search

flutter / put-flutter-to-work

A Flutter add-to-app demo you can try with your own apps
BSD 3-Clause "New" or "Revised" License
321 stars 38 forks source link

chore(deps): bump github/codeql-action from 1.0.26 to 2.1.12 #112

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps github/codeql-action from 1.0.26 to 2.1.12.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

[UNRELEASED]

No user facing changes.

2.1.12 - 01 Jun 2022

  • Update default CodeQL bundle version to 2.9.3. #1084

2.1.11 - 17 May 2022

  • Update default CodeQL bundle version to 2.9.2. #1074

2.1.10 - 10 May 2022

  • Update default CodeQL bundle version to 2.9.1. #1056
  • When wait-for-processing is enabled, the workflow will now fail if there were any errors that occurred during processing of the analysis results.

2.1.9 - 27 Apr 2022

  • Add working-directory input to the autobuild action. #1024
  • The analyze and upload-sarif actions will now wait up to 2 minutes for processing to complete after they have uploaded the results so they can report any processing errors that occurred. This behavior can be disabled by setting the wait-for-processing action input to "false". #1007
  • Update default CodeQL bundle version to 2.9.0.
  • Fix a bug where status reporting fails on Windows. #1042

2.1.8 - 08 Apr 2022

  • Update default CodeQL bundle version to 2.8.5. #1014
  • Fix error where the init action would fail due to a GitHub API request that was taking too long to complete #1025

2.1.7 - 05 Apr 2022

  • A bug where additional queries specified in the workflow file would sometimes not be respected has been fixed. #1018

2.1.6 - 30 Mar 2022

  • [v2+ only] The CodeQL Action now runs on Node.js v16. #1000
  • Update default CodeQL bundle version to 2.8.4. #990
  • Fix a bug where an invalid commit_oid was being sent to code scanning when a custom checkout path was being used. #956

1.1.5 - 15 Mar 2022

  • Update default CodeQL bundle version to 2.8.3.
  • The CodeQL runner is now deprecated and no longer being released. For more information, see CodeQL runner deprecation.
  • Fix two bugs that cause action failures with GHES 3.3 or earlier. #978
    • Fix not a permitted key invalid requests with GHES 3.1 or earlier
    • Fix RUNNER_ARCH environment variable must be set errors with GHES 3.3 or earlier

1.1.4 - 07 Mar 2022

... (truncated)

Commits
  • 27ea8f8 Merge pull request #1088 from github/update-v2.1.12-dbe6f211
  • 3f00a12 Update changelog for v2.1.12
  • dbe6f21 Merge pull request #1084 from github/cklin/codeql-bundle-2.9.3
  • b36688d Update default CodeQL to 2.9.3
  • 822fe5e Merge pull request #1057 from github/criemen/lua-tracing-ff
  • 255ffd4 Merge branch 'main' into criemen/lua-tracing-ff
  • 4b77568 Choose the correct version to enable the Lua tracer for.
  • f0705a6 Merge pull request #1081 from github/clarify_missing_base
  • 2faa3e1 Remove outdated guidance on missing analysis
  • aaff818 Merge pull request #1079 from github/mergeback/v2.1.11-to-main-a3a6c128
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)