Skip to content

Merge releases/v4 into releases/v3 #3314

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 26 commits into from
Nov 19, 2025
+6,132 −5,893
Merged

Merge releases/v4 into releases/v3 #3314

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
26 commits
Select commit Hold shift + click to select a range
5091e42
Overlay: Remove repository owner restriction
kaspersv Nov 13, 2025
497c7f6
Update changelog and version after v4.31.3
github-actions[bot] Nov 13, 2025
246edb9
Rebuild
github-actions[bot] Nov 13, 2025
86b7d4f
Merge pull request #3294 from github/mergeback/v4.31.3-to-main-014f16e7
mbg Nov 13, 2025
85f1517
Merge pull request #3285 from github/kaspersv/remove-overlay-org-rest…
kaspersv Nov 14, 2025
b9620e1
Bump js-yaml from 4.1.0 to 4.1.1
dependabot[bot] Nov 15, 2025
8c254d0
Rebuild
github-actions[bot] Nov 15, 2025
c1a2b73
Merge pull request #3301 from github/dependabot/npm_and_yarn/js-yaml-…
mbg Nov 16, 2025
ed3a013
Change v3 deprecation message to warning.
mario-campos Nov 17, 2025
023fd08
Add CHANGELOG.md entry for "v3 deprecation" to warning change.
mario-campos Nov 17, 2025
fc329e3
Revert "Add CHANGELOG.md entry for "v3 deprecation" to warning change."
mario-campos Nov 17, 2025
c418a0f
Bump ruby/setup-ruby
dependabot[bot] Nov 17, 2025
e546fff
Rebuild
github-actions[bot] Nov 17, 2025
07eae64
Merge pull request #3303 from github/mario-campos/v3-core-warning
mario-campos Nov 17, 2025
7bcdb4b
Add additional options to PR template and clarify some
mbg Nov 17, 2025
ffa63f0
Merge pull request #3307 from github/dependabot/github_actions/dot-gi…
mbg Nov 17, 2025
de12435
Merge pull request #3308 from github/mbg/pr-template/nov25
mbg Nov 18, 2025
528362a
Bump `glob` to at least `11.1.0`
mbg Nov 18, 2025
70434f6
Merge pull request #3311 from github/mbg/deps/bump-glob
mbg Nov 18, 2025
c9cb6f9
Update changelog for v4.31.4
github-actions[bot] Nov 18, 2025
e12f017
Merge pull request #3312 from github/update-v4.31.4-70434f6dd
mbg Nov 18, 2025
e3cb862
Revert "Update version and changelog for v3.31.3"
github-actions[bot] Nov 18, 2025
7ab96a0
Revert "Rebuild"
github-actions[bot] Nov 18, 2025
1f1c162
Merge remote-tracking branch 'origin/releases/v4' into backport-v3.31…
github-actions[bot] Nov 18, 2025
f58938a
Update version and changelog for v3.31.4
github-actions[bot] Nov 18, 2025
9031cd9
Rebuild
github-actions[bot] Nov 18, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
34 changes: 27 additions & 7 deletions .github/pull_request_template.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,14 +18,25 @@ For internal use only. Please select the risk level of this change:

#### Which use cases does this change impact?

<!-- Delete options that don't apply. -->
<!-- Delete options that don't apply. If in doubt, do not delete an option. -->

Workflow types:

- **Advanced setup** - Impacts users who have custom CodeQL workflows.
- **Managed** - Impacts users with `dynamic` workflows (Default Setup, CCR, ...).

Products:

- **Code Scanning** - The changes impact analyses when `analysis-kinds: code-scanning`.
- **Code Quality** - The changes impact analyses when `analysis-kinds: code-quality`.
- **CCR** - The changes impact analyses for Copilot Code Reviews.
- **Third-party analyses** - The changes affect the `upload-sarif` action.

Environments:

- **Advanced setup** - Impacts users who have custom workflows.
- **Default setup** - Impacts users who use default setup.
- **Code Scanning** - Impacts Code Scanning (i.e. `analysis-kinds: code-scanning`).
- **Code Quality** - Impacts Code Quality (i.e. `analysis-kinds: code-quality`).
- **Third-party analyses** - Impacts third-party analyses (i.e. `upload-sarif`).
- **GHES** - Impacts GitHub Enterprise Server.
- **Dotcom** - Impacts CodeQL workflows on `github.com`.
- **GHES** - Impacts CodeQL workflows on GitHub Enterprise Server.
- **Testing/None** - This change does not impact any CodeQL workflows in production.

#### How did/will you validate this change?

Expand Down Expand Up @@ -54,6 +65,15 @@ For internal use only. Please select the risk level of this change:
- **Alerts** - New or existing monitors will trip if something goes wrong with this change.
- **Other** - Please provide details.

#### Are there any special considerations for merging or releasing this change?

<!--
Consider whether this change depends on a different change in another repository that should be released first.
-->

- **No special considerations** - This change can be merged at any time.
- **Special considerations** - This change should only be merged once certain preconditions are met. Please provide details of those or link to this PR from an internal issue.

### Merge / deployment checklist

- Confirm this change is backwards compatible with existing workflows.
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/__rubocop-multi-language.yml
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

4 changes: 4 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,10 @@

See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.

## 3.31.4 - 18 Nov 2025

No user facing changes.

## 3.31.3 - 13 Nov 2025

- CodeQL Action v3 will be deprecated in December 2026. The Action now logs a warning for customers who are running v3 but could be running v4. For more information, see [Upcoming deprecation of CodeQL Action v3](https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/).
Expand Down
Loading
Loading