Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
build(deps): bump github/codeql-action from 3.28.1 to 3.28.8 [skip ci]
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.28.1 to 3.28.8. Release notes *Sourced from [github/codeql-action's releases](https://github.com/github/codeql-action/releases).* > v3.28.8 > ------- > > CodeQL Action Changelog > ======================= > > See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. > > 3.28.8 - 29 Jan 2025 > -------------------- > > * Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. [#2744](https://github.com/github/codeql-action/pull/2744) > > See the full [CHANGELOG.md](https://github.com/github/codeql-action/blob/v3.28.8/CHANGELOG.md) for more information. > > v3.28.7 > ------- > > CodeQL Action Changelog > ======================= > > See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. > > 3.28.7 - 29 Jan 2025 > -------------------- > > No user facing changes. > > See the full [CHANGELOG.md](https://github.com/github/codeql-action/blob/v3.28.7/CHANGELOG.md) for more information. > > v3.28.6 > ------- > > CodeQL Action Changelog > ======================= > > See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. > > 3.28.6 - 27 Jan 2025 > -------------------- > > * Re-enable debug artifact upload for CLI versions 2.20.3 or greater. [#2726](https://github.com/github/codeql-action/pull/2726) > > See the full [CHANGELOG.md](https://github.com/github/codeql-action/blob/v3.28.6/CHANGELOG.md) for more information. > > v3.28.5 > ------- > > CodeQL Action Changelog > ======================= > > See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. > > 3.28.5 - 24 Jan 2025 > -------------------- > > * Update default CodeQL bundle version to 2.20.3. [#2717](https://github.com/github/codeql-action/pull/2717) > > See the full [CHANGELOG.md](https://github.com/github/codeql-action/blob/v3.28.5/CHANGELOG.md) for more information. > > v3.28.4 > ------- > > CodeQL Action Changelog > ======================= > > See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. > > 3.28.4 - 23 Jan 2025 > -------------------- ... (truncated) Changelog *Sourced from [github/codeql-action's changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md).* > CodeQL Action Changelog > ======================= > > See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. > > [UNRELEASED] > ------------ > > No user facing changes. > > 3.28.8 - 29 Jan 2025 > -------------------- > > * Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. [#2744](https://github.com/github/codeql-action/pull/2744) > > 3.28.7 - 29 Jan 2025 > -------------------- > > No user facing changes. > > 3.28.6 - 27 Jan 2025 > -------------------- > > * Re-enable debug artifact upload for CLI versions 2.20.3 or greater. [#2726](https://github.com/github/codeql-action/pull/2726) > > 3.28.5 - 24 Jan 2025 > -------------------- > > * Update default CodeQL bundle version to 2.20.3. [#2717](https://github.com/github/codeql-action/pull/2717) > > 3.28.4 - 23 Jan 2025 > -------------------- > > No user facing changes. > > 3.28.3 - 22 Jan 2025 > -------------------- > > * Update default CodeQL bundle version to 2.20.2. [#2707](https://github.com/github/codeql-action/pull/2707) > * Fix an issue downloading the CodeQL Bundle from a GitHub Enterprise Server instance which occurred when the CodeQL Bundle had been synced to the instance using the [CodeQL Action sync tool](https://github.com/github/codeql-action-sync-tool) and the Actions runner did not have Zstandard installed. [#2710](https://github.com/github/codeql-action/pull/2710) > * Uploading debug artifacts for CodeQL analysis is temporarily disabled. [#2712](https://github.com/github/codeql-action/pull/2712) > > 3.28.2 - 21 Jan 2025 > -------------------- > > No user facing changes. > > 3.28.1 - 10 Jan 2025 > -------------------- > > * CodeQL Action v2 is now deprecated, and is no longer updated or supported. For better performance, improved security, and new features, upgrade to v3. For more information, see [this changelog post](https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/). [#2677](https://github.com/github/codeql-action/pull/2677) > * Update default CodeQL bundle version to 2.20.1. [#2678](https://github.com/github/codeql-action/pull/2678) > > 3.28.0 - 20 Dec 2024 > -------------------- > > * Bump the minimum CodeQL bundle version to 2.15.5. [#2655](https://github.com/github/codeql-action/pull/2655) > * Don't fail in the unusual case that a file is on the search path. [#2660](https://github.com/github/codeql-action/pull/2660). > > 3.27.9 - 12 Dec 2024 > -------------------- ... (truncated) Commits * [`dd74661`](github/codeql-action@dd74661) Merge pull request [#2746](https://github.com/github/codeql-action/issues/2746) from github/update-v3.28.8-a91a3f767 * [`3210a3c`](github/codeql-action@3210a3c) Fix Kotlin version in changelog * [`72f9d02`](github/codeql-action@72f9d02) Update changelog for v3.28.8 * [`a91a3f7`](github/codeql-action@a91a3f7) Merge pull request [#2744](https://github.com/github/codeql-action/issues/2744) from github/igfoo/kot2.1.10 * [`c520fb5`](github/codeql-action@c520fb5) Merge pull request [#2745](https://github.com/github/codeql-action/issues/2745) from github/mergeback/v3.28.7-to-main-6e545590 * [`3879c57`](github/codeql-action@3879c57) Add changelog entry * [`0c21937`](github/codeql-action@0c21937) Run "npm run build" * [`5a61bf0`](github/codeql-action@5a61bf0) Kotlin: The 2.20.3 release supports Kotlin 2.1.10. * [`163d119`](github/codeql-action@163d119) Update checked-in dependencies * [`bcf5cec`](github/codeql-action@bcf5cec) Update changelog and version after v3.28.7 * Additional commits viewable in [compare view](github/codeql-action@b6a472f...dd74661) [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- Dependabot commands and options You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- Loading branch information
