Skip to content

Releases: github/codeql-action

v2.13.4

31 Oct 04:28
@aeisenberg aeisenberg
v2.13.4
cdcdbb5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.13.4

CodeQL Action Changelog

[UNRELEASED]

No user facing changes.

See the full CHANGELOG.md for more information.

Loading

CodeQL Bundle

19 Jun 19:10
@codeql-ci codeql-ci
codeql-bundle-v2.13.4
cdcdbb5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
CodeQL Bundle

Bundles CodeQL CLI v2.13.4

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.13.4:

Loading

v2.3.6

31 Oct 04:28
@aeisenberg aeisenberg
v2.3.6
83f0fe6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.6

CodeQL Action Changelog

2.3.6 - 01 Jun 2023

No user facing changes.

See the full CHANGELOG.md for more information.

Loading

v2.3.5

31 Oct 04:28
@aeisenberg aeisenberg
v2.3.5
0225834
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.5

CodeQL Action Changelog

2.3.5 - 25 May 2023

  • Allow invalid URIs to be used as values to artifactLocation.uri properties. This reverses a change from #1668 that inadvertently led to stricter validation of some URI values. #1705
  • Gracefully handle invalid URIs when fingerprinting. #1694

See the full CHANGELOG.md for more information.

Loading

v2.3.4

31 Oct 04:28
@aeisenberg aeisenberg
v2.3.4
f0e3dfb
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.4

CodeQL Action Changelog

2.3.4 - 24 May 2023

  • Updated the SARIF 2.1.0 JSON schema file to the latest from oasis-tcs/sarif-spec. #1668
  • We are rolling out a feature in May 2023 that will disable Python dependency installation for new users of the CodeQL Action. This improves the speed of analysis while having only a very minor impact on results. #1676
  • We are improving the way that CodeQL bundles are tagged to make it possible to easily identify bundles by their CodeQL semantic version. #1682
    • As of CodeQL CLI 2.13.4, CodeQL bundles will be tagged using semantic versions, for example codeql-bundle-v2.13.4, instead of timestamps, like codeql-bundle-20230615.
    • This change does not affect the majority of workflows, and we will not be changing tags for existing bundle releases.
    • Some workflows with custom logic that depends on the specific format of the CodeQL bundle tag may need to be updated. For example, if your workflow matches CodeQL bundle tag names against a codeql-bundle-yyyymmdd pattern, you should update it to also recognize codeql-bundle-vx.y.z tags.
  • Remove the requirement for on.push and on.pull_request to trigger on the same branches. #1675

See the full CHANGELOG.md for more information.

Loading

CodeQL Bundle

24 May 16:01
@codeql-ci codeql-ci
codeql-bundle-20230524
1245696
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
CodeQL Bundle

Bundles CodeQL CLI v2.13.3

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.13.3:

Loading

v2.3.3

31 Oct 04:28
@aeisenberg aeisenberg
v2.3.3
29b1f65
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.3

CodeQL Action Changelog

2.3.3 - 04 May 2023

  • Update default CodeQL bundle version to 2.13.1. #1664
  • You can now configure CodeQL within your code scanning workflow by passing a config input to the init Action. See Using a custom configuration file for more information about configuring code scanning. #1590

See the full CHANGELOG.md for more information.

Loading

v2.3.2

31 Oct 04:28
@aeisenberg aeisenberg
v2.3.2
f3feb00
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.2

CodeQL Action Changelog

2.3.2 - 27 Apr 2023

No user facing changes.

See the full CHANGELOG.md for more information.

Loading

CodeQL Bundle

01 May 03:46
@codeql-ci codeql-ci
codeql-bundle-20230428
f31a31c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
CodeQL Bundle

Bundles CodeQL CLI v2.13.1

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.13.1:

Loading

v2.3.1

31 Oct 04:28
@aeisenberg aeisenberg
v2.3.1
8662eab
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.1

CodeQL Action Changelog

2.3.1 - 26 Apr 2023

No user facing changes.

See the full CHANGELOG.md for more information.

Loading