Skip to content

chore(deps): update dependency github/codeql-action to v2.23.0 #23

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 18, 2025
Merged

chore(deps): update dependency github/codeql-action to v2.23.0 #23

merged 1 commit into from
Sep 18, 2025

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Sep 18, 2025
edited
Loading

Coming soon: The Renovate bot (GitHub App) will be renamed to Mend. PRs from Renovate will soon appear from 'Mend'. Learn more here.

This PR contains the following updates:

Package Update Change
github/codeql-action minor v2.19.3 -> v2.23.0

Release Notes

github/codeql-action (github/codeql-action)

v2.23.0

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

Note that the only difference between v2 and v3 of the CodeQL Action is the node version they support, with v3 running on node 20 while we continue to release v2 to support running on node 16. For example 3.22.11 was the first v3 release and is functionally identical to 2.22.11. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

2.23.0 - 08 Jan 2024
  • We are rolling out a feature in January 2024 that will disable Python dependency installation by default for all users. This improves the speed of analysis while having only a very minor impact on results. You can override this behavior by setting CODEQL_ACTION_DISABLE_PYTHON_DEPENDENCY_INSTALLATION=false in your workflow, however we plan to remove this ability in future versions of the CodeQL Action. #​2031
  • The CodeQL Action now requires CodeQL version 2.11.6 or later. For more information, see the corresponding changelog entry for CodeQL Action version 2.22.7. #​2009

See the full CHANGELOG.md for more information.

v2.22.4

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

2.22.4 - 20 Oct 2023

  • Update default CodeQL bundle version to 2.15.1. #​1953
  • Users will begin to see warnings on Node.js 16 deprecation in their Actions logs on code scanning runs starting October 23, 2023.
    • All code scanning workflows should continue to succeed regardless of the warning.
    • The team at GitHub maintaining the CodeQL Action is aware of the deprecation timeline and actively working on creating another version of the CodeQL Action, v3, that will bump us to Node 20.
    • For more information, and to communicate with the maintaining team, please use this issue.

See the full CHANGELOG.md for more information.

v2.22.3

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

2.22.3 - 13 Oct 2023

  • Provide an authentication token when downloading the CodeQL Bundle from the API of a GitHub Enterprise Server instance. #​1945

See the full CHANGELOG.md for more information.

v2.22.2

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

2.22.2 - 12 Oct 2023

  • Update default CodeQL bundle version to 2.15.0. #​1938
  • Improve the log output when an error occurs in an invocation of the CodeQL CLI. #​1927

See the full CHANGELOG.md for more information.

v2.22.1

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

2.22.1 - 09 Oct 2023

  • Add a workaround for Python 3.12, which is not supported in CodeQL CLI version 2.14.6 or earlier. If you are running an analysis on Windows and using Python 3.12 or later, the CodeQL Action will switch to running Python 3.11. In this case, if Python 3.11 is not found, then the workflow will fail. #​1928

See the full CHANGELOG.md for more information.

v2.22.0

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

2.22.0 - 06 Oct 2023

  • The CodeQL Action now requires CodeQL version 2.10.5 or later. For more information, see the corresponding changelog entry for CodeQL Action version 2.21.8. #​1907
  • The CodeQL Action no longer runs ML-powered queries. For more information, including details on our investment in AI-powered security technology, see "CodeQL code scanning deprecates ML-powered alerts." #​1910
  • Fix a bug which prevented tracing of projects using Go 1.21 and above on Linux. #​1909

See the full CHANGELOG.md for more information.

v2.21.4: CodeQL Bundle v2.21.4

Compare Source

Bundles CodeQL CLI v2.21.4

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.21.4:

v2.21.3: CodeQL Bundle v2.21.3

Compare Source

Bundles CodeQL CLI v2.21.3

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.21.3:

v2.21.2

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

2.21.2 - 28 Jul 2023

  • Update default CodeQL bundle version to 2.14.1. #​1797
  • Avoid duplicating the analysis summary within the logs. #​1811

See the full CHANGELOG.md for more information.

v2.21.1: CodeQL Bundle v2.21.1

Compare Source

Bundles CodeQL CLI v2.21.1

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.21.1:

v2.21.0

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

2.21.0 - 19 Jul 2023
  • CodeQL Action now requires CodeQL CLI 2.9.4 or later. For more information, see the corresponding changelog entry for CodeQL Action version 2.20.4. #​1724

See the full CHANGELOG.md for more information.

v2.20.7: CodeQL Bundle v2.20.7

Compare Source

Bundles CodeQL CLI v2.20.7

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.20.7:

v2.20.6: CodeQL Bundle v2.20.6

Compare Source

Bundles CodeQL CLI v2.20.6

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.20.6:

v2.20.5: CodeQL Bundle v2.20.5

Compare Source

Bundles CodeQL CLI v2.20.5

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.20.5:

v2.20.4: CodeQL Bundle v2.20.4

Compare Source

Bundles CodeQL CLI v2.20.4

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.20.4:

v2.20.3: CodeQL Bundle v2.20.3

Compare Source

Bundles CodeQL CLI v2.20.3

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.20.3:

v2.20.2: CodeQL Bundle v2.20.2

Compare Source

Bundles CodeQL CLI v2.20.2

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.20.2:

v2.20.1

Compare Source

CodeQL Action Changelog
2.20.1 - 21 Jun 2023
  • Update default CodeQL bundle version to 2.13.4. #​1721
  • Experimental: add a new resolve-environment action which attempts to infer a configuration for the build environment that is required to build a given project. Do not use this in production as it is part of an internal experiment and subject to change at any time.

See the full CHANGELOG.md for more information.

v2.20.0

Compare Source

CodeQL Action Changelog
2.20.0 - 13 Jun 2023
  • Bump the version of the Action to 2.20.0. This ensures that users who received a Dependabot upgrade to cdcdbb5, which was mistakenly marked as Action version 2.13.4, continue to receive updates to the CodeQL Action. Full details in #​1729

See the full CHANGELOG.md for more information.

v2.19.4: CodeQL Bundle v2.19.4

Compare Source

Bundles CodeQL CLI v2.19.4

Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.19.4:

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the automated label Sep 18, 2025
@renovate renovate bot force-pushed the renovate/github-codeql-action-2.x branch from abf267f to ebc9219 Compare September 18, 2025 20:52
@jcogilvie jcogilvie merged commit 9dbfddb into main Sep 18, 2025
12 checks passed
@jcogilvie jcogilvie deleted the renovate/github-codeql-action-2.x branch September 18, 2025 21:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jcogilvie jcogilvie jcogilvie approved these changes

Assignees

No one assigned

Labels

automated

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jcogilvie