chore(deps): update pre-commit hook bridgecrewio/checkov (3.2.497 → 3.2.499)

Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2026-03-17 18:04:12 +00:00 · 2026-01-25 19:40:00 +00:00
5 changed files with 31 additions and 19 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -1,34 +1,46 @@
 ---
 # yaml-language-server: $schema=https://json.schemastore.org/github-workflow.json
-name: "CodeQL"
+name: 'CodeQL'
 on:
  push:
-    branches: ["main"]
+    branches: ['main']
  pull_request:
-    branches: ["main"]
+    branches: ['main']
  schedule:
-    - cron: "30 1 * * 0"
+    - cron: '30 1 * * 0' # Run at 1:30 AM UTC every Sunday
  merge_group:
-permissions: {}
+permissions:
  actions: read
  contents: read
 jobs:
  analyze:
    name: Analyze
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      packages: read
      security-events: write
    strategy:
      fail-fast: false
      matrix:
-        language: ["actions"]
+        language: ['actions'] # Add languages used in your actions
    steps:
-      - name: CodeQL Analysis
+      - name: Checkout repository
-        uses: ivuorinen/actions/codeql-analysis@1da3a0e79fcd7da6bed9ee1979f1449ba11f58f9 # v2026.03.14
+        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
      - name: Initialize CodeQL
        uses: github/codeql-action/init@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
        with:
-          language: ${{ matrix.language }}
+          languages: ${{ matrix.language }}
          queries: security-and-quality
      - name: Autobuild
        uses: github/codeql-action/autobuild@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
      - name: Perform CodeQL Analysis
        uses: github/codeql-action/analyze@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
        with:
          category: '/language:${{matrix.language}}'
--- a/.github/workflows/pr-lint.yml
+++ b/.github/workflows/pr-lint.yml
@@ -27,4 +27,4 @@ jobs:
    steps:
      - name: Run PR Lint
        # https://github.com/ivuorinen/actions
-        uses: ivuorinen/actions/pr-lint@1da3a0e79fcd7da6bed9ee1979f1449ba11f58f9 # v2026.03.14
+        uses: ivuorinen/actions/pr-lint@f98ae7cd7d0feb1f9d6b01de0addbb11414cfc73 # v2026.01.21
--- a/.github/workflows/stale.yml
+++ b/.github/workflows/stale.yml
@@ -23,4 +23,4 @@ jobs:
      issues: write
      pull-requests: write
    steps:
-      - uses: ivuorinen/actions/stale@1da3a0e79fcd7da6bed9ee1979f1449ba11f58f9 # v2026.03.14
+      - uses: ivuorinen/actions/stale@f98ae7cd7d0feb1f9d6b01de0addbb11414cfc73 # v2026.01.21
--- a/.github/workflows/sync-labels.yml
+++ b/.github/workflows/sync-labels.yml
@@ -38,4 +38,4 @@ jobs:
        with:
          token: ${{ secrets.GITHUB_TOKEN }}
      - name: ⤵️ Sync Latest Labels Definitions
-        uses: ivuorinen/actions/sync-labels@1da3a0e79fcd7da6bed9ee1979f1449ba11f58f9 # v2026.03.14
+        uses: ivuorinen/actions/sync-labels@f98ae7cd7d0feb1f9d6b01de0addbb11414cfc73 # v2026.01.21
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -22,7 +22,7 @@ repos:
        args: [--autofix, --no-sort-keys]
  - repo: https://github.com/igorshubovych/markdownlint-cli
-    rev: v0.48.0
+    rev: v0.47.0
    hooks:
      - id: markdownlint
        args: [-c, .markdownlint.json, --fix]
@@ -44,18 +44,18 @@ repos:
        args: ["--severity=warning"]
  - repo: https://github.com/rhysd/actionlint
-    rev: v1.7.11
+    rev: v1.7.10
    hooks:
      - id: actionlint
        args: ["-shellcheck="]
  - repo: https://github.com/renovatebot/pre-commit-hooks
-    rev: 43.77.4
+    rev: 42.84.0
    hooks:
      - id: renovate-config-validator
  - repo: https://github.com/bridgecrewio/checkov.git
-    rev: "3.2.508"
+    rev: "3.2.499"
    hooks:
      - id: checkov
        args: