From dd66ef28bc5ce852511f50f78a1fb0a593f41f44 Mon Sep 17 00:00:00 2001
From: Jon Gadsden <jon.gadsden@owasp.org>
Date: Sat, 7 Sep 2024 16:56:56 +0100
Subject: [PATCH 1/2] update docker/build-push-action in workflows

---
 .github/workflows/pull_request.yaml | 2 +-
 .github/workflows/push.yaml         | 4 ++--
 .github/workflows/release.yaml      | 4 ++--
 3 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/pull_request.yaml b/.github/workflows/pull_request.yaml
index 88331be6..e0aa65d0 100644
--- a/.github/workflows/pull_request.yaml
+++ b/.github/workflows/pull_request.yaml
@@ -171,7 +171,7 @@ jobs:
 
       - name: Build for amd64
         id: docker_build
-        uses: docker/build-push-action@v6.5.0
+        uses: docker/build-push-action@v6.7.0
         with:
           context: ./
           file: ./Dockerfile
diff --git a/.github/workflows/push.yaml b/.github/workflows/push.yaml
index f336c60c..911d7eed 100644
--- a/.github/workflows/push.yaml
+++ b/.github/workflows/push.yaml
@@ -194,7 +194,7 @@ jobs:
       # platform manifests not (yet) supported, so split out architectures
       - name: Build  for amd64 and push latest
         id: docker_build_amd64
-        uses: docker/build-push-action@v6.5.0
+        uses: docker/build-push-action@v6.7.0
         with:
           context: ./
           file: ./Dockerfile
@@ -208,7 +208,7 @@ jobs:
 
       - name: Build for arm64 and push latest-arm64
         id: docker_build_arm64
-        uses: docker/build-push-action@v6.5.0
+        uses: docker/build-push-action@v6.7.0
         with:
           context: ./
           file: ./Dockerfile
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 56de9ac6..d19f472c 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -380,7 +380,7 @@ jobs:
       # platform manifests not (yet) supported, so split out architectures
       - name: Build for amd64 and push to Docker Hub
         id: docker_build_amd64
-        uses: docker/build-push-action@v6.5.0
+        uses: docker/build-push-action@v6.7.0
         with:
           context: ./
           file: ./Dockerfile
@@ -394,7 +394,7 @@ jobs:
 
       - name: Build for arm64 and push to Docker Hub
         id: docker_build_arm64
-        uses: docker/build-push-action@v6.5.0
+        uses: docker/build-push-action@v6.7.0
         with:
           context: ./
           file: ./Dockerfile

From 6597ed969e257d96a6323c7d4212bc747665c805 Mon Sep 17 00:00:00 2001
From: Jon Gadsden <jon.gadsden@owasp.org>
Date: Sat, 7 Sep 2024 17:01:53 +0100
Subject: [PATCH 2/2] update github/codeql-action in workflows

---
 .github/workflows/housekeeping.yaml | 8 ++++----
 .github/workflows/pull_request.yaml | 6 +++---
 .github/workflows/push.yaml         | 6 +++---
 3 files changed, 10 insertions(+), 10 deletions(-)

diff --git a/.github/workflows/housekeeping.yaml b/.github/workflows/housekeeping.yaml
index 9d28ed86..3378e04a 100644
--- a/.github/workflows/housekeeping.yaml
+++ b/.github/workflows/housekeeping.yaml
@@ -73,7 +73,7 @@ jobs:
           output: 'trivy-results.sarif'
 
       - name: Upload scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v3.25.1
+        uses: github/codeql-action/upload-sarif@v3.26.6
         with:
           sarif_file: 'trivy-results.sarif'
 
@@ -93,7 +93,7 @@ jobs:
           ref: main
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3.25.1
+        uses: github/codeql-action/init@v3.26.6
         with:
           languages: 'javascript'
           config-file: ./.github/codeql/codeql-config.yml
@@ -102,10 +102,10 @@ jobs:
           # Prefix the list here with "+" to use these queries and those in the config file.
 
       - name: CodeQL autobuild
-        uses: github/codeql-action/autobuild@v3.25.1
+        uses: github/codeql-action/autobuild@v3.26.6
 
       - name: Perform vulnerability analysis
-        uses: github/codeql-action/analyze@v3.25.1
+        uses: github/codeql-action/analyze@v3.26.6
 
   link_checker:
     name: Link checker
diff --git a/.github/workflows/pull_request.yaml b/.github/workflows/pull_request.yaml
index e0aa65d0..9bd83edc 100644
--- a/.github/workflows/pull_request.yaml
+++ b/.github/workflows/pull_request.yaml
@@ -130,7 +130,7 @@ jobs:
         uses: actions/checkout@v4.1.1
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3.25.1
+        uses: github/codeql-action/init@v3.26.6
         with:
           languages: 'javascript'
           config-file: ./.github/codeql/codeql-config.yml
@@ -139,10 +139,10 @@ jobs:
           # Prefix the list here with "+" to use these queries and those in the config file.
 
       - name: CodeQL autobuild
-        uses: github/codeql-action/autobuild@v3.25.1
+        uses: github/codeql-action/autobuild@v3.26.6
 
       - name: Perform vulnerability analysis
-        uses: github/codeql-action/analyze@v3.25.1
+        uses: github/codeql-action/analyze@v3.26.6
 
   build_docker_image:
     name: Build docker image
diff --git a/.github/workflows/push.yaml b/.github/workflows/push.yaml
index 911d7eed..fbaf10bd 100644
--- a/.github/workflows/push.yaml
+++ b/.github/workflows/push.yaml
@@ -143,7 +143,7 @@ jobs:
         uses: actions/checkout@v4.1.1
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3.25.1
+        uses: github/codeql-action/init@v3.26.6
         with:
           languages: 'javascript'
           config-file: ./.github/codeql/codeql-config.yml
@@ -152,10 +152,10 @@ jobs:
           # Prefix the list here with "+" to use these queries and those in the config file.
 
       - name: CodeQL autobuild
-        uses: github/codeql-action/autobuild@v3.25.1
+        uses: github/codeql-action/autobuild@v3.26.6
 
       - name: Perform vulnerability analysis
-        uses: github/codeql-action/analyze@v3.25.1
+        uses: github/codeql-action/analyze@v3.26.6
 
   build_docker_image:
     name: Build latest docker