From edf7ce238d9ea34f0fba93b71e510573bc50c489 Mon Sep 17 00:00:00 2001
From: Chris Green <greenc@fnal.gov>
Date: Thu, 26 Mar 2026 09:57:00 -0500
Subject: [PATCH] Revert "One more time for CodeQL suppression (#458)"

This reverts commit 190fe8e7ebe07c5e3d3f75b8489f13ea812165b4.
---
 .github/actions/run-change-detection/action.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/actions/run-change-detection/action.yaml b/.github/actions/run-change-detection/action.yaml
index d7741a82..e6161a6f 100644
--- a/.github/actions/run-change-detection/action.yaml
+++ b/.github/actions/run-change-detection/action.yaml
@@ -43,8 +43,8 @@ runs:
     # pull_request_target, the empty sparse checkout below ensures no
     # files from the ref are materialized on disk — only git objects are
     # fetched — so no code from the PR is ever executed.
-    # codeql[actions/untrusted-checkout/medium]
     - name: Check out source code
+      # codeql[actions/untrusted-checkout/medium]
       uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
       with:
         fetch-depth: 0