Skip to content

Releases: github/codeql-action

v4.36.1

02 Jun 10:09
@codeql-action-automation codeql-action-automation
Immutable release. Only release title and notes can be modified.
v4.36.1
87557b9
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.36.1

No user facing changes.

Loading

v3.36.1

02 Jun 10:37
@codeql-action-automation codeql-action-automation
Immutable release. Only release title and notes can be modified.
v3.36.1
d77b13a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v3.36.1

No user facing changes.

Loading

v4.36.0

22 May 11:07
@codeql-action-automation codeql-action-automation
Immutable release. Only release title and notes can be modified.
v4.36.0
7211b7c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.36.0
  • Breaking change: Bump the minimum required CodeQL bundle version to 2.19.4. #3894
  • Add support for SHA-256 Git object IDs. #3893
  • Update default CodeQL bundle version to 2.25.5. #3926
Loading

v3.36.0

22 May 11:28
@codeql-action-automation codeql-action-automation
Immutable release. Only release title and notes can be modified.
v3.36.0
03e4368
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v3.36.0
  • Breaking change: Bump the minimum required CodeQL bundle version to 2.19.4. #3894
  • Add support for SHA-256 Git object IDs. #3893
  • Update default CodeQL bundle version to 2.25.5. #3926
Loading

CodeQL Bundle v2.25.5

22 May 10:16
@codeql-ci codeql-ci
Immutable release. Only release title and notes can be modified.
codeql-bundle-v2.25.5
8449852
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
CodeQL Bundle v2.25.5 Latest
Latest

Bundles CodeQL CLI v2.25.5

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.25.5:

Assets 23

v4.35.5

15 May 11:24
@codeql-action-automation codeql-action-automation
Immutable release. Only release title and notes can be modified.
v4.35.5
9e0d7b8
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.35.5
  • We have improved how the JavaScript bundles for the CodeQL Action are generated to avoid duplication across bundles and reduce the size of the repository by around 70%. This should have no effect on the runtime behaviour of the CodeQL Action. #3899
  • For performance and accuracy reasons, improved incremental analysis will now only be enabled on a pull request when diff-informed analysis is also enabled for that run. If diff-informed analysis is unavailable (for example, because the PR diff ranges could not be computed), the action will fall back to a full analysis. #3791
  • If multiple inputs are provided for the GitHub-internal analysis-kinds input, only code-scanning will be enabled. The analysis-kinds input is experimental, for GitHub-internal use only, and may change without notice at any time. #3892
  • Added an experimental change which, when running a Code Scanning analysis for a PR with improved incremental analysis enabled, prefers CodeQL CLI versions that have a cached overlay-base database for the configured languages. This speeds up analysis for a repository when there is not yet a cached overlay-base database for the latest CLI version. We expect to roll this change out to everyone in May. #3880
Loading

v3.35.5

15 May 12:42
@codeql-action-automation codeql-action-automation
Immutable release. Only release title and notes can be modified.
v3.35.5
458d36d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v3.35.5
  • We have improved how the JavaScript bundles for the CodeQL Action are generated to avoid duplication across bundles and reduce the size of the repository by around 70%. This should have no effect on the runtime behaviour of the CodeQL Action. #3899
  • For performance and accuracy reasons, improved incremental analysis will now only be enabled on a pull request when diff-informed analysis is also enabled for that run. If diff-informed analysis is unavailable (for example, because the PR diff ranges could not be computed), the action will fall back to a full analysis. #3791
  • If multiple inputs are provided for the GitHub-internal analysis-kinds input, only code-scanning will be enabled. The analysis-kinds input is experimental, for GitHub-internal use only, and may change without notice at any time. #3892
  • Added an experimental change which, when running a Code Scanning analysis for a PR with improved incremental analysis enabled, prefers CodeQL CLI versions that have a cached overlay-base database for the configured languages. This speeds up analysis for a repository when there is not yet a cached overlay-base database for the latest CLI version. We expect to roll this change out to everyone in May. #3880
Loading

v3.35.4

08 May 06:21
@codeql-action-automation codeql-action-automation
Immutable release. Only release title and notes can be modified.
v3.35.4
7fd177f
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v3.35.4
  • Update default CodeQL bundle version to 2.25.4. #3881
Loading

v4.35.4

07 May 15:54
@codeql-action-automation codeql-action-automation
Immutable release. Only release title and notes can be modified.
v4.35.4
68bde55
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v4.35.4
  • Update default CodeQL bundle version to 2.25.4. #3881
Loading

CodeQL Bundle v2.25.4

07 May 12:47
@codeql-ci codeql-ci
Immutable release. Only release title and notes can be modified.
codeql-bundle-v2.25.4
bc0b696
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
CodeQL Bundle v2.25.4

Bundles CodeQL CLI v2.25.4

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.25.4:

Loading