Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update github/codeql-action action to v3.26.13 #112

Merged
merged 1 commit into from
Oct 24, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Oct 24, 2024

This PR contains the following updates:

Package Type Update Change Pending
github/codeql-action action patch v3.26.12 -> v3.26.13 v3.27.0

Release Notes

github/codeql-action (github/codeql-action)

v3.26.13

Compare Source


Configuration

📅 Schedule: Branch creation - "* 0-4 * * 3" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot requested review from mherrmann and a team as code owners October 24, 2024 03:35
Copy link

[puLL-Merge] - github/codeql-action@v3.26.12..v3.26.13

Description

This PR makes several changes to the CodeQL Action, including updates to workflow files, dependencies, and the addition of a new feature flag for Python standard library extraction. The main motivations appear to be improving performance, updating dependencies, and preparing for a change in Python extraction behavior.

Changes

Changes

  1. .github/workflows/__zstd-bundle-fallback.yml:

    • Removed Windows from the list of operating systems.
  2. .github/workflows/__zstd-bundle.yml:

    • Reordered operating systems (Windows moved to the end).
    • Modified the check for the tools URL extension to account for Windows using .tar.gz instead of .tar.zst.
  3. src/feature-flags.ts:

    • Added a new feature flag CodeqlActionPythonDefaultIsToNotExtractStdlib.
  4. src/init-action.ts:

    • Implemented logic to handle the new Python standard library extraction feature flag.
  5. src/setup-codeql.ts:

    • Modified the useZstdBundle function to exclude Windows, as gzip performs better on this platform.
  6. src/tools-features.ts:

    • Added a new ToolsFeature enum value PythonDefaultIsToNotExtractStdlib.
  7. Package updates:

    • Updated various dependencies, including TypeScript-related packages and ESLint plugins.
  8. CHANGELOG.md:

    • Added an entry for version 3.26.13 with "No user facing changes".

Possible Issues

  • The change in Python standard library extraction behavior might affect some existing workflows. Careful testing and communication with users may be necessary.

Security Hotspots

None identified. The changes appear to be focused on performance improvements and feature additions rather than introducing potential security vulnerabilities.

@renovate renovate bot merged commit bcd7989 into main Oct 24, 2024
4 checks passed
@renovate renovate bot deleted the renovate/github-codeql-action-3.x branch October 24, 2024 06:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants