From b66a7b3a47a0d68c9f5a72493de99aca6f7d1b40 Mon Sep 17 00:00:00 2001
From: Jin Dong <greenmoon55@users.noreply.github.com>
Date: Thu, 5 Sep 2024 18:21:54 -0400
Subject: [PATCH] pin gosec to 2.20.0 (#3921)

Signed-off-by: Jin Dong <greenmoon55@users.noreply.github.com>
---
 .github/workflows/scheduled-go-security-scan.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/scheduled-go-security-scan.yml b/.github/workflows/scheduled-go-security-scan.yml
index d1ecc2184ac..ee9fe35bcb7 100644
--- a/.github/workflows/scheduled-go-security-scan.yml
+++ b/.github/workflows/scheduled-go-security-scan.yml
@@ -17,7 +17,7 @@ jobs:
         uses: actions/checkout@v3
 
       - name: Run Gosec Security Scanner
-        uses: securego/gosec@master
+        uses: securego/gosec@v2.20.0
         with:
           args: '-no-fail -fmt=sarif -out=go-security-scan-results.sarif -exclude-dir=pkg/client -exclude-dir=pkg/clientv1alpha1 ./...'