build(deps): bump github/codeql-action from 3.28.13 to 3.28.17 by dependabot[bot] · Pull Request #1035 · microsoft/sbom-tool (original) (raw)
Bumps github/codeql-action from 3.28.13 to 3.28.17.
Release notes
Sourced from github/codeql-action's releases.
v3.28.17
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
3.28.17 - 02 May 2025
- Update default CodeQL bundle version to 2.21.2. #2872
See the full CHANGELOG.md for more information.
v3.28.16
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
3.28.16 - 23 Apr 2025
- Update default CodeQL bundle version to 2.21.1. #2863
See the full CHANGELOG.md for more information.
v3.28.15
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
3.28.15 - 07 Apr 2025
- Fix bug where the action would fail if it tried to produce a debug artifact with more than 65535 files. #2842
See the full CHANGELOG.md for more information.
v3.28.14
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
3.28.14 - 07 Apr 2025
- Update default CodeQL bundle version to 2.21.0. #2838
See the full CHANGELOG.md for more information.
Changelog
Sourced from github/codeql-action's changelog.
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
[UNRELEASED]
No user facing changes.
3.28.17 - 02 May 2025
- Update default CodeQL bundle version to 2.21.2. #2872
3.28.16 - 23 Apr 2025
- Update default CodeQL bundle version to 2.21.1. #2863
3.28.15 - 07 Apr 2025
- Fix bug where the action would fail if it tried to produce a debug artifact with more than 65535 files. #2842
3.28.14 - 07 Apr 2025
- Update default CodeQL bundle version to 2.21.0. #2838
3.28.13 - 24 Mar 2025
No user facing changes.
3.28.12 - 19 Mar 2025
- Dependency caching should now cache more dependencies for Java
build-mode: noneextractions. This should speed up workflows and avoid inconsistent alerts in some cases.- Update default CodeQL bundle version to 2.20.7. #2810
3.28.11 - 07 Mar 2025
- Update default CodeQL bundle version to 2.20.6. #2793
3.28.10 - 21 Feb 2025
- Update default CodeQL bundle version to 2.20.5. #2772
- Address an issue where the CodeQL Bundle would occasionally fail to decompress on macOS. #2768
3.28.9 - 07 Feb 2025
- Update default CodeQL bundle version to 2.20.4. #2753
3.28.8 - 29 Jan 2025
- Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. #2744
... (truncated)
Commits
- 60168ef Merge pull request #2886 from github/update-v3.28.17-97a2bfd2a
- 0d5a311 Update changelog for v3.28.17
- 97a2bfd Merge pull request #2872 from github/update-bundle/codeql-bundle-v2.21.2
- 9aba20e Merge branch 'main' into update-bundle/codeql-bundle-v2.21.2
- 81a9508 Merge pull request #2876 from github/henrymercer/fix-diff-informed-multiple-a...
- 1569f4c Disable diff-informed queries in code scanning config tests
- 62fbeb6 Merge branch 'main' into henrymercer/fix-diff-informed-multiple-analyze
- f122d1d Address test failures from computing temporary directory too early
- 083772a Do not fail diff informed analyses when
analyzeis run twice in the same job - 5db14d0 Merge branch 'main' into update-bundle/codeql-bundle-v2.21.2
- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)