js-x-ray
js-x-ray copied to clipboard
chore(deps): bump the github-actions group with 3 updates
Bumps the github-actions group with 3 updates: github/codeql-action, actions/setup-node and actions/upload-artifact.
Updates github/codeql-action
from 3.23.2 to 3.24.6
Changelog
Sourced from github/codeql-action's changelog.
CodeQL Action Changelog
See the releases page for the relevant changes to the CodeQL CLI and language packs.
Note that the only difference between
v2
andv3
of the CodeQL Action is the node version they support, withv3
running on node 20 while we continue to releasev2
to support running on node 16. For example3.22.11
was the firstv3
release and is functionally identical to2.22.11
. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.[UNRELEASED]
No user facing changes.
3.24.6 - 29 Feb 2024
No user facing changes.
3.24.5 - 23 Feb 2024
- Update default CodeQL bundle version to 2.16.3. #2156
3.24.4 - 21 Feb 2024
- Fix an issue where an existing, but empty,
/sys/fs/cgroup/cpuset.cpus
file always resulted in a single-threaded run. #21513.24.3 - 15 Feb 2024
- Fix an issue where the CodeQL Action would fail to load a configuration specified by the
config
input to theinit
Action. #21473.24.2 - 15 Feb 2024
- Enable improved multi-threaded performance on larger runners for GitHub Enterprise Server users. This feature is already available to GitHub.com users. #2141
3.24.1 - 13 Feb 2024
- Update default CodeQL bundle version to 2.16.2. #2124
- The CodeQL action no longer fails if it can't write to the telemetry api endpoint. #2121
3.24.0 - 02 Feb 2024
- CodeQL Python analysis will no longer install dependencies on GitHub Enterprise Server, as is already the case for GitHub.com. See release notes for 3.23.0 for more details. #2106
3.23.2 - 26 Jan 2024
- On Linux, the maximum possible value for the
--threads
option now respects the CPU count as specified incgroup
files to more accurately reflect the number of available cores when running in containers. #2083- Update default CodeQL bundle version to 2.16.1. #2096
3.23.1 - 17 Jan 2024
- Update default CodeQL bundle version to 2.16.0. #2073
- Change the retention period for uploaded debug artifacts to 7 days. Previously, this was whatever the repository default was. #2079
3.23.0 - 08 Jan 2024
... (truncated)
Commits
8a470fd
Merge pull request #2176 from github/update-v3.24.6-158d0780dd59eafb
Update changelog for v3.24.6158d078
Merge pull request #2175 from github/henrymercer/fix-languages-init-success2307ff5
Addlanguages
andbuild_mode
toinit
success
status reportccd3f02
Merge pull request #2173 from github/henrymercer/mark-third-party-limits-erro...c091725
Refactoring: ConvertActionName
to enume12a8cc
UseisFirstPartyAnalysis
for a stronger check888ab31
Mark third-party SARIF limits errors as configuration errorsbd56a05
RenameInvalidRequestError
toInvalidSarifUploadError
7bde906
Merge pull request #2172 from github/henrymercer/fix-readme-typos- Additional commits viewable in compare view
Updates actions/setup-node
from 4.0.1 to 4.0.2
Release notes
Sourced from actions/setup-node's releases.
v4.0.2
What's Changed
- Add support for
volta.extends
by@​ThisIsManta
in actions/setup-node#921- Add support for arm64 Windows by
@​dmitry-shibanov
in actions/setup-node#927New Contributors
@​ThisIsManta
made their first contribution in actions/setup-node#921Full Changelog: https://github.com/actions/setup-node/compare/v4.0.1...v4.0.2
Commits
60edb5d
Add support for arm64 Windows (#927)d86ebcd
Add support forvolta.extends
(#921)- See full diff in compare view
Updates actions/upload-artifact
from 4.3.0 to 4.3.1
Release notes
Sourced from actions/upload-artifact's releases.
v4.3.1
- Bump
@​actions/artifacts
to latest version to include updated GHES host check
Commits
5d5d22a
Merge pull request #515 from actions/eggyhead/update-artifact-v2.1.1f1e993d
update artifact license4881bfd
updating dist:a30777e
@​eggyhead
3a80482
Merge pull request #511 from actions/robherley/migration-docs-typo9d63e3f
Merge branch 'main' into robherley/migration-docs-typodfa1ab2
fix typo with v3 artifact downloads in migration guided00351b
Merge pull request #509 from markmssd/patch-1707f5a7
Update limitation of10
artifacts upload to500
- See full diff in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency -
@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) -
@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) -
@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) -
@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency -
@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions