search

the-control-group / authx

An authentication & authorization platform for service-oriented architectures.
MIT License
47 stars 6 forks source link

Bump github/codeql-action from 1 to 3 #627

Closed dependabot[bot] closed 6 months ago

dependabot[bot] commented 7 months ago

Bumps github/codeql-action from 1 to 3.

Release notes

Sourced from github/codeql-action's releases.

CodeQL Bundle v2.16.4

Bundles CodeQL CLI v2.16.4

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.16.4:

CodeQL Bundle v2.16.3

Bundles CodeQL CLI v2.16.3

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.16.3:

CodeQL Bundle v2.16.2

Bundles CodeQL CLI v2.16.2

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.16.2:

... (truncated)

Changelog

Sourced from github/codeql-action's changelog.

3.24.5 - 23 Feb 2024

  • Update default CodeQL bundle version to 2.16.3. #2156
Commits
  • 8a470fd Merge pull request #2176 from github/update-v3.24.6-158d0780d
  • d59eafb Update changelog for v3.24.6
  • 158d078 Merge pull request #2175 from github/henrymercer/fix-languages-init-success
  • 2307ff5 Add languages and build_mode to init success status report
  • ccd3f02 Merge pull request #2173 from github/henrymercer/mark-third-party-limits-erro...
  • c091725 Refactoring: Convert ActionName to enum
  • e12a8cc Use isFirstPartyAnalysis for a stronger check
  • 888ab31 Mark third-party SARIF limits errors as configuration errors
  • bd56a05 Rename InvalidRequestError to InvalidSarifUploadError
  • 7bde906 Merge pull request #2172 from github/henrymercer/fix-readme-typos
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
sonarcloud[bot] commented 7 months ago

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud

dependabot[bot] commented 6 months ago

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.