From 0bd592e33ae5e9f2a444ff38a11751980f1db84b Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 16 Mar 2026 09:49:46 +0000
Subject: [PATCH] Update github/codeql-action action to v4

---
 .github/workflows/maven-service-build.yml | 2 +-
 .github/workflows/semgrep-scan.yml        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/maven-service-build.yml b/.github/workflows/maven-service-build.yml
index 7d5582c..a21bf13 100644
--- a/.github/workflows/maven-service-build.yml
+++ b/.github/workflows/maven-service-build.yml
@@ -74,6 +74,6 @@ jobs:
         run: trivy sbom --severity CRITICAL,HIGH --format sarif -o trivy-report.sarif ./bom.json
 
       - name: Upload SARIF report
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v4
         with:
           sarif_file: trivy-report.sarif
diff --git a/.github/workflows/semgrep-scan.yml b/.github/workflows/semgrep-scan.yml
index 6beb59e..19e73a9 100644
--- a/.github/workflows/semgrep-scan.yml
+++ b/.github/workflows/semgrep-scan.yml
@@ -26,7 +26,7 @@ jobs:
           path: semgrep.sarif
 
       - name: Scanning alerts
-        uses: github/codeql-action/upload-sarif@v3.28.8
+        uses: github/codeql-action/upload-sarif@v4.33.0
         with:
           sarif_file: semgrep.sarif
           category: semgrep