Skip to content

Merge main into releases/v3 #2918

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 35 commits into from
Jun 3, 2025
Merged

Merge main into releases/v3 #2918

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
35 commits
Select commit Hold shift + click to select a range
c29cab9
Remove bundled copy of `actions` extractor
dbartol Feb 27, 2025
c7c9a57
Add changelog entry
dbartol Feb 27, 2025
4a19b51
Merge branch 'main' into dbartol/remove-actions-extractor
aeisenberg Apr 2, 2025
46fbf56
Merge branch 'main' into dbartol/remove-actions-extractor
aeisenberg Apr 2, 2025
c07c4ee
build(deps): bump undici from 5.28.5 to 5.29.0 in the npm_and_yarn group
dependabot[bot] May 15, 2025
99ec5f3
Update checked-in dependencies
github-actions[bot] May 15, 2025
655a335
Update changelog and version after v3.28.18
github-actions[bot] May 16, 2025
4428f8e
Update checked-in dependencies
github-actions[bot] May 16, 2025
57eebf6
Merge pull request #2897 from github/mergeback/v3.28.18-to-main-ff0a06e8
smowton May 16, 2025
396fd27
Merge pull request #2895 from github/dependabot/npm_and_yarn/npm_and_…
henrymercer May 19, 2025
566c8df
build(deps-dev): bump @eslint/js from 9.26.0 to 9.27.0 in the npm group
dependabot[bot] May 19, 2025
cae4996
Update checked-in dependencies
github-actions[bot] May 19, 2025
ba7fabd
build(deps): bump ruby/setup-ruby in the actions group
dependabot[bot] May 19, 2025
54a7f3b
Merge branch 'main' into dbartol/remove-actions-extractor
aeisenberg May 22, 2025
b63847b
Update version number in changelog
henrymercer May 22, 2025
bcaa06b
Update generated workflow source to match
henrymercer May 22, 2025
5239ab1
Merge pull request #2787 from github/dbartol/remove-actions-extractor
henrymercer May 22, 2025
23262ae
Merge pull request #2898 from github/dependabot/npm_and_yarn/npm-aa8c…
henrymercer May 22, 2025
7b0fb5a
Merge pull request #2899 from github/dependabot/github_actions/action…
henrymercer May 22, 2025
83a4df5
build(deps): bump ruby/setup-ruby in the actions group
dependabot[bot] May 26, 2025
0abe43c
Update generated workflow source
henrymercer May 27, 2025
3934d2b
build(deps): bump the npm group across 1 directory with 2 updates
dependabot[bot] May 27, 2025
655a969
Update checked-in dependencies
github-actions[bot] May 27, 2025
eaed21b
Dependabot: Remove deprecated `reviewers` config
henrymercer May 27, 2025
97fbf51
Merge pull request #2907 from github/dependabot/npm_and_yarn/npm-4187…
henrymercer May 27, 2025
1a67b5d
Merge pull request #2905 from github/dependabot/github_actions/action…
henrymercer May 27, 2025
bc02a25
Merge pull request #2908 from github/henrymercer/dependabot
henrymercer May 27, 2025
31eae5e
Update supported GitHub Enterprise Server versions
github-actions[bot] May 28, 2025
7fd6215
Merge pull request #2911 from github/update-supported-enterprise-serv…
henrymercer May 28, 2025
3201e46
Stop running CI on `windows-2019`
henrymercer May 30, 2025
dc138d4
Merge pull request #2913 from github/henrymercer/win-2019-deprecated
redsun82 Jun 2, 2025
d621686
Update default bundle to codeql-bundle-v2.21.4
github-actions[bot] May 27, 2025
c0a821d
Add changelog note
github-actions[bot] May 27, 2025
4a00331
Merge pull request #2910 from github/update-bundle/codeql-bundle-v2.21.4
aibaars Jun 2, 2025
1dcd2be
Update changelog for v3.28.19
github-actions[bot] Jun 3, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 0 additions & 6 deletions .github/dependabot.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,8 +2,6 @@ version: 2
updates:
- package-ecosystem: npm
directory: "/"
reviewers:
- "github/codeql-production-shield"
schedule:
interval: weekly
labels:
Expand All @@ -26,8 +24,6 @@ updates:
- "*"
- package-ecosystem: github-actions
directory: "/"
reviewers:
- "github/codeql-production-shield"
schedule:
interval: weekly
groups:
Expand All @@ -36,8 +32,6 @@ updates:
- "*"
- package-ecosystem: github-actions
directory: "/.github/actions/setup-swift/" # All subdirectories outside of "/.github/workflows" must be explicitly included.
reviewers:
- "github/codeql-production-shield"
schedule:
interval: weekly
groups:
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/__rubocop-multi-language.yml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion .github/workflows/codeql.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -75,7 +75,7 @@ jobs:
strategy:
fail-fast: false
matrix:
os: [ubuntu-22.04,ubuntu-24.04,windows-2019,windows-2022,macos-13,macos-14]
os: [ubuntu-22.04,ubuntu-24.04,windows-2022,windows-2025,macos-13,macos-14,macos-15]
tools: ${{ fromJson(needs.check-codeql-versions.outputs.versions) }}
runs-on: ${{ matrix.os }}

Expand Down
8 changes: 8 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,14 @@

See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.

## 3.28.19 - 03 Jun 2025

- The CodeQL Action no longer includes its own copy of the extractor for the `actions` language, which is currently in public preview.
The `actions` extractor has been included in the CodeQL CLI since v2.20.6. If your workflow has enabled the `actions` language _and_ you have pinned
your `tools:` property to a specific version of the CodeQL CLI earlier than v2.20.6, you will need to update to at least CodeQL v2.20.6 or disable
`actions` analysis.
- Update default CodeQL bundle version to 2.21.4. [#2910](https://github.com/github/codeql-action/pull/2910)

## 3.28.18 - 16 May 2025

- Update default CodeQL bundle version to 2.21.3. [#2893](https://github.com/github/codeql-action/pull/2893)
Expand Down
44 changes: 0 additions & 44 deletions actions-extractor/codeql-extractor.yml
View file
Open in desktop

This file was deleted.

40 changes: 0 additions & 40 deletions actions-extractor/tools/autobuild-impl.ps1
View file
Open in desktop

This file was deleted.

3 changes: 0 additions & 3 deletions actions-extractor/tools/autobuild.cmd
View file
Open in desktop

This file was deleted.

39 changes: 0 additions & 39 deletions actions-extractor/tools/autobuild.sh
View file
Open in desktop

This file was deleted.

2 changes: 1 addition & 1 deletion lib/api-compatibility.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1 +1 @@
{ "maximumVersion": "3.17", "minimumVersion": "3.13" }
{ "maximumVersion": "3.18", "minimumVersion": "3.13" }
14 changes: 0 additions & 14 deletions lib/codeql.js
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/codeql.js.map
View file
Open in desktop

Large diffs are not rendered by default.

8 changes: 4 additions & 4 deletions lib/defaults.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"bundleVersion": "codeql-bundle-v2.21.3",
"cliVersion": "2.21.3",
"priorBundleVersion": "codeql-bundle-v2.21.2",
"priorCliVersion": "2.21.2"
"bundleVersion": "codeql-bundle-v2.21.4",
"cliVersion": "2.21.4",
"priorBundleVersion": "codeql-bundle-v2.21.3",
"priorCliVersion": "2.21.3"
}
Loading
Loading