From 2bb209555a024d051f6271c8a846b402497f9445 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Thu, 30 Apr 2026 15:31:40 +0000 Subject: [PATCH 1/2] Update default bundle to codeql-bundle-v2.25.3 --- lib/analyze-action.js | 4 ++-- lib/autobuild-action.js | 4 ++-- lib/defaults.json | 8 ++++---- lib/init-action-post.js | 4 ++-- lib/init-action.js | 4 ++-- lib/setup-codeql-action.js | 4 ++-- lib/start-proxy-action.js | 4 ++-- lib/upload-lib.js | 4 ++-- lib/upload-sarif-action.js | 4 ++-- src/defaults.json | 8 ++++---- 10 files changed, 24 insertions(+), 24 deletions(-) diff --git a/lib/analyze-action.js b/lib/analyze-action.js index 372021fc29..e23671da39 100644 --- a/lib/analyze-action.js +++ b/lib/analyze-action.js @@ -107918,8 +107918,8 @@ var path6 = __toESM(require("path")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.2"; -var cliVersion = "2.25.2"; +var bundleVersion = "codeql-bundle-v2.25.3"; +var cliVersion = "2.25.3"; // src/overlay/index.ts var fs4 = __toESM(require("fs")); diff --git a/lib/autobuild-action.js b/lib/autobuild-action.js index 6825745a32..e60c541396 100644 --- a/lib/autobuild-action.js +++ b/lib/autobuild-action.js @@ -104405,8 +104405,8 @@ var path5 = __toESM(require("path")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.2"; -var cliVersion = "2.25.2"; +var bundleVersion = "codeql-bundle-v2.25.3"; +var cliVersion = "2.25.3"; // src/overlay/index.ts var fs3 = __toESM(require("fs")); diff --git a/lib/defaults.json b/lib/defaults.json index cd7499eb29..91936465e4 100644 --- a/lib/defaults.json +++ b/lib/defaults.json @@ -1,6 +1,6 @@ { - "bundleVersion": "codeql-bundle-v2.25.2", - "cliVersion": "2.25.2", - "priorBundleVersion": "codeql-bundle-v2.25.1", - "priorCliVersion": "2.25.1" + "bundleVersion": "codeql-bundle-v2.25.3", + "cliVersion": "2.25.3", + "priorBundleVersion": "codeql-bundle-v2.25.2", + "priorCliVersion": "2.25.2" } diff --git a/lib/init-action-post.js b/lib/init-action-post.js index e8dc72e0b5..187674e269 100644 --- a/lib/init-action-post.js +++ b/lib/init-action-post.js @@ -165837,8 +165837,8 @@ var path6 = __toESM(require("path")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.2"; -var cliVersion = "2.25.2"; +var bundleVersion = "codeql-bundle-v2.25.3"; +var cliVersion = "2.25.3"; // src/overlay/index.ts var fs4 = __toESM(require("fs")); diff --git a/lib/init-action.js b/lib/init-action.js index cb2a6bc9ff..2ca71475d5 100644 --- a/lib/init-action.js +++ b/lib/init-action.js @@ -105458,8 +105458,8 @@ var path7 = __toESM(require("path")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.2"; -var cliVersion = "2.25.2"; +var bundleVersion = "codeql-bundle-v2.25.3"; +var cliVersion = "2.25.3"; // src/overlay/index.ts var fs4 = __toESM(require("fs")); diff --git a/lib/setup-codeql-action.js b/lib/setup-codeql-action.js index a2699cb273..44c1520814 100644 --- a/lib/setup-codeql-action.js +++ b/lib/setup-codeql-action.js @@ -104246,8 +104246,8 @@ var path5 = __toESM(require("path")); var semver4 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.2"; -var cliVersion = "2.25.2"; +var bundleVersion = "codeql-bundle-v2.25.3"; +var cliVersion = "2.25.3"; // src/overlay/index.ts var fs4 = __toESM(require("fs")); diff --git a/lib/start-proxy-action.js b/lib/start-proxy-action.js index f218c32b93..39ef0e5ceb 100644 --- a/lib/start-proxy-action.js +++ b/lib/start-proxy-action.js @@ -121243,8 +121243,8 @@ var path = __toESM(require("path")); var semver4 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.2"; -var cliVersion = "2.25.2"; +var bundleVersion = "codeql-bundle-v2.25.3"; +var cliVersion = "2.25.3"; // src/git-utils.ts var core6 = __toESM(require_core()); diff --git a/lib/upload-lib.js b/lib/upload-lib.js index 0d9ffc35e3..f5a02a27e8 100644 --- a/lib/upload-lib.js +++ b/lib/upload-lib.js @@ -107526,8 +107526,8 @@ var fs5 = __toESM(require("fs")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.2"; -var cliVersion = "2.25.2"; +var bundleVersion = "codeql-bundle-v2.25.3"; +var cliVersion = "2.25.3"; // src/overlay/index.ts var fs4 = __toESM(require("fs")); diff --git a/lib/upload-sarif-action.js b/lib/upload-sarif-action.js index 02f6c1fb3f..ec89edd96b 100644 --- a/lib/upload-sarif-action.js +++ b/lib/upload-sarif-action.js @@ -107197,8 +107197,8 @@ var path5 = __toESM(require("path")); var semver4 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.2"; -var cliVersion = "2.25.2"; +var bundleVersion = "codeql-bundle-v2.25.3"; +var cliVersion = "2.25.3"; // src/overlay/index.ts var fs4 = __toESM(require("fs")); diff --git a/src/defaults.json b/src/defaults.json index cd7499eb29..91936465e4 100644 --- a/src/defaults.json +++ b/src/defaults.json @@ -1,6 +1,6 @@ { - "bundleVersion": "codeql-bundle-v2.25.2", - "cliVersion": "2.25.2", - "priorBundleVersion": "codeql-bundle-v2.25.1", - "priorCliVersion": "2.25.1" + "bundleVersion": "codeql-bundle-v2.25.3", + "cliVersion": "2.25.3", + "priorBundleVersion": "codeql-bundle-v2.25.2", + "priorCliVersion": "2.25.2" } From 719098349ea5beae8aa364bf9b71ff1c8d937df2 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Thu, 30 Apr 2026 15:31:49 +0000 Subject: [PATCH 2/2] Add changelog note --- CHANGELOG.md | 1 + 1 file changed, 1 insertion(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 75d1313371..1d536b9eec 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -7,6 +7,7 @@ See the [releases page](https://github.com/github/codeql-action/releases) for th - Configurations for private registries that use Cloudsmith or GCP OIDC are now accepted. [#3850](https://github.com/github/codeql-action/pull/3850) - Fixed a bug where two diagnostics produced within the same millisecond could overwrite each other on disk, causing one of them to be lost. [#3852](https://github.com/github/codeql-action/pull/3852) - _Upcoming breaking change_: Add a deprecation warning for customers using CodeQL version 2.19.3 and earlier. These versions of CodeQL were discontinued on 9 April 2026 alongside GitHub Enterprise Server 3.15, and will be unsupported by the next minor release of the CodeQL Action. [#3837](https://github.com/github/codeql-action/pull/3837) +- Update default CodeQL bundle version to [2.25.3](https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.3). [#3865](https://github.com/github/codeql-action/pull/3865) ## 4.35.2 - 15 Apr 2026