From 6f079be771282d1f84c5a371e14251ec1b62b57f Mon Sep 17 00:00:00 2001
From: Angela P Wen <angelapwen@github.com>
Date: Mon, 6 Mar 2023 02:32:10 -0800
Subject: [PATCH] Bump `setup-swift` and re-configure dependabot (#1560)

* Update `setup-swift` to v1.22.0

* Configure dependabot to scan `setup-swift` dir

* Add reminder to manually update the SHA in CLI test

* Add comment on new Dependabot directory
---
 .github/dependabot.yml         | 4 ++++
 .github/setup-swift/action.yml | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index ffd8a8af6..1ae2c3598 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -15,3 +15,7 @@ updates:
     directory: "/"
     schedule:
       interval: weekly
+  - package-ecosystem: github-actions
+    directory: "/.github/setup-swift/" # All subdirectories outside of "/.github/workflows" must be explicitly included.
+    schedule:
+      interval: weekly
diff --git a/.github/setup-swift/action.yml b/.github/setup-swift/action.yml
index eb4f72f68..c0230a9fb 100644
--- a/.github/setup-swift/action.yml
+++ b/.github/setup-swift/action.yml
@@ -26,7 +26,7 @@ runs:
           VERSION="5.7.0"
         fi
         echo "version=$VERSION" | tee -a $GITHUB_OUTPUT
-    - uses: swift-actions/setup-swift@194625b58a582570f61cc707c3b558086c26b723
+    - uses: swift-actions/setup-swift@da0e3e04b5e3e15dbc3861bd835ad9f0afe56296 # Please update the corresponding SHA in the CLI's CodeQL Action Integration Test.
       if: "(runner.os != 'Windows') && (matrix.version == 'cached' || matrix.version == 'latest' || matrix.version == 'nightly-latest')"
       with:
         swift-version: "${{steps.get_swift_version.outputs.version}}"