Sourced fromstep-security/harden-runner's releases.

v2.13.0

What's Changed

• Improved job markdown summary
• Https monitoring for all domains (included with the enterprise tier)

Full Changelog:step-security/harden-runner@v2...v2.13.0

• ec9f2d5 Merge pull request#565 from step-security/rc-24
• 04bcbc3 update agent
• 7c7a56f feat: get job summary from API
• See full diff incompare view

• 58d9ffb v13.1.3
• See full diff incompare view

Sourced fromgoogle-github-actions/auth's releases.

v2.1.12

What's Changed

• Add retries for getIDToken by@​sethvargo ingoogle-github-actions/auth#502
• Release: v2.1.12 by@​google-github-actions-bot ingoogle-github-actions/auth#503

Full Changelog:google-github-actions/auth@v2.1.11...v2.1.12

• b7593ed Release: v2.1.12 (#503)
• c1ee334 Add retries for getIDToken (#502)
• See full diff incompare view

Sourced fromtj-actions/changed-files's changelog.

Changelog

46.0.5 - (2025-04-09)

⚙️ Miscellaneous Tasks

• deps: Bump yaml from 2.7.0 to 2.7.1 (#2520) (ed68ef8) - (dependabot[bot])
• deps-dev: Bump typescript from 5.8.2 to 5.8.3 (#2516) (a7bc14b) - (dependabot[bot])
• deps-dev: Bump@​types/node from 22.13.11 to 22.14.0 (#2517) (3d751f6) - (dependabot[bot])
• deps-dev: Bump eslint-plugin-prettier from 5.2.3 to 5.2.6 (#2519) (e2fda4e) - (dependabot[bot])
• deps-dev: Bump ts-jest from 29.2.6 to 29.3.1 (#2518) (0bed1b1) - (dependabot[bot])
• deps: Bump github/codeql-action from 3.28.12 to 3.28.15 (#2530) (6802458) - (dependabot[bot])
• deps: Bump tj-actions/branch-names from 8.0.1 to 8.1.0 (#2521) (cf2e39e) - (dependabot[bot])
• deps: Bump tj-actions/verify-changed-files from 20.0.1 to 20.0.4 (#2523) (6abeaa5) - (dependabot[bot])

⬆️ Upgrades

• Upgraded to v46.0.4 (#2511)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (6f67ee9) - (github-actions[bot])

46.0.4 - (2025-04-03)

🐛 Bug Fixes

• Bug modified_keys and changed_key outputs not set when no changes detected (#2509) (6cb76d0) - (Tonye Jack)

📚 Documentation

• Update readme (#2508) (b74df86) - (Tonye Jack)

⬆️ Upgrades

• Upgraded to v46.0.3 (#2506)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com>Co-authored-by: Tonye Jackjtonye@ymail.com (27ae6b3) - (github-actions[bot])

46.0.3 - (2025-03-23)

🔄 Update

• Updated README.md (#2501)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (41e0de5) - (github-actions[bot])

• Updated README.md (#2499)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (9457878) - (github-actions[bot])

📚 Documentation

... (truncated)

• c2ca249 test: manual triggered workflows (#2637)
• 94d97fe chore(deps): bump tj-actions/branch-names from 9.0.1 to 9.0.2 (#2636)
• 18b05b9 chore(deps): bump github/codeql-action from 3.29.4 to 3.29.5 (#2635)
• db8d0bf chore(deps): bump tj-actions/git-cliff from 1.5.0 to 2.0.2 (#2632)
• 0e2e8f7 chore(deps): bump tj-actions/branch-names from 8.2.1 to 9.0.1 (#2633)
• 5f2e971 chore(deps-dev): bump@​types/node from 24.0.15 to 24.1.0 (#2626)
• 498cf3f chore(deps-dev): bump jest from 30.0.4 to 30.0.5 (#2627)
• 8378ac8 chore(deps): bump github/codeql-action from 3.29.3 to 3.29.4 (#2628)
• 4bfe3cb chore(deps): bump nrwl/nx-set-shas from 4.3.0 to 4.3.3 (#2630)
• a0370f6 chore(deps): bump github/codeql-action from 3.29.2 to 3.29.3 (#2625)
• Additional commits viewable incompare view

Sourced fromtj-actions/branch-names's releases.

v9.0.2

What's Changed

• Upgraded to v9.0.1 by@​github-actions[bot] intj-actions/branch-names#424

Full Changelog:tj-actions/branch-names@v9...v9.0.2

v9.0.1

What's Changed

• build(deps): bump tj-actions/git-cliff from 1.5.0 to 2.0.2 by@​dependabot[bot] intj-actions/branch-names#422
• build(deps): bump codacy/codacy-analysis-cli-action from 4.4.5 to 4.4.7 by@​dependabot[bot] intj-actions/branch-names#421

Full Changelog:tj-actions/branch-names@v9.0.0...v9.0.1

v9.0.0

What's Changed

• Upgraded to v8.2.1 by@​github-actions[bot] intj-actions/branch-names#417
• chore: update action.yml by@​jackton1 intj-actions/branch-names#418
• Updated README.md by@​github-actions[bot] intj-actions/branch-names#419
• security: fix unsafe outputs by@​jackton1 intj-actions/branch-names#420

Full Changelog:tj-actions/branch-names@v8...v9.0.0

v9

Changes in v9.0.2

What's Changed

• Upgraded to v9.0.1 by@​github-actions[bot] intj-actions/branch-names#424

Full Changelog:tj-actions/branch-names@v9...v9.0.2

---

Changes in v9.0.1

What's Changed

• build(deps): bump tj-actions/git-cliff from 1.5.0 to 2.0.2 by@​dependabot[bot] intj-actions/branch-names#422
• build(deps): bump codacy/codacy-analysis-cli-action from 4.4.5 to 4.4.7 by@​dependabot[bot] intj-actions/branch-names#421

Full Changelog:tj-actions/branch-names@v9.0.0...v9.0.1

---

Changes in v9.0.0

What's Changed

• Upgraded to v8.2.1 by@​github-actions[bot] intj-actions/branch-names#417
• chore: update action.yml by@​jackton1 intj-actions/branch-names#418
• Updated README.md by@​github-actions[bot] intj-actions/branch-names#419

... (truncated)

Sourced fromtj-actions/branch-names's changelog.

Changelog

9.0.2 - (2025-07-31)

🔄 Update

• Update update-readme.yml (5250492) - (Tonye Jack)
• Update update-readme.yml (a2bc495) - (Tonye Jack)
• Update README.md (169ddc1) - (Tonye Jack)
• Update README.md (4d35052) - (Tonye Jack)
• Updated README.md (#423)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (6be34a8) - (github-actions[bot])

⬆️ Upgrades

• Upgraded from v9.0.0 -> v9.0.1 (#424)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (c0714e7) - (github-actions[bot])

9.0.1 - (2025-07-26)

👷 CI/CD

• deps: Bump codacy/codacy-analysis-cli-action from 4.4.5 to 4.4.7 (#421) (386e117) - (dependabot[bot])
• deps: Bump tj-actions/git-cliff from 1.5.0 to 2.0.2 (#422) (2114174) - (dependabot[bot])

9.0.0 - (2025-07-25)

🔄 Update

• Updated README.md (#419)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (f904073) - (github-actions[bot])

⚙️ Miscellaneous Tasks

• Update action.yml (#418) (c817961) - (Tonye Jack)

🛡️ Security

• Fix unsafe outputs (#420) (e497ceb) - (Tonye Jack)

⬆️ Upgrades

• Upgraded from v8.2.0 -> v8.2.1 (#417)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@​users.noreply.github.com> (46ae71d) - (github-actions[bot])

8.2.1 - (2025-04-11)

... (truncated)

• 5250492 Update update-readme.yml
• a2bc495 Update update-readme.yml
• 169ddc1 Update README.md
• 4d35052 Update README.md
• c0714e7 Upgraded from v9.0.0 -> v9.0.1 (#424)
• 6be34a8 Updated README.md (#423)
• 386e117 build(deps): bump codacy/codacy-analysis-cli-action from 4.4.5 to 4.4.7 (#421)
• 2114174 build(deps): bump tj-actions/git-cliff from 1.5.0 to 2.0.2 (#422)
• e497ceb security: fix unsafe outputs (#420)
• f904073 Updated README.md (#419)
• Additional commits viewable incompare view

Sourced fromgithub/codeql-action's releases.

v3.29.5

CodeQL Action Changelog

See thereleases page for the relevant changes to the CodeQL CLI and language packs.

3.29.5 - 29 Jul 2025

• Update default CodeQL bundle version to 2.22.2.#2986

See the fullCHANGELOG.md for more information.

v3.29.4

CodeQL Action Changelog

See thereleases page for the relevant changes to the CodeQL CLI and language packs.

3.29.4 - 23 Jul 2025

No user facing changes.

See the fullCHANGELOG.md for more information.

Sourced fromgithub/codeql-action's changelog.

CodeQL Action Changelog

See thereleases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

3.29.5 - 29 Jul 2025

• Update default CodeQL bundle version to 2.22.2.#2986

3.29.4 - 23 Jul 2025

No user facing changes.

3.29.3 - 21 Jul 2025

No user facing changes.

3.29.2 - 30 Jun 2025

• Experimental: When thequality-queries input for theinit action is provided with an argument, separate.quality.sarif files are produced and uploaded for each language with the results of the specified queries. Do not use this in production as it is part of an internal experiment and subject to change at any time.#2935

3.29.1 - 27 Jun 2025

• Fix bug in PR analysis where user-providedinclude query filter fails to exclude non-included queries.#2938
• Update default CodeQL bundle version to 2.22.1.#2950

3.29.0 - 11 Jun 2025

• Update default CodeQL bundle version to 2.22.0.#2925
• Bump minimum CodeQL bundle version to 2.16.6.#2912

3.28.21 - 28 July 2025

No user facing changes.

3.28.20 - 21 July 2025

• Remove support for combining SARIF files from a single upload for GHES 3.18, seethe changelog post.#2959

3.28.19 - 03 Jun 2025

• The CodeQL Action no longer includes its own copy of the extractor for theactions language, which is currently in public preview.Theactions extractor has been included in the CodeQL CLI since v2.20.6. If your workflow has enabled theactions languageand you have pinnedyourtools: property to a specific version of the CodeQL CLI earlier than v2.20.6, you will need to update to at least CodeQL v2.20.6 or disableactions analysis.
• Update default CodeQL bundle version to 2.21.4.#2910

... (truncated)

• 51f7732 Merge pull request#2997 from github/update-v3.29.5-80a09d7b0
• 8e90243 Update changelog for v3.29.5
• 80a09d7 Merge pull request#2996 from github/dependabot/npm_and_yarn/npm-240ab9fad0
• 8388115 Merge pull request#2994 from github/mergeback/changelog/v3.28.21
• 401ecaf Merge branch 'main' into mergeback/changelog/v3.28.21
• ab5c0c5 Merge branch 'main' into dependabot/npm_and_yarn/npm-240ab9fad0
• cd264d4 Merge pull request#2986 from github/update-bundle/codeql-bundle-v2.22.2
• 4599055 Merge branch 'main' into update-bundle/codeql-bundle-v2.22.2
• fd7ad51 Merge pull request#2971 from github/update-supported-enterprise-server-versions
• ac0c9bf Merge branch 'main' into update-supported-enterprise-server-versions
• Additional commits viewable incompare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions