Skip to content

build(deps): bump github/codeql-action from cb5810848de15b695cd9ef3b559dd178c43c7df3 to 1.0.1#16885

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/github/codeql-action-ece2addcff6617641ef7caf0016fb0fd4c2a9962
Closed

build(deps): bump github/codeql-action from cb5810848de15b695cd9ef3b559dd178c43c7df3 to 1.0.1#16885
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/github_actions/github/codeql-action-ece2addcff6617641ef7caf0016fb0fd4c2a9962

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 8, 2021

Bumps github/codeql-action from cb5810848de15b695cd9ef3b559dd178c43c7df3 to 1.0.1. This release includes the previously tagged commit.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action and CodeQL Runner Changelog

[UNRELEASED]

1.0.1 - 07 Jun 2021

  • Pass the --sarif-group-rules-by-pack argument to CodeQL CLI invocations that generate SARIF. This means the SARIF rule object for each query will now be found underneath its corresponding query pack in runs[].tool.extensions. #546
  • Output the location of CodeQL databases created in the analyze step. #543

1.0.0 - 31 May 2021

  • Add this changelog file. #507
  • Improve grouping of analysis logs. Add a new log group containing a summary of metrics and diagnostics, if they were produced by CodeQL builtin queries. #515
  • Add metrics and diagnostics summaries from custom query suites to the analysis summary log group. #532
Commits
  • ece2add Merge pull request #553 from github/aeisenberg/no-quotes
  • 74764ac Remove quotes around $DRAFT argument
  • 675843d Merge pull request #549 from github/update-v1.0.1-242fd828
  • 511fe43 Empty commit to trigger CI.
  • 68d7c5f 1.0.1
  • 242fd82 Merge pull request #547 from github/retrying-fix
  • 48efe6e Merge branch 'main' into retrying-fix
  • f8c65b7 Fix stub in tests.
  • 1644ade Add --sarif-group-rules-by-pack flag
  • ddb83a4 Cleanup CodeQL DBs and output their location for later steps
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump github/codeql-action
b894b99 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from cb5810848de15b695cd9ef3b559dd178c43c7df3 to 1.0.1. This release includes the previously tagged commit.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@cb58108...ece2add)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code labels Jun 8, 2021
@phlax phlax self-assigned this Jun 8, 2021
@phlax
Copy link
Member

phlax commented Jun 9, 2021

aggregated in #16896

@phlax phlax closed this Jun 9, 2021
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jun 9, 2021

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/github_actions/github/codeql-action-ece2addcff6617641ef7caf0016fb0fd4c2a9962 branch June 9, 2021 10:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@phlax phlax

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update Github_actions code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@phlax