Skip to content

Merge main into releases/v4 #3371

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
henrymercer merged 39 commits into from
Dec 16, 2025
Merged

Merge main into releases/v4 #3371

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
39 commits
Select commit Hold shift + click to select a range
0ffebf7
Bump the npm-minor group with 5 updates
dependabot[bot] Dec 8, 2025
b73d396
Rebuild
github-actions[bot] Dec 8, 2025
44570be
Bump the actions-minor group across 1 directory with 2 updates
dependabot[bot] Dec 8, 2025
cd48547
Rebuild
github-actions[bot] Dec 8, 2025
7a55ffe
Determine CodeQL version from feature flags on GHEC-DR
henrymercer Dec 10, 2025
1fc7d37
Rename GHE_DOTCOM to GHEC_DR
henrymercer Dec 10, 2025
da50124
Update PR template to include GHEC-DR
henrymercer Dec 10, 2025
805b7e1
Clean up JavaMinimizeDependencyJars feature flag
nickrolfe Dec 11, 2025
4564f5e
Update changelog and version after v4.31.8
github-actions[bot] Dec 12, 2025
65bad62
Rebuild
github-actions[bot] Dec 12, 2025
4b675e4
Merge pull request #3356 from github/mergeback/v4.31.8-to-main-1b168cd3
oscarsj Dec 12, 2025
8e921c3
Return status report from `cleanupAndUploadDatabases`
henrymercer Dec 11, 2025
5d063dd
Populate database upload results telemetry
henrymercer Dec 11, 2025
2ac846d
Merge branch 'main' into dependabot/npm_and_yarn/npm-minor-38a2a793c5
henrymercer Dec 15, 2025
0264b51
Merge pull request #3348 from github/dependabot/npm_and_yarn/npm-mino…
henrymercer Dec 15, 2025
7e0b77e
Merge pull request #3349 from github/dependabot/github_actions/dot-gi…
henrymercer Dec 15, 2025
b1dea65
Make `postProcessAndUploadSarif` the default
mbg Nov 17, 2025
009fe6b
Remove `AnalyzeUseNewUpload` FF
mbg Nov 17, 2025
b30cb9a
Merge branch 'main' into mbg/ff/make-new-upload-default
mbg Dec 15, 2025
a539068
Bump ruby/setup-ruby
dependabot[bot] Dec 15, 2025
6dbc22c
Bump actions/download-artifact from 6 to 7 in /.github/workflows
dependabot[bot] Dec 15, 2025
034374e
Bump actions/upload-artifact from 5 to 6 in /.github/workflows
dependabot[bot] Dec 15, 2025
d6c1a79
Rebuild
github-actions[bot] Dec 15, 2025
7fd7db3
Rebuild
github-actions[bot] Dec 15, 2025
a682bbe
Merge pull request #3309 from github/mbg/ff/make-new-upload-default
mbg Dec 15, 2025
07cd437
Merge pull request #3366 from github/dependabot/github_actions/dot-gi…
mbg Dec 15, 2025
d0ad1da
Merge pull request #3364 from github/dependabot/github_actions/dot-gi…
mbg Dec 15, 2025
c2d4383
Merge branch 'main' into dependabot/github_actions/dot-github/workflo…
mbg Dec 15, 2025
b5e1a28
Merge pull request #3365 from github/dependabot/github_actions/dot-gi…
mbg Dec 16, 2025
a2ee53c
Use full names for GitHub variants
henrymercer Dec 16, 2025
c07cc0d
Merge pull request #3351 from github/henrymercer/ghec-dr-determine-to…
henrymercer Dec 16, 2025
0cb8633
Prefer `performance.now()`
henrymercer Dec 16, 2025
ae5de9a
Use `getErrorMessage` in log too
henrymercer Dec 16, 2025
19c7f96
Rename `isOverlayBase`
henrymercer Dec 16, 2025
e962687
Merge branch 'main' into henrymercer/database-upload-telemetry
henrymercer Dec 16, 2025
d29eddb
Extract version number to constant
nickrolfe Dec 16, 2025
5eb7519
Merge pull request #3358 from github/henrymercer/database-upload-tele…
henrymercer Dec 16, 2025
998798e
Merge pull request #3352 from github/nickrolfe/jar-min-ff-cleanup
nickrolfe Dec 16, 2025
1dc115f
Update changelog for v4.31.9
github-actions[bot] Dec 16, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/pull_request_template.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -34,7 +34,7 @@ Products:

Environments:

- **Dotcom** - Impacts CodeQL workflows on `github.com`.
- **Dotcom** - Impacts CodeQL workflows on `github.com` and/or GitHub Enterprise Cloud with Data Residency.
- **GHES** - Impacts CodeQL workflows on GitHub Enterprise Server.
- **Testing/None** - This change does not impact any CodeQL workflows in production.

Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/__bundle-zstd.yml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion .github/workflows/__config-export.yml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion .github/workflows/__diagnostics-export.yml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion .github/workflows/__export-file-baseline-information.yml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion .github/workflows/__job-run-uuid-sarif.yml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 3 additions & 3 deletions .github/workflows/__quality-queries.yml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion .github/workflows/__rubocop-multi-language.yml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion .github/workflows/debug-artifacts-failure-safe.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -83,7 +83,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Download all artifacts
uses: actions/download-artifact@v6
uses: actions/download-artifact@v7
- name: Check expected artifacts exist
run: |
LANGUAGES="cpp csharp go java javascript python"
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/debug-artifacts-safe.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -77,7 +77,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Download all artifacts
uses: actions/download-artifact@v6
uses: actions/download-artifact@v7
- name: Check expected artifacts exist
run: |
VERSIONS="stable-v2.20.3 default linked nightly-latest"
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/post-release-mergeback.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -142,7 +142,7 @@ jobs:
token: "${{ secrets.GITHUB_TOKEN }}"

- name: Generate token
uses: actions/create-github-app-token@v2.2.0
uses: actions/create-github-app-token@v2.2.1
id: app-token
with:
app-id: ${{ vars.AUTOMATION_APP_ID }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/rollback-release.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -137,7 +137,7 @@ jobs:
- name: Generate token
if: github.event_name == 'workflow_dispatch'
uses: actions/create-github-app-token@v2.2.0
uses: actions/create-github-app-token@v2.2.1
id: app-token
with:
app-id: ${{ vars.AUTOMATION_APP_ID }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/update-release-branch.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -93,7 +93,7 @@ jobs:
pull-requests: write # needed to create pull request
steps:
- name: Generate token
uses: actions/create-github-app-token@v2.2.0
uses: actions/create-github-app-token@v2.2.1
id: app-token
with:
app-id: ${{ vars.AUTOMATION_APP_ID }}
Expand Down
4 changes: 4 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,10 @@

See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.

## 4.31.9 - 16 Dec 2025

No user facing changes.

## 4.31.8 - 11 Dec 2025

- Update default CodeQL bundle version to 2.23.8. [#3354](https://github.com/github/codeql-action/pull/3354)
Expand Down
Loading
Loading