From cbb144bcbe01518014ce418c56ed481e95eb099f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 13 Oct 2025 16:15:31 +0200 Subject: [PATCH] ci: bump the github-actions group in /.github/workflows with 2 updates (#14391) Bumps the github-actions group in /.github/workflows with 2 updates: [softprops/action-gh-release](https://github.com/softprops/action-gh-release) and [github/codeql-action](https://github.com/github/codeql-action). Updates `softprops/action-gh-release` from 2.3.4 to 2.4.1 - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](https://github.com/softprops/action-gh-release/compare/v2.3.4...v2.4.1) Updates `github/codeql-action` from 3 to 4 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v3...v4) --- updated-dependencies: - dependency-name: softprops/action-gh-release dependency-version: 2.4.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: github-actions - dependency-name: github/codeql-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major dependency-group: github-actions ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/ci.yml | 2 +- .github/workflows/codeql-core.yml | 4 ++-- .github/workflows/codeql-wf.yml | 4 ++-- 3 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 4db2d27256..88badb9c3e 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -575,7 +575,7 @@ jobs: find . -type f | while read f; do mv -fvt . $f; done - name: Release to Github - uses: softprops/action-gh-release@v2.3.4 + uses: softprops/action-gh-release@v2.4.1 with: body_path: CHANGELOG.md files: | diff --git a/.github/workflows/codeql-core.yml b/.github/workflows/codeql-core.yml index 6f0d1f2316..eb2c366f71 100644 --- a/.github/workflows/codeql-core.yml +++ b/.github/workflows/codeql-core.yml @@ -33,13 +33,13 @@ jobs: show-progress: false - name: Setup CodeQL - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v4 with: languages: c-cpp,csharp build-mode: manual - name: Run CodeQL - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v4 with: category: "/language:multi-manual" diff --git a/.github/workflows/codeql-wf.yml b/.github/workflows/codeql-wf.yml index 2788f9adee..c0c8dffb44 100644 --- a/.github/workflows/codeql-wf.yml +++ b/.github/workflows/codeql-wf.yml @@ -25,12 +25,12 @@ jobs: show-progress: false - name: Setup CodeQL for GitHub Actions - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v4 with: languages: actions build-mode: none - name: Run CodeQL Analysis - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v4 with: category: "/language:multi-none"