Skip to content

ci(codeql): align codeql-action steps to v4.37.1#41456

Merged
ggazzo merged 1 commit into
developfrom
fix/codeql-action-version-mismatch
Jul 17, 2026
Merged

ci(codeql): align codeql-action steps to v4.37.1#41456
ggazzo merged 1 commit into
developfrom
fix/codeql-action-version-mismatch

Conversation

@ggazzo

@ggazzo ggazzo commented Jul 17, 2026

Copy link
Copy Markdown
Member

Problem

Every CodeQL run on develop fails at Autobuild:

##[error]We were unable to automatically build your code. ... Loaded a configuration file for version '4.36.2', but running version '4.37.1'

Cause

codeql-analysis.yml had mismatched pins — autobuild was bumped to v4.37.1 but init and analyze stayed on v4.36.2. init writes the config for 4.36.2, then autobuild runs 4.37.1 and rejects it.

Fix

Align all three steps to v4.37.1 (7188fc363630916deb702c7fdcf4e481b751f97a).

Review in cubic

Summary by CodeRabbit

  • Chores
    • Updated the security scanning workflow to use the latest CodeQL Action version.
    • No changes to application functionality or workflow behavior.

init and analyze were pinned to v4.36.2 while autobuild was bumped to
v4.37.1, causing 'Loaded a configuration file for version 4.36.2, but
running version 4.37.1' and failing every CodeQL run on develop.
@ggazzo
ggazzo requested a review from a team as a code owner July 17, 2026 19:41
@dionisio-bot

dionisio-bot Bot commented Jul 17, 2026

Copy link
Copy Markdown
Contributor

Looks like this PR is not ready to merge, because of the following issues:

  • This PR is missing the 'stat: QA assured' label

Please fix the issues and try again

If you have any trouble, please check the PR guidelines

@changeset-bot

changeset-bot Bot commented Jul 17, 2026

Copy link
Copy Markdown

⚠️ No Changeset found

Latest commit: 764d562

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

@coderabbitai

coderabbitai Bot commented Jul 17, 2026

Copy link
Copy Markdown
Contributor

Review Change Stack

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info
⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: bfbddfe7-198b-4e74-a46d-a560088ef73f

📥 Commits

Reviewing files that changed from the base of the PR and between f8d6b46 and 764d562.

📒 Files selected for processing (1)
  • .github/workflows/codeql-analysis.yml
📜 Recent review details
⏰ Context from checks skipped due to timeout. (3)
  • GitHub Check: cubic · AI code reviewer
  • GitHub Check: Hacktron Security Check
  • GitHub Check: CodeQL-Build
🔇 Additional comments (1)
.github/workflows/codeql-analysis.yml (1)

35-35: LGTM!

Also applies to: 57-57


Walkthrough

The CodeQL workflow updates its initialization and analysis actions from v4.36.2 to v4.37.1 without changing workflow structure or execution settings.

Changes

CodeQL workflow update

Layer / File(s) Summary
Upgrade CodeQL scanning actions
.github/workflows/codeql-analysis.yml
The CodeQL initialization and analysis steps now reference v4.37.1 instead of v4.36.2.

Estimated code review effort: 1 (Trivial) | ~2 minutes

Suggested labels: type: chore

Suggested reviewers: yasnagat

🚥 Pre-merge checks | ✅ 5
✅ Passed checks (5 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title clearly reflects the main change: aligning CodeQL action steps to v4.37.1.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check ✅ Passed Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check ✅ Passed Check skipped because no linked issues were found for this pull request.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands.

@ggazzo ggazzo added this to the 8.7.0 milestone Jul 17, 2026
@ggazzo
ggazzo merged commit a3afae7 into develop Jul 17, 2026
8 of 10 checks passed
@ggazzo
ggazzo deleted the fix/codeql-action-version-mismatch branch July 17, 2026 19:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant