Skip to content

chore(deps): Update dependencies for github #2090

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): Update dependencies for github #2090

wants to merge 1 commit into from

Conversation

renovate-bot
Copy link
Contributor

@renovate-bot renovate-bot commented Dec 3, 2024
edited
Loading

This PR contains the following updates:

Package Type Update Change
actions/setup-java action minor v4.5.0 -> v4.7.1
actions/upload-artifact action minor v4.4.3 -> v4.6.2
github/codeql-action action minor v3.27.5 -> v3.28.18
github/codeql-action action patch v3.28.15 -> v3.28.18
google-github-actions/auth action patch v2.1.7 -> v2.1.10
google-github-actions/get-secretmanager-secrets action patch v2.2.2 -> v2.2.3
graalvm/setup-graalvm action minor v1.2.6 -> v1.3.3
ossf/scorecard-action action patch v2.4.0 -> v2.4.1

Release Notes

actions/setup-java (actions/setup-java)

v4.7.1

Compare Source

What's Changed
Documentation changes
Dependency updates:

Full Changelog: actions/setup-java@v4...v4.7.1

v4.7.0

Compare Source

What's Changed

New Contributors

Full Changelog: actions/setup-java@v4...v4.7.0

v4.6.0

Compare Source

What's Changed

Add-ons:

 - name: Checkout
   uses: actions/checkout@v4
 - name: Setup-java
   uses: actions/setup-java@v4
   with:
     distribution: ‘jetbrains’
     java-version: '21'

Bug fixes:

New Contributors

Full Changelog: actions/setup-java@v4...v4.6.0

actions/upload-artifact (actions/upload-artifact)

v4.6.2

Compare Source

What's Changed
New Contributors

Full Changelog: actions/upload-artifact@v4...v4.6.2

v4.6.1

Compare Source

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.6.1

v4.6.0

Compare Source

What's Changed

Full Changelog: actions/upload-artifact@v4...v4.6.0

v4.5.0

Compare Source

What's Changed
New Contributors

Full Changelog: actions/upload-artifact@v4.4.3...v4.5.0

github/codeql-action (github/codeql-action)

v3.28.18

Compare Source

v3.28.17

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.17 - 02 May 2025
  • Update default CodeQL bundle version to 2.21.2. #​2872

See the full CHANGELOG.md for more information.

v3.28.16

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.16 - 23 Apr 2025
  • Update default CodeQL bundle version to 2.21.1. #​2863

See the full CHANGELOG.md for more information.

v3.28.15

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.15 - 07 Apr 2025
  • Fix bug where the action would fail if it tried to produce a debug artifact with more than 65535 files. #​2842

See the full CHANGELOG.md for more information.

v3.28.14

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.14 - 07 Apr 2025
  • Update default CodeQL bundle version to 2.21.0. #​2838

See the full CHANGELOG.md for more information.

v3.28.13

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.13 - 24 Mar 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.12

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.12 - 19 Mar 2025
  • Dependency caching should now cache more dependencies for Java build-mode: none extractions. This should speed up workflows and avoid inconsistent alerts in some cases.
  • Update default CodeQL bundle version to 2.20.7. #​2810

See the full CHANGELOG.md for more information.

v3.28.11

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.11 - 07 Mar 2025
  • Update default CodeQL bundle version to 2.20.6. #​2793

See the full CHANGELOG.md for more information.

v3.28.10

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.10 - 21 Feb 2025
  • Update default CodeQL bundle version to 2.20.5. #​2772
  • Address an issue where the CodeQL Bundle would occasionally fail to decompress on macOS. #​2768

See the full CHANGELOG.md for more information.

v3.28.9

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.9 - 07 Feb 2025
  • Update default CodeQL bundle version to 2.20.4. #​2753

See the full CHANGELOG.md for more information.

v3.28.8

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.8 - 29 Jan 2025
  • Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. #​2744

See the full CHANGELOG.md for more information.

v3.28.7

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.7 - 29 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.6

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.6 - 27 Jan 2025
  • Re-enable debug artifact upload for CLI versions 2.20.3 or greater. #​2726

See the full CHANGELOG.md for more information.

v3.28.5

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.5 - 24 Jan 2025

  • Update default CodeQL bundle version to 2.20.3. #​2717

See the full CHANGELOG.md for more information.

v3.28.4

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.4 - 23 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.3

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.3 - 22 Jan 2025
  • Update default CodeQL bundle version to 2.20.2. #​2707
  • Fix an issue downloading the CodeQL Bundle from a GitHub Enterprise Server instance which occurred when the CodeQL Bundle had been synced to the instance using the CodeQL Action sync tool and the Actions runner did not have Zstandard installed. #​2710
  • Uploading debug artifacts for CodeQL analysis is temporarily disabled. #​2712

See the full CHANGELOG.md for more information.

v3.28.2

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.2 - 21 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.1

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.1 - 10 Jan 2025
  • CodeQL Action v2 is now deprecated, and is no longer updated or supported. For better performance, improved security, and new features, upgrade to v3. For more information, see this changelog post. #​2677
  • Update default CodeQL bundle version to 2.20.1. #​2678

See the full CHANGELOG.md for more information.

v3.28.0

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.28.0 - 20 Dec 2024
  • Bump the minimum CodeQL bundle version to 2.15.5. #​2655
  • Don't fail in the unusual case that a file is on the search path. #​2660.

See the full CHANGELOG.md for more information.

v3.27.9

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.9 - 12 Dec 2024

No user facing changes.

See the full CHANGELOG.md for more information.

v3.27.8

Compare Source

v3.27.7

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.7 - 10 Dec 2024

  • We are rolling out a change in December 2024 that will extract the CodeQL bundle directly to the toolcache to improve performance. #​2631
  • Update default CodeQL bundle version to 2.20.0. #​2636

See the full CHANGELOG.md for more information.

v3.27.6

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

3.27.6 - 03 Dec 2024
  • Update default CodeQL bundle version to 2.19.4. #​2626

See the full CHANGELOG.md for more information.

google-github-actions/auth (google-github-actions/auth)

v2.1.10

Compare Source

What's Changed

Full Changelog: google-github-actions/auth@v2.1.9...v2.1.10

v2.1.9

Compare Source

What's Changed

Full Changelog: google-github-actions/auth@v2.1.8...v2.1.9

v2.1.8

Compare Source

What's Changed

New Contributors

Full Changelog: google-github-actions/auth@v2...v2.1.8

google-github-actions/get-secretmanager-secrets (google-github-actions/get-secretmanager-secrets)

v2.2.3

Compare Source

What's Changed

Full Changelog: google-github-actions/get-secretmanager-secrets@v2...v2.2.3

graalvm/setup-graalvm (graalvm/setup-graalvm)

v1.3.3

Compare Source

What's Changed

Full Changelog: graalvm/setup-graalvm@v1.3.2...v1.3.3

v1.3.2

Compare Source

What's Changed

Full Changelog: graalvm/setup-graalvm@v1.3.1...v1.3.2

v1.3.1

Compare Source

What's Changed

Full Changelog: graalvm/setup-graalvm@v1.3.0...v1.3.1

v1.3.0

Compare Source

What's Changed

Full Changelog: graalvm/setup-graalvm@v1.2.8...v1.3.0

v1.2.8

Compare Source

What's Changed

New Contributors

Full Changelog: graalvm/setup-graalvm@v1.2.6...v1.2.8

v1.2.7

Compare Source

ossf/scorecard-action (ossf/scorecard-action)

v2.4.1

Compare Source

What's Changed

Docs

New Contributors

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate-bot renovate-bot requested a review from a team as a code owner December 3, 2024 13:19
@renovate-bot renovate-bot changed the title chore(deps): Update github/codeql-action action to v3.27.6 chore(deps): Update github/codeql-action action to v3.27.7 Dec 10, 2024
@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch 5 times, most recently from 8c2986e to 0a72144 Compare December 12, 2024 22:42
@renovate-bot renovate-bot changed the title chore(deps): Update github/codeql-action action to v3.27.7 chore(deps): Update github/codeql-action action to v3.27.8 Dec 12, 2024
@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from 0a72144 to f3e4e20 Compare December 13, 2024 01:44
@renovate-bot renovate-bot changed the title chore(deps): Update github/codeql-action action to v3.27.8 chore(deps): Update github/codeql-action action to v3.27.9 Dec 13, 2024
@renovate-bot renovate-bot changed the title chore(deps): Update github/codeql-action action to v3.27.9 chore(deps): Update dependencies for github Dec 17, 2024
@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch 3 times, most recently from 25b2a4f to 1595102 Compare December 20, 2024 22:31
@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch 7 times, most recently from 3ca1987 to 4ea6dbb Compare January 16, 2025 18:57
@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch 8 times, most recently from e919824 to 817b2f1 Compare January 23, 2025 19:31
@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from 3a37e6d to dd55b3c Compare April 23, 2025 14:48
@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch 8 times, most recently from db70e57 to 66b67f7 Compare May 1, 2025 18:06
@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from 66b67f7 to 8de8447 Compare May 2, 2025 13:10
@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch 2 times, most recently from 207ce62 to e5b7044 Compare May 12, 2025 19:16
@dpebot
Copy link
Collaborator

dpebot commented May 12, 2025

/gcbrun

@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from e5b7044 to d569a3c Compare May 16, 2025 14:42
@dpebot
Copy link
Collaborator

dpebot commented May 16, 2025

/gcbrun

@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from d569a3c to fc7398a Compare May 20, 2025 20:30
@dpebot
Copy link
Collaborator

dpebot commented May 20, 2025

/gcbrun

@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from fc7398a to e01b69d Compare May 20, 2025 22:22
@dpebot
Copy link
Collaborator

dpebot commented May 20, 2025

/gcbrun

@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from e01b69d to e2575f0 Compare May 21, 2025 13:49
@dpebot
Copy link
Collaborator

dpebot commented May 21, 2025

/gcbrun

@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from e2575f0 to 0045117 Compare May 21, 2025 15:47
@dpebot
Copy link
Collaborator

dpebot commented May 21, 2025

/gcbrun

@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from 0045117 to b5d2b7d Compare May 21, 2025 17:36
@dpebot
Copy link
Collaborator

dpebot commented May 21, 2025

/gcbrun

@renovate-bot renovate-bot force-pushed the renovate/dependencies-for-github branch from b5d2b7d to f7a348a Compare May 21, 2025 17:43
@dpebot
Copy link
Collaborator

dpebot commented May 21, 2025

/gcbrun

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@hessjcg hessjcg

Labels
kokoro:force-run Add this label to force Kokoro to re-run the tests.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@renovate-bot @dpebot @jackwotherspoon @hessjcg