dependabot[bot] opened a new pull request, #382:
URL: https://github.com/apache/directory-kerby/pull/382
Bumps [github/codeql-action](https://github.com/github/codeql-action) from
3.25.5 to 3.25.6.
Changelog
Sourced from https://github.com/github/codeql-action/blob/main/CHANGELOG.md";>github/codeql-action's
changelog.
CodeQL Action Changelog
See the https://github.com/github/codeql-action/releases";>releases page for
the relevant changes to the CodeQL CLI and language packs.
Note that the only difference between v2 and v3
of the CodeQL Action is the node version they support, with v3
running on node 20 while we continue to release v2 to support
running on node 16. For example 3.22.11 was the first
v3 release and is functionally identical to 2.22.11.
This approach ensures an easy way to track exactly which features are included
in different versions, indicated by the minor and patch version numbers.
[UNRELEASED]
We are rolling out a feature in May/June 2024 that will reduce the
Actions cache usage of the Action by keeping only the newest TRAP cache for
each language. https://redirect.github.com/github/codeql-action/pull/2306";>#2306
3.25.6 - 20 May 2024
Update default CodeQL bundle version to 2.17.3. https://redirect.github.com/github/codeql-action/pull/2295";>#2295
3.25.5 - 13 May 2024
Add a compatibility matrix of supported CodeQL Action, CodeQL CLI, and
GitHub Enterprise Server versions to the https://github.com/github/codeql-action/blob/main/README.md";>https://github.com/github/codeql-action/blob/main/README.md.
https://redirect.github.com/github/codeql-action/pull/2273";>#2273
Avoid printing out a warning for a missing on.push trigger
when the CodeQL Action is triggered via a workflow_call event. https://redirect.github.com/github/codeql-action/pull/2274";>#2274
The tools: latest input to the init Action has
been renamed to tools: linked. This option specifies that the
Action should use the tools shipped at the same time as the Action. The old
name will continue to work for backwards compatibility, but we recommend that
new workflows use the new name. https://redirect.github.com/github/codeql-action/pull/2281";>#2281
3.25.4 - 08 May 2024
Update default CodeQL bundle version to 2.17.2. https://redirect.github.com/github/codeql-action/pull/2270";>#2270
3.25.3 - 25 Apr 2024
Update default CodeQL bundle version to 2.17.1. https://redirect.github.com/github/codeql-action/pull/2247";>#2247
Workflows running on macos-latest using CodeQL CLI versions
before v2.15.1 will need to either upgrade their CLI version to v2.15.1 or
newer, or change the platform to an Intel MacOS runner, such as
macos-12. ARM machines with SIP disabled, including the newest
macos-latest image, are unsupported for CLI versions before
2.15.1. https://redirect.github.com/github/codeql-action/pull/2261";>#2261
3.25.2 - 22 Apr 2024
No user facing changes.
3.25.1 - 17 Apr 2024
We are rolling out a feature in April/May 2024 that improves the
reliability and performance of analyzing code when analyzing a compiled
language with the autobuild https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages#codeql-build-modes";>build
mode. https://redirect.github.com/github/codeql-action/pull/2235";>#2235
Fix a bug where the init Action would fail if
--overwrite was specified in
CODEQL_ACTION_EXTRA_OPTIONS. https://redirect.github.com/github/codeql-action/pull/2245";>#2245
3.25.0 - 15 Apr 2024
The deprecated feature for extracting dependencies for a Python analysis
has been removed. https://redirect.github.com/github/codeql-action/pull/2224";>#2224
As a result, the following inputs and environment variables are now
ignored:
The setup-python-dependencies input to the
init Action
The CODEQL_ACTION_DISABLE_PYTHON_DEPENDENCY_INSTALLATION
environment variable
We recommend removing any references to these from your workflows. For
more information, see the release notes for CodeQL Action v3.23.0 and
v2.23.0.
Automatically overwrite an existing database if found on the filesystem.
https://redirect.github.com/github/codeql-action/pull/2229";>#2229
Bump the minimum CodeQL bundle version to 2.12.6. https://redirect.github.com/github/codeql-action/pull/2232";>#2232
... (truncated)
Commits
https://github.com/github/codeql-action/commit/9fdb3e49720b44c48891d036bb502feb25684276";>9fdb3e4
Merge pull request https://redirect.github.com/github/codeql-action/issues/2300";>#2300
from github/update-v3.25.6-63d519c0a
https://github.com/github/codeql-action/commit/00792ab1e0a5e45d2ff0c2426424bf7044bb27d0";>00792ab
Update changelog for v3.25.6
https://github.com/github/codeql-action/commit/63d519c0ae6a4b739e3377a517400c352a7d829