github-actions[bot]
commented
3 months ago [puLL-Merge] - github/codeql-action@v3.25.4..v3.25.5
Description
This PR makes several updates to the CodeQL Action:
- Add a compatibility matrix to the README showing the supported versions of the CodeQL CLI and GitHub Enterprise Server for each CodeQL Action version
- Update the default CodeQL bundle version to 2.17.2
- Stop printing a warning for a missing
on.pushtrigger when the action is triggered via aworkflow_callevent - Enable the
fail-fast: falsestrategy for all test workflow jobs - Add new recognized CLI error messages for out of memory errors and invalid query pack names
- Update Python version and dependencies in release initialization workflow
- End tracing early after the autobuild step to avoid tracing the analyze step for better performance and reliability
- Update feature flag handling to distinguish between legacy and non-legacy feature flags
- Legacy feature flags have
_enabledsuffix and are included by default in API response - Non-legacy feature flags do not have
_enabledsuffix and must be explicitly requested
- Legacy feature flags have
- Bump minimum supported CodeQL CLI version to 2.12.6
Changes
### Changes `CHANGELOG.md`: - Add note for 3.25.5 release `CONTRIBUTING.md`: - Update instructions for deprecating old CodeQL versions to update the compatibility table in the readme `README.md`: - Add compatibility matrix showing supported CodeQL CLI and GHES versions for each CodeQL Action version `.github/actions/release-initialise/action.yml`: - Update Python version to 3.12 - Update PyGithub and requests dependencies `.github/workflows/`: - Enable `fail-fast: false` strategy for all test workflow jobs `lib/analyze.js`, `src/analyze.ts`: - End tracing after autobuild if not already ended `lib/autobuild-action.js`, `src/autobuild-action.ts`: - End tracing early after autobuild to avoid tracing analyze step `lib/autobuild.js`, `src/autobuild.ts`: - Update feature flag check for autobuild direct tracing - Remove passing features to `codeQL.runAutobuild()` `lib/cli-errors.js`, `src/cli-errors.ts`: - Add new CLI error categories for out of memory and invalid query pack name `lib/codeql.js`, `src/codeql.ts`: - Remove features parameter from `runAutobuild()` - Remove AutobuildDirectTracingEnabled feature flag check in `runAutobuild()` `lib/feature-flags.js`, `src/feature-flags.ts`: - Add `legacyApi` property to feature flag config to distinguish legacy flags - Explicitly request non-legacy feature flags in API call - Log loaded feature flag values individually - Rename `AutobuildDirectTracingEnabled` to `AutobuildDirectTracing` `lib/tracer-config.js`, `src/tracer-config.ts`: - Add JSDoc comment explaining `endTracingForCluster` behavior - Log message when ending tracing `lib/upload-lib.js` and `src/upload-lib.ts`: - Recognize additional API error messages as invalid requests `lib/workflow.js` and `src/workflow.ts`: - Check for `workflow_call` trigger before warning about missing `push` trigger - Extract `hasWorkflowTrigger` helper function `pr-checks/sync.py`: - Enable `fail-fast: false` strategy when generating PR check workflowsSecurity Hotspots
None - The changes do not appear to introduce any new security risks.
This PR contains the following updates:
v3.25.4->v3.25.5v3.25.6Release Notes
github/codeql-action (github/codeql-action)
### [`v3.25.5`](https://togithub.com/github/codeql-action/compare/v3.25.4...v3.25.5) [Compare Source](https://togithub.com/github/codeql-action/compare/v3.25.4...v3.25.5)Configuration
📅 Schedule: Branch creation - " 0-4 * 3" (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
â™» Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.