From 8c5378eb5e2bfb8bdf3b313e82845e2cab36ca25 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Thu, 30 Mar 2023 21:15:57 +0000
Subject: [PATCH] Bump github/codeql-action from 2.2.7 to 2.2.8
 (flutter/engine#40661)

Bump github/codeql-action from 2.2.7 to 2.2.8
---
 engine/src/flutter/.github/workflows/scorecards-analysis.yml | 2 +-
 engine/src/flutter/.github/workflows/third_party_scan.yml    | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/engine/src/flutter/.github/workflows/scorecards-analysis.yml b/engine/src/flutter/.github/workflows/scorecards-analysis.yml
index 7a516003a5e..4394dfe8b2d 100644
--- a/engine/src/flutter/.github/workflows/scorecards-analysis.yml
+++ b/engine/src/flutter/.github/workflows/scorecards-analysis.yml
@@ -65,6 +65,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@168b99b3c22180941ae7dbdd5f5c9678ede476ba
+        uses: github/codeql-action/upload-sarif@67a35a08586135a9573f4327e904ecbf517a882d
         with:
           sarif_file: results.sarif
diff --git a/engine/src/flutter/.github/workflows/third_party_scan.yml b/engine/src/flutter/.github/workflows/third_party_scan.yml
index 674ea2a5987..951d26a0a6a 100644
--- a/engine/src/flutter/.github/workflows/third_party_scan.yml
+++ b/engine/src/flutter/.github/workflows/third_party_scan.yml
@@ -51,6 +51,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@168b99b3c22180941ae7dbdd5f5c9678ede476ba
+        uses: github/codeql-action/upload-sarif@67a35a08586135a9573f4327e904ecbf517a882d
         with:
           sarif_file: osvReport.sarif