
@@ -116,7 +116,7 @@ jobs:
  post-pr-comment: false
  use-caches: false
  - name: Upload Code Scanning Results
- uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3
+ uses: github/codeql-action/upload-sarif@c36620d31ac7c881962c3d9dd939c40ec9434f2b # v3
  with:
  sarif_file: ${{ runner.temp }}/qodana/results/qodana.sarif.json
  reuse-tool: