build(deps): bump github/codeql-action from 4.36.0 to 4.36.1

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.36.0 to 4.36.1. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/7211b7c8077ea37d8641b6271f6a365a22a5fbfa...87557b9c84dde89fdd9b10e88954ac2f4248e463) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.36.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
2026-06-05 08:20:22 +03:00 · 2026-06-04 05:53:29 +00:00
2 changed files with 7 additions and 41 deletions
@@ -7,9 +7,6 @@ concurrency:
  group: ${{ github.workflow }}-${{ github.ref }}
  cancel-in-progress: true

-env:
-  GHCR_TEST_IMAGE: ghcr.io/docker/login-action-test:ci-${{ github.sha }}
-
 on:
  workflow_dispatch:
  schedule:
@@ -59,39 +56,8 @@ jobs:
          password: ${{ secrets.GITHUB_TOKEN }}
          logout: ${{ matrix.logout }}

-  push-ghcr:
-    runs-on: ubuntu-latest
-    permissions:
-      contents: read
-      packages: write
-    steps:
-      -
-        name: Checkout
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-      -
-        name: Login to GitHub Container Registry
-        uses: ./
-        with:
-          registry: ghcr.io
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
-      -
-        name: Build and push test image
-        run: |
-          docker buildx build --push -t "${GHCR_TEST_IMAGE}" - <<EOF
-          FROM scratch
-          LABEL org.opencontainers.image.title="docker/login-action CI test image"
-          LABEL org.opencontainers.image.description="Empty image used by CI to verify GHCR authentication."
-          LABEL org.opencontainers.image.source="https://github.com/${GITHUB_REPOSITORY}"
-          EOF
-
  dind:
    runs-on: ubuntu-latest
-    needs:
-      - push-ghcr
-    permissions:
-      contents: read
-      packages: read
    env:
      DOCKER_CONFIG: $HOME/.docker
    steps:
@@ -103,19 +69,19 @@ jobs:
        uses: ./
        with:
          registry: ghcr.io
-          username: ${{ github.actor }}
-          password: ${{ secrets.GITHUB_TOKEN }}
+          username: ${{ secrets.GHCR_USERNAME }}
+          password: ${{ secrets.GHCR_PAT }}
      -
        name: DinD
        uses: docker://docker:29.3@sha256:4d90f1f6c400315c2dba96d3ec93c01e64198395cbba04f79d12adce4f737029
        with:
          entrypoint: docker
-          args: pull ${{ env.GHCR_TEST_IMAGE }}
+          args: pull ghcr.io/docker-ghactiontest/test
      -
-        name: Pull test image
+        name: Pull private image
        run: |
          docker image prune -a -f >/dev/null 2>&1
-          docker pull "${GHCR_TEST_IMAGE}"
+          docker pull ghcr.io/docker-ghactiontest/test

  acr:
    runs-on: ubuntu-latest
@@ -35,12 +35,12 @@ jobs:
          node-version: ${{ env.NODE_VERSION }}
      -
        name: Initialize CodeQL
-        uses: github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
+        uses: github/codeql-action/init@87557b9c84dde89fdd9b10e88954ac2f4248e463 # v4.36.1
        with:
          languages: javascript-typescript
          build-mode: none
      -
        name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0
+        uses: github/codeql-action/analyze@87557b9c84dde89fdd9b10e88954ac2f4248e463 # v4.36.1
        with:
          category: "/language:javascript-typescript"