Commit cdd9ee7
authored
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?v=4&size=40){kind=avatar}
Bump github/codeql-action from 2 to 3 (#18)
Bumps [github/codeql-action](https://github.com/github/codeql-action)
from 2 to 3.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/releases">github/codeql-action's
releases</a>.</em></p>
<blockquote>
<h2>v2.28.1</h2>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<p><strong>This is the last planned release of the <code>v2</code>. To
continue getting updates for the CodeQL Action, please switch to
<code>v3</code>.</strong></p>
<h2>2.28.1 - 10 Jan 2025</h2>
<ul>
<li>CodeQL Action v2 is now deprecated, and is no longer updated or
supported. For better performance, improved security, and new features,
upgrade to v3. For more information, see <a
href="https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/">this
changelog post</a>. <a
href="https://redirect.github.com/github/codeql-action/pull/2677">#2677</a></li>
<li>Update default CodeQL bundle version to 2.20.1. <a
href="https://redirect.github.com/github/codeql-action/pull/2678">#2678</a></li>
</ul>
<p>See the full <a
href="https://github.com/github/codeql-action/blob/v2.28.1/CHANGELOG.md">CHANGELOG.md</a>
for more information.</p>
<h2>v2.28.0</h2>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<p>Note that the only difference between <code>v2</code> and
<code>v3</code> of the CodeQL Action is the node version they support,
with <code>v3</code> running on node 20 while we continue to release
<code>v2</code> to support running on node 16. For example
<code>3.22.11</code> was the first <code>v3</code> release and is
functionally identical to <code>2.22.11</code>. This approach ensures an
easy way to track exactly which features are included in different
versions, indicated by the minor and patch version numbers.</p>
<p><strong>This is the last planned release of the <code>v2</code>. To
continue getting updates for the CodeQL Action, please switch to
<code>v3</code>.</strong></p>
<h2>2.28.0 - 20 Dec 2024</h2>
<ul>
<li>Bump the minimum CodeQL bundle version to 2.15.5. <a
href="https://redirect.github.com/github/codeql-action/pull/2655">#2655</a></li>
<li>Don't fail in the unusual case that a file is on the search path. <a
href="https://redirect.github.com/github/codeql-action/pull/2660">#2660</a>.</li>
</ul>
<p>See the full <a
href="https://github.com/github/codeql-action/blob/v2.28.0/CHANGELOG.md">CHANGELOG.md</a>
for more information.</p>
<h2>v2.27.9</h2>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<p>Note that the only difference between <code>v2</code> and
<code>v3</code> of the CodeQL Action is the node version they support,
with <code>v3</code> running on node 20 while we continue to release
<code>v2</code> to support running on node 16. For example
<code>3.22.11</code> was the first <code>v3</code> release and is
functionally identical to <code>2.22.11</code>. This approach ensures an
easy way to track exactly which features are included in different
versions, indicated by the minor and patch version numbers.</p>
<h2>2.27.9 - 12 Dec 2024</h2>
<p>No user facing changes.</p>
<p>See the full <a
href="https://github.com/github/codeql-action/blob/v2.27.9/CHANGELOG.md">CHANGELOG.md</a>
for more information.</p>
<h2>v2.27.7</h2>
<h1>CodeQL Action Changelog</h1>
<p>See the <a
href="https://github.com/github/codeql-action/releases">releases
page</a> for the relevant changes to the CodeQL CLI and language
packs.</p>
<p>Note that the only difference between <code>v2</code> and
<code>v3</code> of the CodeQL Action is the node version they support,
with <code>v3</code> running on node 20 while we continue to release
<code>v2</code> to support running on node 16. For example
<code>3.22.11</code> was the first <code>v3</code> release and is
functionally identical to <code>2.22.11</code>. This approach ensures an
easy way to track exactly which features are included in different
versions, indicated by the minor and patch version numbers.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's
changelog</a>.</em></p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/github/codeql-action/commit/ee117c905ab18f32fa0f66c2fe40ecc8013f3e04"><code>ee117c9</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2715">#2715</a>
from github/update-v3.28.4-b44b19fe8</li>
<li><a
href="https://github.com/github/codeql-action/commit/377913f015d5741a10a836eef6fc284ce639949b"><code>377913f</code></a>
Update changelog for v3.28.4</li>
<li><a
href="https://github.com/github/codeql-action/commit/b44b19fe8d2128e72e5616696401b61c348967f8"><code>b44b19f</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2714">#2714</a>
from github/mergeback/v3.28.3-to-main-dd196fa9</li>
<li><a
href="https://github.com/github/codeql-action/commit/d7366a1e50562ba5e16471523d99fba662c1b32e"><code>d7366a1</code></a>
Update checked-in dependencies</li>
<li><a
href="https://github.com/github/codeql-action/commit/4872b26ff9ee55f3cfcfa885bc30030a145f2c99"><code>4872b26</code></a>
Update changelog and version after v3.28.3</li>
<li><a
href="https://github.com/github/codeql-action/commit/dd196fa9ce80b6bacc74ca1c32bd5b0ba22efca7"><code>dd196fa</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2713">#2713</a>
from github/update-v3.28.3-23ec3afaf</li>
<li><a
href="https://github.com/github/codeql-action/commit/23d07bb885e454e57d2e1bed7e3546e4c60df5a4"><code>23d07bb</code></a>
Update changelog for v3.28.3</li>
<li><a
href="https://github.com/github/codeql-action/commit/23ec3afaf84a1ffee780529c24e5a930ff03cfad"><code>23ec3af</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2712">#2712</a>
from github/angelapwen/stop-debug-artifacts</li>
<li><a
href="https://github.com/github/codeql-action/commit/519de26711ecad48bde264c51e414658a82ef3fa"><code>519de26</code></a>
Temporarily disable uploading debug artifacts</li>
<li><a
href="https://github.com/github/codeql-action/commit/7e4b683a3d062a0853420133e3b340e23c59a1e8"><code>7e4b683</code></a>
Merge pull request <a
href="https://redirect.github.com/github/codeql-action/issues/2710">#2710</a>
from github/henrymercer/fix-extension-assumption</li>
<li>Additional commits viewable in <a
href="https://github.com/github/codeql-action/compare/v2...v3">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>1 parent 8661cc0 commit cdd9ee7
1 file changed
+2
-2
lines changed| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
23 | 23 | | |
24 | 24 | | |
25 | 25 | | |
26 | | - | |
| 26 | + | |
27 | 27 | | |
28 | 28 | | |
29 | 29 | | |
| |||
43 | 43 | | |
44 | 44 | | |
45 | 45 | | |
46 | | - | |
| 46 | + | |
0 commit comments