Update default CodeQL bundle version to 2.16.3. #2156
3.24.4 - 21 Feb 2024
Fix an issue where an existing, but empty, /sys/fs/cgroup/cpuset.cpus file always resulted in a single-threaded run. #2151
3.24.3 - 15 Feb 2024
Fix an issue where the CodeQL Action would fail to load a configuration specified by the config input to the init Action. #2147
3.24.2 - 15 Feb 2024
Enable improved multi-threaded performance on larger runners for GitHub Enterprise Server users. This feature is already available to GitHub.com users. #2141
3.24.1 - 13 Feb 2024
Update default CodeQL bundle version to 2.16.2. #2124
The CodeQL action no longer fails if it can't write to the telemetry api endpoint. #2121
3.24.0 - 02 Feb 2024
CodeQL Python analysis will no longer install dependencies on GitHub Enterprise Server, as is already the case for GitHub.com. See release notes for 3.23.0 for more details. #2106
Commits
8a470fd Merge pull request #2176 from github/update-v3.24.6-158d0780d
⚙️ Fixes an issue where updating a pull request leads to the error Cannot read properties of undefined (reading 'number'). This was likely caused by GitHub fixing a long standing bug with an API endpoint, resulting in a breaking change.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency
- `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
Bumps the github-actions group with 7 updates:
3.0.0
3.0.1
4.3.0
4.3.1
4.1.1
4.1.3
4.0.0
4.1.0
3.23.2
3.24.6
6.0.0
6.0.1
1.13.0
1.14.0
Updates
pre-commit/action
from 3.0.0 to 3.0.1Release notes
Sourced from pre-commit/action's releases.
Commits
2c7b380
v3.0.18e2deeb
Merge pull request #190 from SukiCZ/upgrade-action/cache-v40dbc303
Upgrade action/cache to v4. Fixes: #189c7d159c
Merge pull request #185 from pre-commit/asottile-patch-19dd4237
fix main badge37faf8a
Merge pull request #184 from pre-commit/pre-commit-ci-update-config049686e
[pre-commit.ci] pre-commit autoupdate5f528da
move back to maintenance-onlyefd3bcf
Merge pull request #170 from pre-commit/pre-commit-ci-update-configdf308c7
[pre-commit.ci] pre-commit autoupdateUpdates
actions/upload-artifact
from 4.3.0 to 4.3.1Release notes
Sourced from actions/upload-artifact's releases.
Commits
5d5d22a
Merge pull request #515 from actions/eggyhead/update-artifact-v2.1.1f1e993d
update artifact license4881bfd
updating dist:a30777e
@eggyhead
3a80482
Merge pull request #511 from actions/robherley/migration-docs-typo9d63e3f
Merge branch 'main' into robherley/migration-docs-typodfa1ab2
fix typo with v3 artifact downloads in migration guided00351b
Merge pull request #509 from markmssd/patch-1707f5a7
Update limitation of10
artifacts upload to500
Updates
actions/download-artifact
from 4.1.1 to 4.1.3Release notes
Sourced from actions/download-artifact's releases.
Commits
87c5514
Merge pull request #303 from bethanyj28/main47f9ce6
update@actions/artifact
127824d
Merge pull request #299 from bethanyj28/main6dd49bf
licensed only artifactf71c0e3
Revert "licensed"7c63dfd
licensed67d37cd
Update toolkit3487549
Update release-new-action-version.yml (#292)eaceaf8
Merge pull request #291 from actions/eggyhead/update-artifact-v2.1.181eafdc
update artifact licenseUpdates
codecov/codecov-action
from 4.0.0 to 4.1.0Release notes
Sourced from codecov/codecov-action's releases.
Commits
54bcd87
chore(release): v4.1.0 (#1307)8ba77ef
build(deps-dev): bump eslint from 8.56.0 to 8.57.0 (#1305)c60aa80
build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 (#1306)2fc4847
fix: set safe directory (#1304)0cfda1d
chore(release): bump to 4.0.2 (#1302)7d3a55e
build(deps): bump actions/upload-artifact from 4.3.0 to 4.3.1 (#1286)fe84a0b
build(deps-dev): bump@typescript-eslint/eslint-plugin
from 6.21.0 to 7.0.0 (...e12c940
Use updated syntax for GitHub Markdown notes (#1300)ef7f8a5
build(deps): bump github/codeql-action from 3.24.0 to 3.24.3 (#1298)b8a1d6a
build(deps-dev): bump@typescript-eslint/eslint-plugin
from 6.20.0 to 6.21.0 ...Updates
github/codeql-action
from 3.23.2 to 3.24.6Changelog
Sourced from github/codeql-action's changelog.
Commits
8a470fd
Merge pull request #2176 from github/update-v3.24.6-158d0780dd59eafb
Update changelog for v3.24.6158d078
Merge pull request #2175 from github/henrymercer/fix-languages-init-success2307ff5
Addlanguages
andbuild_mode
toinit
success
status reportccd3f02
Merge pull request #2173 from github/henrymercer/mark-third-party-limits-erro...c091725
Refactoring: ConvertActionName
to enume12a8cc
UseisFirstPartyAnalysis
for a stronger check888ab31
Mark third-party SARIF limits errors as configuration errorsbd56a05
RenameInvalidRequestError
toInvalidSarifUploadError
7bde906
Merge pull request #2172 from github/henrymercer/fix-readme-typosUpdates
peter-evans/create-pull-request
from 6.0.0 to 6.0.1Release notes
Sourced from peter-evans/create-pull-request's releases.
Commits
a4f52f8
fix: list pulls using the correct head format (#2792)853c071
build(deps-dev): bump eslint from 8.56.0 to 8.57.0 (#2781)d2c126e
build(deps-dev): bump@types/node
from 18.19.17 to 18.19.18 (#2780)43d39c6
build(deps-dev): bump@types/node
from 18.19.15 to 18.19.17 (#2768)5a9d206
build(deps-dev): bump eslint-plugin-jest from 27.6.3 to 27.9.0 (#2769)e0743ed
build(deps-dev): bump@types/node
from 18.19.14 to 18.19.15 (#2759)e1529cb
build(deps): bump peter-evans/create-pull-request from 5 to 6 (#2747)aad52e8
build(deps): bump peter-evans/slash-command-dispatch from 3 to 4 (#2748)a64ebdd
build(deps-dev): bump@types/node
from 18.19.10 to 18.19.14 (#2732)51b40af
build(deps-dev): bump prettier from 3.2.4 to 3.2.5 (#2731)Updates
ncipollo/release-action
from 1.13.0 to 1.14.0Release notes
Sourced from ncipollo/release-action's releases.
Commits
2c591bc
Prepare 1.14.01e3e9c6
Fix production build errorc03240c
apply debug build66b1844
Upgrade to Node 20 (#411)a8aa04e
Bump@types/node
from 20.10.1 to 20.10.6 (#402)39c57fe
Bump typescript from 5.3.2 to 5.3.3 (#403)02a91b5
Fix build errors from github api update0300282
Bump@actions/github
from 5.1.1 to 6.0.0 (#385)c4a7702
Add more info about announcements category4f53bc4
Add discussionCategory caveat to readmeDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show