From 03b0d2e4bc7de6afe9f245532b0769a70c58e81c Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Wed, 4 Mar 2026 07:04:35 +0000
Subject: [PATCH 1/3] ci(deps): bump github/codeql-action from 3.32.4 to 4.32.5

Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.32.4 to 4.32.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/45580472a5bb82c4681c4ac726cfdb60060c2ee1...c793b717bc78562f491db7b0e93a3a178b099162)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.32.5
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/behavioral_assessment.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/behavioral_assessment.yml b/.github/workflows/behavioral_assessment.yml
index 30f8e57d..f5b8e503 100644
--- a/.github/workflows/behavioral_assessment.yml
+++ b/.github/workflows/behavioral_assessment.yml
@@ -31,7 +31,7 @@ jobs:
               run: make test-behavioral
 
             - name: Upload SARIF to Code Scanning
-              uses: github/codeql-action/upload-sarif@45580472a5bb82c4681c4ac726cfdb60060c2ee1 # v3
+              uses: github/codeql-action/upload-sarif@c793b717bc78562f491db7b0e93a3a178b099162 # v3
               if: always()
               with:
                   sarif_file: governance/reports/behavioral-report.sarif.json

From ca79cd60b5295ea42685ee7c2c5c664a7ed52e95 Mon Sep 17 00:00:00 2001
From: t_hat <spreetam@redhat.com>
Date: Thu, 5 Mar 2026 13:37:49 +0100
Subject: [PATCH 2/3] Apply suggestions from code review

---
 .github/workflows/behavioral_assessment.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/behavioral_assessment.yml b/.github/workflows/behavioral_assessment.yml
index f5b8e503..adfd8e1f 100644
--- a/.github/workflows/behavioral_assessment.yml
+++ b/.github/workflows/behavioral_assessment.yml
@@ -31,7 +31,7 @@ jobs:
               run: make test-behavioral
 
             - name: Upload SARIF to Code Scanning
-              uses: github/codeql-action/upload-sarif@c793b717bc78562f491db7b0e93a3a178b099162 # v3
+              uses: github/codeql-action/upload-sarif@c793b717bc78562f491db7b0e93a3a178b099162 # v4
               if: always()
               with:
                   sarif_file: governance/reports/behavioral-report.sarif.json

From 84179724b224b561fd8eb03b8368635fd263d4b1 Mon Sep 17 00:00:00 2001
From: t_hat <spreetam@redhat.com>
Date: Thu, 5 Mar 2026 13:44:35 +0100
Subject: [PATCH 3/3] Apply suggestion from @sonupreetam

For Dependabot to manage the comments as well
---
 .github/workflows/behavioral_assessment.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/behavioral_assessment.yml b/.github/workflows/behavioral_assessment.yml
index adfd8e1f..a865feda 100644
--- a/.github/workflows/behavioral_assessment.yml
+++ b/.github/workflows/behavioral_assessment.yml
@@ -31,7 +31,8 @@ jobs:
               run: make test-behavioral
 
             - name: Upload SARIF to Code Scanning
-              uses: github/codeql-action/upload-sarif@c793b717bc78562f491db7b0e93a3a178b099162 # v4
+              uses: github/codeql-action/upload-sarif@c793b717bc78562f491db7b0e93a3a178b099162 # v4.32.5
+
               if: always()
               with:
                   sarif_file: governance/reports/behavioral-report.sarif.json