- Notifications
You must be signed in to change notification settings - Fork914
Commitd83706b
authored
ci: bump the github-actions group with 7 updates (#18388)
Bumps the github-actions group with 7 updates:| Package | From | To || --- | --- | --- ||[step-security/harden-runner](https://github.com/step-security/harden-runner)| `2.12.0` | `2.12.1` || [chromaui/action](https://github.com/chromaui/action) | `12.1.1` |`12.2.0` || [actions/attest](https://github.com/actions/attest) | `2.3.0` |`2.4.0` || [fluxcd/flux2](https://github.com/fluxcd/flux2) | `2.6.1` | `2.6.2` ||[tj-actions/changed-files](https://github.com/tj-actions/changed-files)| `115870536a85eaf050e369291c7895748ff12aea` |`d52d20fa3f981cb852b861fd8f55308b5fe29637` || [github/codeql-action](https://github.com/github/codeql-action) |`3.28.19` | `3.29.0` ||[umbrelladocs/action-linkspector](https://github.com/umbrelladocs/action-linkspector)| `1.3.4` | `1.3.5` |Updates `step-security/harden-runner` from 2.12.0 to 2.12.1<details><summary>Release notes</summary><p><em>Sourced from <ahref="https://github.com/step-security/harden-runner/releases">step-security/harden-runner'sreleases</a>.</em></p><blockquote><h2>v2.12.1</h2><h2>What's Changed</h2><ul><li>Detection capabilities have been upgraded to better recognizeattempts at runner tampering. These improvements are informed byreal-world incident learnings, including analysis of anomalous behaviorsobserved in the tj-actions and reviewdog supply chain attack.</li><li>Resolved an issue where the block policy was not enforced correctlywhen the GitHub Actions job was running inside a container on aself-hosted VM runner.</li></ul><p><strong>Full Changelog</strong>: <ahref="https://github.com/step-security/harden-runner/compare/v2...v2.12.1">https://github.com/step-security/harden-runner/compare/v2...v2.12.1</a></p></blockquote></details><details><summary>Commits</summary><ul><li><ahref="https://github.com/step-security/harden-runner/commit/002fdce3c6a235733a90a27c80493a3241e56863"><code>002fdce</code></a>Merge pull request <ahref="https://redirect.github.com/step-security/harden-runner/issues/544">#544</a>from step-security/rc-21</li><li><ahref="https://github.com/step-security/harden-runner/commit/2489e3fcb3d00eac3cb27c9b490431a4d26eac58"><code>2489e3f</code></a>Merge branch 'main' into rc-21</li><li><ahref="https://github.com/step-security/harden-runner/commit/75dd441a816c3c7ea21313ec8ff21d9f7b69f534"><code>75dd441</code></a>Merge pull request <ahref="https://redirect.github.com/step-security/harden-runner/issues/555">#555</a>from step-security/dependabot/github_actions/step-sec...</li><li><ahref="https://github.com/step-security/harden-runner/commit/4381ace9c4db180c9cc8ff9a6dd4220f17a95690"><code>4381ace</code></a>Bump step-security/publish-unit-test-result-action from 2.19.0 to2.20.0</li><li><ahref="https://github.com/step-security/harden-runner/commit/a9da90b635b492e68edb2a24949fcab1e313e9eb"><code>a9da90b</code></a>Merge pull request <ahref="https://redirect.github.com/step-security/harden-runner/issues/553">#553</a>from h0x0er/feat/container-workflows</li><li><ahref="https://github.com/step-security/harden-runner/commit/a60ef21c0c1f49c7ac6c8d65b6f4d16d419789c1"><code>a60ef21</code></a>update</li><li><ahref="https://github.com/step-security/harden-runner/commit/4ad512f16553ff1c022684cc96be0329a7618db8"><code>4ad512f</code></a>Merge branch 'rc-21' into feat/container-workflows</li><li><ahref="https://github.com/step-security/harden-runner/commit/6b41a3923518db2abe77790e47793760b5c47c28"><code>6b41a39</code></a>fixed test case</li><li><ahref="https://github.com/step-security/harden-runner/commit/fa70c45ca9a73bcef023a3e6afac49ffa3007480"><code>fa70c45</code></a>update agent</li><li><ahref="https://github.com/step-security/harden-runner/commit/eb47845632e48a7532e7e363ba78b9bc48c09264"><code>eb47845</code></a>self-hosted: refactored block-policy apply logic</li><li>Additional commits viewable in <ahref="https://github.com/step-security/harden-runner/compare/0634a2670c59f64b4a01f0f96f84700a4088b9f0...002fdce3c6a235733a90a27c80493a3241e56863">compareview</a></li></ul></details><br />Updates `chromaui/action` from 12.1.1 to 12.2.0<details><summary>Commits</summary><ul><li><ahref="https://github.com/chromaui/action/commit/c50adf8eaa8c2878af3263499a73077854de39d4"><code>c50adf8</code></a>v12.2.0</li><li>See full diff in <ahref="https://github.com/chromaui/action/compare/8536229ee904071f8edce292596f6dbe0da96b9b...c50adf8eaa8c2878af3263499a73077854de39d4">compareview</a></li></ul></details><br />Updates `actions/attest` from 2.3.0 to 2.4.0<details><summary>Release notes</summary><p><em>Sourced from <ahref="https://github.com/actions/attest/releases">actions/attest'sreleases</a>.</em></p><blockquote><h2>v2.4.0</h2><h2>What's Changed</h2><ul><li>Bump <code>@actions/github</code> from 6.0.0 to 6.0.1 in thenpm-production group by <ahref="https://github.com/dependabot"><code>@dependabot</code></a> in <ahref="https://redirect.github.com/actions/attest/pull/242">actions/attest#242</a></li><li>Bump undici from 5.28.5 to 5.29.0 by <ahref="https://github.com/dependabot"><code>@dependabot</code></a> in <ahref="https://redirect.github.com/actions/attest/pull/246">actions/attest#246</a></li><li>Add path to created attestation in a well-known summary file by <ahref="https://github.com/kommendorkapten"><code>@kommendorkapten</code></a>in <ahref="https://redirect.github.com/actions/attest/pull/252">actions/attest#252</a></li></ul><h2>New Contributors</h2><ul><li><ahref="https://github.com/kommendorkapten"><code>@kommendorkapten</code></a>made their first contribution in <ahref="https://redirect.github.com/actions/attest/pull/252">actions/attest#252</a></li></ul><p><strong>Full Changelog</strong>: <ahref="https://github.com/actions/attest/compare/v2...v2.4.0">https://github.com/actions/attest/compare/v2...v2.4.0</a></p></blockquote></details><details><summary>Commits</summary><ul><li><ahref="https://github.com/actions/attest/commit/ce27ba3b4a9a139d9a20a4a07d69fabb52f1e5bc"><code>ce27ba3</code></a>bump package version to 2.4.0 (<ahref="https://redirect.github.com/actions/attest/issues/253">#253</a>)</li><li><ahref="https://github.com/actions/attest/commit/6a89e1286443a80c6d1e0cebb7b24d8299c16774"><code>6a89e12</code></a>Add path to created attestation in a well-known summary file (<ahref="https://redirect.github.com/actions/attest/issues/252">#252</a>)</li><li><ahref="https://github.com/actions/attest/commit/cbc14bbf255d1e79ad201d4308009aabd79cafdc"><code>cbc14bb</code></a>Bump the npm-development group with 3 updates (<ahref="https://redirect.github.com/actions/attest/issues/250">#250</a>)</li><li><ahref="https://github.com/actions/attest/commit/b87aa13652d8ee3c0c86d3582b965c842f7f388f"><code>b87aa13</code></a>Bump the npm-development group across 1 directory with 5 updates (<ahref="https://redirect.github.com/actions/attest/issues/249">#249</a>)</li><li><ahref="https://github.com/actions/attest/commit/5ae9aa28e10f70b771c67101892b7ffc141ef958"><code>5ae9aa2</code></a>Bump undici from 5.28.5 to 5.29.0 (<ahref="https://redirect.github.com/actions/attest/issues/246">#246</a>)</li><li><ahref="https://github.com/actions/attest/commit/4119d34e49ca6230f84a5e799710eae4f2428d02"><code>4119d34</code></a>Bump the npm-development group across 1 directory with 6 updates (<ahref="https://redirect.github.com/actions/attest/issues/245">#245</a>)</li><li><ahref="https://github.com/actions/attest/commit/7e777b150d7bec9c2cfe2c0993b186c15e97e81c"><code>7e777b1</code></a>Bump <code>@actions/github</code> from 6.0.0 to 6.0.1 in thenpm-production group (<ahref="https://redirect.github.com/actions/attest/issues/242">#242</a>)</li><li><ahref="https://github.com/actions/attest/commit/4d8a13a13f8c2075b78844846f6d7e38b6a920bf"><code>4d8a13a</code></a>Bump super-linter/super-linter in the actions-minor group (<ahref="https://redirect.github.com/actions/attest/issues/244">#244</a>)</li><li><ahref="https://github.com/actions/attest/commit/647f15244eb261577c4910e1356026e9c1d9cda9"><code>647f152</code></a>Bump the npm-development group with 4 updates (<ahref="https://redirect.github.com/actions/attest/issues/240">#240</a>)</li><li><ahref="https://github.com/actions/attest/commit/20551343079b1bce85b235f46add92bbbddb8a7a"><code>2055134</code></a>Bump the npm-development group with 4 updates (<ahref="https://redirect.github.com/actions/attest/issues/239">#239</a>)</li><li>Additional commits viewable in <ahref="https://github.com/actions/attest/compare/afd638254319277bb3d7f0a234478733e2e46a73...ce27ba3b4a9a139d9a20a4a07d69fabb52f1e5bc">compareview</a></li></ul></details><br />Updates `fluxcd/flux2` from 2.6.1 to 2.6.2<details><summary>Release notes</summary><p><em>Sourced from <ahref="https://github.com/fluxcd/flux2/releases">fluxcd/flux2'sreleases</a>.</em></p><blockquote><h2>v2.6.2</h2><h2>What's Changed</h2><ul><li>[release/v2.6.x] fix: Allow Azure CLI calls in <code>flux pushartifact --provider azure</code> on DevOps runners by <ahref="https://github.com/fluxcdbot"><code>@fluxcdbot</code></a> in <ahref="https://redirect.github.com/fluxcd/flux2/pull/5396">fluxcd/flux2#5396</a></li><li>[release/v2.6.x] Fix <code>knownhosts key mismatch</code> regressionbug by <ahref="https://github.com/fluxcdbot"><code>@fluxcdbot</code></a> in <ahref="https://redirect.github.com/fluxcd/flux2/pull/5405">fluxcd/flux2#5405</a></li><li>[release/v2.6.x] Update toolkit components by <ahref="https://github.com/fluxcdbot"><code>@fluxcdbot</code></a> in <ahref="https://redirect.github.com/fluxcd/flux2/pull/5410">fluxcd/flux2#5410</a></li></ul><p><strong>Full Changelog</strong>: <ahref="https://github.com/fluxcd/flux2/compare/v2.6.1...v2.6.2">https://github.com/fluxcd/flux2/compare/v2.6.1...v2.6.2</a></p></blockquote></details><details><summary>Commits</summary><ul><li><ahref="https://github.com/fluxcd/flux2/commit/a48f81a66c4ca9fbd993233ab99dd03a7cfbe09a"><code>a48f81a</code></a>Merge pull request <ahref="https://redirect.github.com/fluxcd/flux2/issues/5410">#5410</a>from fluxcd/backport-5409-to-release/v2.6.x</li><li><ahref="https://github.com/fluxcd/flux2/commit/55104dc188ec3015c64fa6452db179fc081e8a91"><code>55104dc</code></a>Update toolkit components</li><li><ahref="https://github.com/fluxcd/flux2/commit/e771ff28abd76684f43122b3becd99ae31a7cdb7"><code>e771ff2</code></a>Merge pull request <ahref="https://redirect.github.com/fluxcd/flux2/issues/5405">#5405</a>from fluxcd/backport-5404-to-release/v2.6.x</li><li><ahref="https://github.com/fluxcd/flux2/commit/998fe11166a950f54fe20c5bb94552a4c701ff0a"><code>998fe11</code></a>Upgrade dependencies</li><li><ahref="https://github.com/fluxcd/flux2/commit/a6ac4c5b60f4e94e1b4a12ca579648985020f9c7"><code>a6ac4c5</code></a>Merge pull request <ahref="https://redirect.github.com/fluxcd/flux2/issues/5396">#5396</a>from fluxcd/backport-5390-to-release/v2.6.x</li><li><ahref="https://github.com/fluxcd/flux2/commit/0d397d7d1f8cc62c4d201f10b0d8b61bcfdcb97d"><code>0d397d7</code></a>Introduce support for shelling out to Azure binaries inauthentication</li><li>See full diff in <ahref="https://github.com/fluxcd/flux2/compare/b73c7f7191086ca7629840e680e71873349787f8...a48f81a66c4ca9fbd993233ab99dd03a7cfbe09a">compareview</a></li></ul></details><br />Updates `tj-actions/changed-files` from115870536a85eaf050e369291c7895748ff12aea tod52d20fa3f981cb852b861fd8f55308b5fe29637<details><summary>Changelog</summary><p><em>Sourced from <ahref="https://github.com/tj-actions/changed-files/blob/main/HISTORY.md">tj-actions/changed-files'schangelog</a>.</em></p><blockquote><h1>Changelog</h1><h1><ahref="https://github.com/tj-actions/changed-files/compare/v46.0.4...v46.0.5">46.0.5</a>- (2025-04-09)</h1><h2><!-- raw HTML omitted -->⚙️ Miscellaneous Tasks</h2><ul><li><strong>deps:</strong> Bump yaml from 2.7.0 to 2.7.1 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2520">#2520</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/ed68ef82c095e0d48ec87eccea555d944a631a4c">ed68ef8</a>)- (dependabot[bot])</li><li><strong>deps-dev:</strong> Bump typescript from 5.8.2 to 5.8.3 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2516">#2516</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/a7bc14b808f23d3b467a4079c69a81f1a4500fd5">a7bc14b</a>)- (dependabot[bot])</li><li><strong>deps-dev:</strong> Bump <code>@types/node</code> from22.13.11 to 22.14.0 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2517">#2517</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/3d751f6b6d84071a17e1b9cf4ed79a80a27dd0ab">3d751f6</a>)- (dependabot[bot])</li><li><strong>deps-dev:</strong> Bump eslint-plugin-prettier from 5.2.3 to5.2.6 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2519">#2519</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/e2fda4ec3cb0bc2a353843cae823430b3124db8f">e2fda4e</a>)- (dependabot[bot])</li><li><strong>deps-dev:</strong> Bump ts-jest from 29.2.6 to 29.3.1 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2518">#2518</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/0bed1b1132ec4879a39a2d624cf82a00d0bcfa48">0bed1b1</a>)- (dependabot[bot])</li><li><strong>deps:</strong> Bump github/codeql-action from 3.28.12 to3.28.15 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2530">#2530</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/68024587dc36f49685c96d59d3f1081830f968bb">6802458</a>)- (dependabot[bot])</li><li><strong>deps:</strong> Bump tj-actions/branch-names from 8.0.1 to8.1.0 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2521">#2521</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/cf2e39e86bf842d1f9bc5bca56c0a6b207cca792">cf2e39e</a>)- (dependabot[bot])</li><li><strong>deps:</strong> Bump tj-actions/verify-changed-files from20.0.1 to 20.0.4 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2523">#2523</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/6abeaa506a419f85fa9e681260b443adbeebb3d4">6abeaa5</a>)- (dependabot[bot])</li></ul><h2><!-- raw HTML omitted -->⬆️ Upgrades</h2><ul><li>Upgraded to v46.0.4 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2511">#2511</a>)</li></ul><p>Co-authored-by: github-actions[bot] <!-- raw HTML omitted --> (<ahref="https://github.com/tj-actions/changed-files/commit/6f67ee9ac810f0192ea7b3d2086406f97847bcf9">6f67ee9</a>)- (github-actions[bot])</p><h1><ahref="https://github.com/tj-actions/changed-files/compare/v46.0.3...v46.0.4">46.0.4</a>- (2025-04-03)</h1><h2><!-- raw HTML omitted -->🐛 Bug Fixes</h2><ul><li>Bug modified_keys and changed_key outputs not set when no changesdetected (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2509">#2509</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/6cb76d07bee4c9772c6882c06c37837bf82a04d3">6cb76d0</a>)- (Tonye Jack)</li></ul><h2><!-- raw HTML omitted -->📚 Documentation</h2><ul><li>Update readme (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2508">#2508</a>)(<ahref="https://github.com/tj-actions/changed-files/commit/b74df86ccb65173a8e33ba5492ac1a2ca6b216fd">b74df86</a>)- (Tonye Jack)</li></ul><h2><!-- raw HTML omitted -->⬆️ Upgrades</h2><ul><li>Upgraded to v46.0.3 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2506">#2506</a>)</li></ul><p>Co-authored-by: github-actions[bot] <!-- raw HTML omitted -->Co-authored-by: Tonye Jack <ahref="mailto:jtonye@ymail.com">jtonye@ymail.com</a> (<ahref="https://github.com/tj-actions/changed-files/commit/27ae6b33eaed7bf87272fdeb9f1c54f9facc9d99">27ae6b3</a>)- (github-actions[bot])</p><h1><ahref="https://github.com/tj-actions/changed-files/compare/v46.0.2...v46.0.3">46.0.3</a>- (2025-03-23)</h1><h2><!-- raw HTML omitted -->🔄 Update</h2><ul><li>Updated README.md (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2501">#2501</a>)</li></ul><p>Co-authored-by: github-actions[bot] <!-- raw HTML omitted --> (<ahref="https://github.com/tj-actions/changed-files/commit/41e0de576a0f2b64d9f06f2773f539109e55a70a">41e0de5</a>)- (github-actions[bot])</p><ul><li>Updated README.md (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2499">#2499</a>)</li></ul><p>Co-authored-by: github-actions[bot] <!-- raw HTML omitted --> (<ahref="https://github.com/tj-actions/changed-files/commit/945787811a795cd840a1157ac590dd7827a05c8e">9457878</a>)- (github-actions[bot])</p><h2><!-- raw HTML omitted -->📚 Documentation</h2><!-- raw HTML omitted --></blockquote><p>... (truncated)</p></details><details><summary>Commits</summary><ul><li><ahref="https://github.com/tj-actions/changed-files/commit/d52d20fa3f981cb852b861fd8f55308b5fe29637"><code>d52d20f</code></a>chore(deps-dev): bump <code>@types/node</code> from 22.15.26 to 24.0.1(<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2587">#2587</a>)</li><li><ahref="https://github.com/tj-actions/changed-files/commit/f1c0eb959957d4094cf86adeb8bb4852f373e197"><code>f1c0eb9</code></a>chore(deps-dev): bump eslint-plugin-prettier from 5.4.0 to 5.4.1 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2578">#2578</a>)</li><li><ahref="https://github.com/tj-actions/changed-files/commit/944a0f723952a370222de3178b25805235c65933"><code>944a0f7</code></a>chore(deps-dev): bump eslint-plugin-jest from 28.13.0 to 28.13.3 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2585">#2585</a>)</li><li><ahref="https://github.com/tj-actions/changed-files/commit/3dbc1e181273d808ccff822a6e00cf18b6628ef0"><code>3dbc1e1</code></a>Updated README.md (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2592">#2592</a>)</li><li><ahref="https://github.com/tj-actions/changed-files/commit/7a7221b7baecf19ec83f6a411a2670a43174c883"><code>7a7221b</code></a>chore(deps): bump github/codeql-action from 3.28.18 to 3.29.0 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2588">#2588</a>)</li><li><ahref="https://github.com/tj-actions/changed-files/commit/c260d49a827b5eb266673bed7871c5d3ee9b5aef"><code>c260d49</code></a>feat: add any_added to outputs (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2567">#2567</a>)</li><li><ahref="https://github.com/tj-actions/changed-files/commit/b1ccff8c0892ad141d7d2de6f31e526a9dad931f"><code>b1ccff8</code></a>Updated README.md (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2591">#2591</a>)</li><li><ahref="https://github.com/tj-actions/changed-files/commit/a892f50f7a7187bc288633c09230b09ce7ad8fd0"><code>a892f50</code></a>docs: update link to glob patterns (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2590">#2590</a>)</li><li><ahref="https://github.com/tj-actions/changed-files/commit/5ca5422070674a4bb487ecebf3c33251f3723c9b"><code>5ca5422</code></a>chore(deps-dev): bump ts-jest from 29.3.4 to 29.4.0 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2589">#2589</a>)</li><li><ahref="https://github.com/tj-actions/changed-files/commit/4140eb99d2cced9bfd78375c2088371853262f79"><code>4140eb9</code></a>chore(deps-dev): bump eslint-plugin-jest from 28.12.0 to 28.13.0 (<ahref="https://redirect.github.com/tj-actions/changed-files/issues/2583">#2583</a>)</li><li>See full diff in <ahref="https://github.com/tj-actions/changed-files/compare/115870536a85eaf050e369291c7895748ff12aea...d52d20fa3f981cb852b861fd8f55308b5fe29637">compareview</a></li></ul></details><br />Updates `github/codeql-action` from 3.28.19 to 3.29.0<details><summary>Release notes</summary><p><em>Sourced from <ahref="https://github.com/github/codeql-action/releases">github/codeql-action'sreleases</a>.</em></p><blockquote><h2>v3.29.0</h2><h1>CodeQL Action Changelog</h1><p>See the <ahref="https://github.com/github/codeql-action/releases">releasespage</a> for the relevant changes to the CodeQL CLI and languagepacks.</p><h2>3.29.0 - 11 Jun 2025</h2><ul><li>Update default CodeQL bundle version to 2.22.0. <ahref="https://redirect.github.com/github/codeql-action/pull/2925">#2925</a></li><li>Bump minimum CodeQL bundle version to 2.16.6. <ahref="https://redirect.github.com/github/codeql-action/pull/2912">#2912</a></li></ul><p>See the full <ahref="https://github.com/github/codeql-action/blob/v3.29.0/CHANGELOG.md">CHANGELOG.md</a>for more information.</p></blockquote></details><details><summary>Changelog</summary><p><em>Sourced from <ahref="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action'schangelog</a>.</em></p><blockquote><h1>CodeQL Action Changelog</h1><p>See the <ahref="https://github.com/github/codeql-action/releases">releasespage</a> for the relevant changes to the CodeQL CLI and languagepacks.</p><h2>[UNRELEASED]</h2><p>No user facing changes.</p><h2>3.29.0 - 11 Jun 2025</h2><ul><li>Update default CodeQL bundle version to 2.22.0. <ahref="https://redirect.github.com/github/codeql-action/pull/2925">#2925</a></li><li>Bump minimum CodeQL bundle version to 2.16.6. <ahref="https://redirect.github.com/github/codeql-action/pull/2912">#2912</a></li></ul><h2>3.28.19 - 03 Jun 2025</h2><ul><li>The CodeQL Action no longer includes its own copy of the extractorfor the <code>actions</code> language, which is currently in publicpreview.The <code>actions</code> extractor has been included in the CodeQL CLIsince v2.20.6. If your workflow has enabled the <code>actions</code>language <em>and</em> you have pinnedyour <code>tools:</code> property to a specific version of the CodeQLCLI earlier than v2.20.6, you will need to update to at least CodeQLv2.20.6 or disable<code>actions</code> analysis.</li><li>Update default CodeQL bundle version to 2.21.4. <ahref="https://redirect.github.com/github/codeql-action/pull/2910">#2910</a></li></ul><h2>3.28.18 - 16 May 2025</h2><ul><li>Update default CodeQL bundle version to 2.21.3. <ahref="https://redirect.github.com/github/codeql-action/pull/2893">#2893</a></li><li>Skip validating SARIF produced by CodeQL for improved performance.<ahref="https://redirect.github.com/github/codeql-action/pull/2894">#2894</a></li><li>The number of threads and amount of RAM used by CodeQL can now beset via the <code>CODEQL_THREADS</code> and <code>CODEQL_RAM</code>runner environment variables. If set, these environment variablesoverride the <code>threads</code> and <code>ram</code> inputsrespectively. <ahref="https://redirect.github.com/github/codeql-action/pull/2891">#2891</a></li></ul><h2>3.28.17 - 02 May 2025</h2><ul><li>Update default CodeQL bundle version to 2.21.2. <ahref="https://redirect.github.com/github/codeql-action/pull/2872">#2872</a></li></ul><h2>3.28.16 - 23 Apr 2025</h2><ul><li>Update default CodeQL bundle version to 2.21.1. <ahref="https://redirect.github.com/github/codeql-action/pull/2863">#2863</a></li></ul><h2>3.28.15 - 07 Apr 2025</h2><ul><li>Fix bug where the action would fail if it tried to produce a debugartifact with more than 65535 files. <ahref="https://redirect.github.com/github/codeql-action/pull/2842">#2842</a></li></ul><h2>3.28.14 - 07 Apr 2025</h2><ul><li>Update default CodeQL bundle version to 2.21.0. <ahref="https://redirect.github.com/github/codeql-action/pull/2838">#2838</a></li></ul><h2>3.28.13 - 24 Mar 2025</h2><p>No user facing changes.</p><h2>3.28.12 - 19 Mar 2025</h2><ul><li>Dependency caching should now cache more dependencies for Java<code>build-mode: none</code> extractions. This should speed upworkflows and avoid inconsistent alerts in some cases.</li></ul><!-- raw HTML omitted --></blockquote><p>... (truncated)</p></details><details><summary>Commits</summary><ul><li><ahref="https://github.com/github/codeql-action/commit/ce28f5bb42b7a9f2c824e633a3f6ee835bab6858"><code>ce28f5b</code></a>Merge pull request <ahref="https://redirect.github.com/github/codeql-action/issues/2926">#2926</a>from github/update-v3.29.0-e8799281c</li><li><ahref="https://github.com/github/codeql-action/commit/bc251b7932638a7881a8db15d1aaf0151642af99"><code>bc251b7</code></a>Update changelog for v3.29.0</li><li><ahref="https://github.com/github/codeql-action/commit/e8799281c8dee3b2e1aaed2c059e530fcfdc2d6d"><code>e879928</code></a>Merge pull request <ahref="https://redirect.github.com/github/codeql-action/issues/2925">#2925</a>from github/update-bundle/codeql-bundle-v2.22.0</li><li><ahref="https://github.com/github/codeql-action/commit/efd43b3097c094d883d91934155f0a32af09dff7"><code>efd43b3</code></a>Merge branch 'main' into update-bundle/codeql-bundle-v2.22.0</li><li><ahref="https://github.com/github/codeql-action/commit/7cb9b16051842e6c23c8b9fbcf92481f92d0644a"><code>7cb9b16</code></a>Merge pull request <ahref="https://redirect.github.com/github/codeql-action/issues/2912">#2912</a>from github/henrymercer/bump-minimum-codeql-2.16.6</li><li><ahref="https://github.com/github/codeql-action/commit/3855117ba18b27e082b12e3e92e00d1b52aaa605"><code>3855117</code></a>Add changelog note</li><li><ahref="https://github.com/github/codeql-action/commit/f5d4e2a7ca2a5826357748bb8743390a4775946f"><code>f5d4e2a</code></a>Update default bundle to codeql-bundle-v2.22.0</li><li><ahref="https://github.com/github/codeql-action/commit/22deae890c55a1dc3ffba1aa20ad4148284e72d1"><code>22deae8</code></a>Update package-lock.json</li><li><ahref="https://github.com/github/codeql-action/commit/df2a830ca4348a013f4804b56f41795f408f1e4e"><code>df2a830</code></a>Merge branch 'main' into henrymercer/bump-minimum-codeql-2.16.6</li><li><ahref="https://github.com/github/codeql-action/commit/b1e4dc3db58c9601794e22a9f6d28d45461b9dbf"><code>b1e4dc3</code></a>Merge pull request <ahref="https://redirect.github.com/github/codeql-action/issues/2916">#2916</a>from github/dependabot/npm_and_yarn/npm-5cdccdc43f</li><li>Additional commits viewable in <ahref="https://github.com/github/codeql-action/compare/fca7ace96b7d713c7035871441bd52efbe39e27e...ce28f5bb42b7a9f2c824e633a3f6ee835bab6858">compareview</a></li></ul></details><br />Updates `umbrelladocs/action-linkspector` from 1.3.4 to 1.3.5<details><summary>Release notes</summary><p><em>Sourced from <ahref="https://github.com/umbrelladocs/action-linkspector/releases">umbrelladocs/action-linkspector'sreleases</a>.</em></p><blockquote><h2>Release v1.3.5</h2><p>v1.3.5: PR <ahref="https://redirect.github.com/umbrelladocs/action-linkspector/issues/45">#45</a>- Update linkspector version to 0.4.5</p></blockquote></details><details><summary>Commits</summary><ul><li><ahref="https://github.com/UmbrellaDocs/action-linkspector/commit/e2ccef58c4b9eb89cd71ee23a8629744bba75aa6"><code>e2ccef5</code></a>Merge pull request <ahref="https://redirect.github.com/umbrelladocs/action-linkspector/issues/45">#45</a>from UmbrellaDocs/update-linkspector-version</li><li><ahref="https://github.com/UmbrellaDocs/action-linkspector/commit/6cc23b20f1b7de3860f639255ccebc2b6428c62e"><code>6cc23b2</code></a>Update linkspector version to 0.4.5</li><li>See full diff in <ahref="https://github.com/umbrelladocs/action-linkspector/compare/a0567ce1c7c13de4a2358587492ed43cab5d0102...e2ccef58c4b9eb89cd71ee23a8629744bba75aa6">compareview</a></li></ul></details><br />Dependabot will resolve any conflicts with this PR as long as you don'talter it yourself. You can also trigger a rebase manually by commenting`@dependabot rebase`.[//]: # (dependabot-automerge-start)[//]: # (dependabot-automerge-end)---<details><summary>Dependabot commands and options</summary><br />You can trigger Dependabot actions by commenting on this PR:- `@dependabot rebase` will rebase this PR- `@dependabot recreate` will recreate this PR, overwriting any editsthat have been made to it- `@dependabot merge` will merge this PR after your CI passes on it- `@dependabot squash and merge` will squash and merge this PR afteryour CI passes on it- `@dependabot cancel merge` will cancel a previously requested mergeand block automerging- `@dependabot reopen` will reopen this PR if it is closed- `@dependabot close` will close this PR and stop Dependabot recreatingit. You can achieve the same result by closing it manually- `@dependabot show <dependency name> ignore conditions` will show allof the ignore conditions of the specified dependency- `@dependabot ignore <dependency name> major version` will close thisgroup update PR and stop Dependabot creating any more for the specificdependency's major version (unless you unignore this specificdependency's major version or upgrade to it yourself)- `@dependabot ignore <dependency name> minor version` will close thisgroup update PR and stop Dependabot creating any more for the specificdependency's minor version (unless you unignore this specificdependency's minor version or upgrade to it yourself)- `@dependabot ignore <dependency name>` will close this group update PRand stop Dependabot creating any more for the specific dependency(unless you unignore this specific dependency or upgrade to it yourself)- `@dependabot unignore <dependency name>` will remove all of the ignoreconditions of the specified dependency- `@dependabot unignore <dependency name> <ignore condition>` willremove the ignore condition of the specified dependency and ignoreconditions</details>Signed-off-by: dependabot[bot] <support@github.com>Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>1 parent23067df commitd83706b
1 file changed
+1
-1
lines changedLines changed: 1 addition & 1 deletion
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
1526 | 1526 | | |
1527 | 1527 | | |
1528 | 1528 | | |
1529 | | - | |
| 1529 | + | |
1530 | 1530 | | |
1531 | 1531 | | |
1532 | 1532 | | |
| |||
0 commit comments
Comments
(0)