chore(deps): bump the github-actions group across 1 directory with 3 updates by dependabot[bot] · Pull Request #667 · robfrank/linklift

dependabot · 2026-02-26T13:56:07Z

Bumps the github-actions group with 3 updates in the / directory: github/codeql-action, anthropics/claude-code-action and updatecli/updatecli-action.

Updates github/codeql-action from 4.32.1 to 4.32.4

Release notes

Sourced from github/codeql-action's releases.

v4.32.4

Update default CodeQL bundle version to 2.24.2. #3493

Added an experimental change which improves how certificates are generated for the authentication proxy that is used by the CodeQL Action in Default Setup when private package registries are configured. This is expected to generate more widely compatible certificates and should have no impact on analyses which are working correctly already. We expect to roll this change out to everyone in February. #3473

When the CodeQL Action is run with debugging enabled in Default Setup and private package registries are configured, the "Setup proxy for registries" step will output additional diagnostic information that can be used for troubleshooting. #3486

Added a setting which allows the CodeQL Action to enable network debugging for Java programs. This will help GitHub staff support customers with troubleshooting issues in GitHub-managed CodeQL workflows, such as Default Setup. This setting can only be enabled by GitHub staff. #3485

Added a setting which enables GitHub-managed workflows, such as Default Setup, to use a nightly CodeQL CLI release instead of the latest, stable release that is used by default. This will help GitHub staff support customers whose analyses for a given repository or organization require early access to a change in an upcoming CodeQL CLI release. This setting can only be enabled by GitHub staff. #3484

v4.32.3

Added experimental support for testing connections to private package registries. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for Default Setup. #3466

v4.32.2

Update default CodeQL bundle version to 2.24.1. #3460

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

4.32.4 - 20 Feb 2026

Update default CodeQL bundle version to 2.24.2. #3493

Added an experimental change which improves how certificates are generated for the authentication proxy that is used by the CodeQL Action in Default Setup when private package registries are configured. This is expected to generate more widely compatible certificates and should have no impact on analyses which are working correctly already. We expect to roll this change out to everyone in February. #3473

When the CodeQL Action is run with debugging enabled in Default Setup and private package registries are configured, the "Setup proxy for registries" step will output additional diagnostic information that can be used for troubleshooting. #3486

Added a setting which allows the CodeQL Action to enable network debugging for Java programs. This will help GitHub staff support customers with troubleshooting issues in GitHub-managed CodeQL workflows, such as Default Setup. This setting can only be enabled by GitHub staff. #3485

Added a setting which enables GitHub-managed workflows, such as Default Setup, to use a nightly CodeQL CLI release instead of the latest, stable release that is used by default. This will help GitHub staff support customers whose analyses for a given repository or organization require early access to a change in an upcoming CodeQL CLI release. This setting can only be enabled by GitHub staff. #3484

4.32.3 - 13 Feb 2026

Added experimental support for testing connections to private package registries. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for Default Setup. #3466

4.32.2 - 05 Feb 2026

Update default CodeQL bundle version to 2.24.1. #3460

4.32.1 - 02 Feb 2026

A warning is now shown in Default Setup workflow logs if a private package registry is configured using a GitHub Personal Access Token (PAT), but no username is configured. #3422

Fixed a bug which caused the CodeQL Action to fail when repository properties cannot successfully be retrieved. #3421

4.32.0 - 26 Jan 2026

Update default CodeQL bundle version to 2.24.0. #3425

4.31.11 - 23 Jan 2026

When running a Default Setup workflow with Actions debugging enabled, the CodeQL Action will now use more unique names when uploading logs from the Dependabot authentication proxy as workflow artifacts. This ensures that the artifact names do not clash between multiple jobs in a build matrix. #3409

Improved error handling throughout the CodeQL Action. #3415

Added experimental support for automatically excluding generated files from the analysis. This feature is not currently enabled for any analysis. In the future, it may be enabled by default for some GitHub-managed analyses. #3318

The changelog extracts that are included with releases of the CodeQL Action are now shorter to avoid duplicated information from appearing in Dependabot PRs. #3403

4.31.10 - 12 Jan 2026

Update default CodeQL bundle version to 2.23.9. #3393

4.31.9 - 16 Dec 2025

No user facing changes.

4.31.8 - 11 Dec 2025

... (truncated)

Commits

89a39a4 Merge pull request #3494 from github/update-v4.32.4-39ba80c47
e5d84c8 Apply remaining review suggestions
0c20209 Apply suggestions from code review
314172e Fix typo
cdda72d Add changelog entries
cfda84c Update changelog for v4.32.4
39ba80c Merge pull request #3493 from github/update-bundle/codeql-bundle-v2.24.2
00150da Add changelog note
d97dce6 Update default bundle to codeql-bundle-v2.24.2
50fdbb9 Merge pull request #3492 from github/henrymercer/new-repository-properties-ff
Additional commits viewable in compare view

Updates anthropics/claude-code-action from 1.0.43 to 1.0.62

Release notes

Sourced from anthropics/claude-code-action's releases.

v1.0.62

What's Changed

Add gh.sh wrapper for gh CLI commands in issue triage workflows by @OctavianGuzu in anthropics/claude-code-action#975

Full Changelog: anthropics/claude-code-action@v1...v1.0.62

v1.0.61

Full Changelog: anthropics/claude-code-action@v1...v1.0.61

v1.0.60

Full Changelog: anthropics/claude-code-action@v1...v1.0.60

v1.0.59

Full Changelog: anthropics/claude-code-action@v1...v1.0.59

v1.0.58

What's Changed

Add non-write users check workflow by @OctavianGuzu in anthropics/claude-code-action#973

Full Changelog: anthropics/claude-code-action@v1...v1.0.58

v1.0.57

Full Changelog: anthropics/claude-code-action@v1...v1.0.57

v1.0.56

What's Changed

Use wrapper script for label operations in issue triage by @OctavianGuzu in anthropics/claude-code-action#968

Full Changelog: anthropics/claude-code-action@v1...v1.0.56

v1.0.55

Full Changelog: anthropics/claude-code-action@v1...v1.0.55

v1.0.54

Full Changelog: anthropics/claude-code-action@v1...v1.0.54

v1.0.53

What's Changed

fix: grant write permissions and use @main in claude workflow by @ashwin-ant in anthropics/claude-code-action#950

feat: add display_report option to disable step summary by @ashwin-ant in anthropics/claude-code-action#952

Full Changelog: anthropics/claude-code-action@v1...v1.0.53

v1.0.52

What's Changed

Fix stale claudeCodeVersion and update bump script to keep run.ts in sync by @ashwin-ant in anthropics/claude-code-action#943

... (truncated)

Commits

273fe82 chore: bump Claude Code to 2.1.59 and Agent SDK to 0.2.59
e750645 Add gh.sh wrapper for gh CLI commands in workflows (#975)
cd4b150 chore: bump Claude Code to 2.1.58 and Agent SDK to 0.2.58
ade221f chore: bump Claude Code to 2.1.56 and Agent SDK to 0.2.56
48fe7dd chore: bump Claude Code to 2.1.55 and Agent SDK to 0.2.55
6ae1b29 chore: bump Claude Code to 2.1.53 and Agent SDK to 0.2.53
7af3506 Add non-write users check workflow (#973)
35a9e02 chore: bump Claude Code to 2.1.52 and Agent SDK to 0.2.52
fa3312a chore: bump Claude Code to 2.1.51 and Agent SDK to 0.2.51
dd85416 Use wrapper script for label operations in issue triage (#968)
Additional commits viewable in compare view

Updates updatecli/updatecli-action from 2.99.0 to 2.100.0

Commits

4b17f4e Delete .github/dependabot.yaml (#1025)
3c23c92 deps(github/action): bump all dependencies (#1021)
c2089c3 deps(updatecli/policies): bump all policies (#1024)
bd1f44f Fix cron schedule in updatecli workflow
fcfb1a5 deps: run updatecli daily on monitored pipelines (#1023)
7368dba Bump "@types/node" package version (#1020)
ee59da1 deps: update updatecli version to v0.114.0 (#1022)
f9208e5 Bump "eslint-plugin-jest" package version (#1019)
29049bc Add daily schedule to updatecli workflow (#1017)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

…updates Bumps the github-actions group with 3 updates in the / directory: [github/codeql-action](https://github.com/github/codeql-action), [anthropics/claude-code-action](https://github.com/anthropics/claude-code-action) and [updatecli/updatecli-action](https://github.com/updatecli/updatecli-action). Updates `github/codeql-action` from 4.32.1 to 4.32.4 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@6bc82e0...89a39a4) Updates `anthropics/claude-code-action` from 1.0.43 to 1.0.62 - [Release notes](https://github.com/anthropics/claude-code-action/releases) - [Commits](anthropics/claude-code-action@6867bb3...273fe82) Updates `updatecli/updatecli-action` from 2.99.0 to 2.100.0 - [Release notes](https://github.com/updatecli/updatecli-action/releases) - [Commits](updatecli/updatecli-action@4fd2c16...4b17f4e) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.32.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: anthropics/claude-code-action dependency-version: 1.0.62 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: github-actions - dependency-name: updatecli/updatecli-action dependency-version: 2.100.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions ... Signed-off-by: dependabot[bot] <support@github.com>

mergify · 2026-02-26T13:58:18Z

🧪 CI Insights

Here's what we observed from your CI run for 13c9b45.

🟢 All jobs passed!

But CI Insights is watching 👀

dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Feb 26, 2026

robfrank approved these changes Feb 26, 2026

View reviewed changes

robfrank added the dependency_approved label Feb 26, 2026

mergify bot merged commit 2abc9f7 into main Feb 26, 2026
11 of 13 checks passed

dependabot bot deleted the dependabot/github_actions/github-actions-38ec6e43a2 branch February 26, 2026 14:26

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the github-actions group across 1 directory with 3 updates#667

chore(deps): bump the github-actions group across 1 directory with 3 updates#667
mergify[bot] merged 1 commit intomainfrom
dependabot/github_actions/github-actions-38ec6e43a2

dependabot bot commented on behalf of github Feb 26, 2026

Uh oh!

mergify bot commented Feb 26, 2026 •

edited

Loading

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Feb 26, 2026

v4.32.4

v4.32.3

v4.32.2

CodeQL Action Changelog

[UNRELEASED]

4.32.4 - 20 Feb 2026

4.32.3 - 13 Feb 2026

4.32.2 - 05 Feb 2026

4.32.1 - 02 Feb 2026

4.32.0 - 26 Jan 2026

4.31.11 - 23 Jan 2026

4.31.10 - 12 Jan 2026

4.31.9 - 16 Dec 2025

4.31.8 - 11 Dec 2025

v1.0.62

What's Changed

v1.0.61

v1.0.60

v1.0.59

v1.0.58

What's Changed

v1.0.57

v1.0.56

What's Changed

v1.0.55

v1.0.54

v1.0.53

What's Changed

v1.0.52

What's Changed

Uh oh!

mergify bot commented Feb 26, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

🧪 CI Insights

🟢 All jobs passed!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

mergify bot commented Feb 26, 2026 •

edited

Loading