Skip to content

Merge main into releases/v4 #3588

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
oscarsj merged 47 commits into from
Mar 20, 2026
Merged

Merge main into releases/v4 #3588

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
47 commits
Select commit Hold shift + click to select a range
035c117
upload-lib: Unit test filterAlertsByDiffRange
kaspersv Oct 28, 2025
d18f3ac
Move diff-range extension pack generation into testable function
kaspersv Oct 28, 2025
df4e199
Add unit test for diffRangeExtensionPackContents
kaspersv Oct 28, 2025
4eb2475
Move conversion of PR diff-range paths to absolute paths
kaspersv Oct 28, 2025
1443f58
chore: merge main into kaspersv/move-diff-range-absolute-path-conversion
sam-robson Mar 5, 2026
b2de493
refactor: pass checkoutPath as param and fix docs for relative path s…
sam-robson Mar 5, 2026
c10020e
Merge remote-tracking branch 'origin/main' into kaspersv/move-diff-ra…
sam-robson Mar 6, 2026
cdafc35
refactor: pass checkoutPath as param to writeDiffRangeDataExtensionPack
sam-robson Mar 6, 2026
9082319
Merge branch 'main' into kaspersv/move-diff-range-absolute-path-conve…
sam-robson Mar 6, 2026
b0f8772
Add FF for disabling TRAP caching when overlay enabled
henrymercer Mar 11, 2026
b04e63f
Enablement: Move TRAP caching check after overlay
henrymercer Mar 11, 2026
70d5ccc
Disable TRAP caching when conditions met
henrymercer Mar 11, 2026
d05b50b
Clean up: Remove unneeded CodeQL version guard
henrymercer Mar 11, 2026
d74701c
Drive-by cleanup: Always use `--cache-cleanup`
henrymercer Mar 11, 2026
19544bb
Remove dead Python library extraction code
henrymercer Mar 11, 2026
556dd79
Drive-by comment fixes
henrymercer Mar 11, 2026
a91b7a3
Add unit tests for `isTrapCachingEnabled`
henrymercer Mar 11, 2026
b1f1e7b
Add changelog note
henrymercer Mar 11, 2026
926e6df
Stub RUNNER_NAME in unit tests
henrymercer Mar 11, 2026
fbb2eb9
Update changelog and version after v4.33.0
github-actions[bot] Mar 16, 2026
a0e3ed6
Rebuild
github-actions[bot] Mar 16, 2026
fd1ca02
Merge pull request #3576 from github/mergeback/v4.33.0-to-main-b1bff819
mbg Mar 16, 2026
573e7dd
Bump fast-xml-parser from 5.4.1 to 5.5.6
dependabot[bot] Mar 18, 2026
f254006
Rebuild
github-actions[bot] Mar 18, 2026
5e54629
Merge branch 'main' into kaspersv/move-diff-range-absolute-path-conve…
sam-robson Mar 18, 2026
08d1198
Merge pull request #3248 from github/kaspersv/move-diff-range-absolut…
sam-robson Mar 18, 2026
7da6361
Merge pull request #3580 from github/dependabot/npm_and_yarn/fast-xml…
henrymercer Mar 18, 2026
60a0dce
Merge branch 'main' into henrymercer/overlay-no-trap-caching
henrymercer Mar 18, 2026
582d08c
Explicitly set C/C++ trap caching env var to false
henrymercer Mar 18, 2026
5b63048
Fix changelog automerge
henrymercer Mar 18, 2026
ecd1c77
Bump the npm-minor group with 2 updates
dependabot[bot] Mar 18, 2026
23674c1
Bump actions/create-github-app-token in /.github/workflows
dependabot[bot] Mar 18, 2026
07d509f
Merge pull request #3569 from github/henrymercer/overlay-no-trap-caching
henrymercer Mar 19, 2026
9fecf32
Merge pull request #3581 from github/dependabot/npm_and_yarn/npm-mino…
henrymercer Mar 19, 2026
3d8036c
Merge pull request #3583 from github/dependabot/github_actions/dot-gi…
henrymercer Mar 19, 2026
0bc1b6f
Update default bundle to codeql-bundle-v2.25.0
github-actions[bot] Mar 19, 2026
f4be604
Add changelog note
github-actions[bot] Mar 19, 2026
899a672
Feature flag: C/C++ overlay
IdrissRio Mar 19, 2026
ce4a1fe
Feature flag: update generated lib after build
IdrissRio Mar 19, 2026
ab3b6fd
Feature flag: address copilot comment
IdrissRio Mar 19, 2026
074a0db
Feature flag: update test without overlay support
IdrissRio Mar 19, 2026
0d057cc
Add changelog note for C/C++ overlay
IdrissRio Mar 19, 2026
e6d83bc
Update CHANGELOG.md
IdrissRio Mar 19, 2026
147e93e
Merge pull request #3585 from github/update-bundle/codeql-bundle-v2.25.0
oscarsj Mar 19, 2026
39191bd
Merge branch 'main' into idrissrio/cpp/overlay
IdrissRio Mar 19, 2026
30c555a
Merge pull request #3584 from github/idrissrio/cpp/overlay
IdrissRio Mar 19, 2026
eeb9b3f
Update changelog for v4.34.0
github-actions[bot] Mar 20, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .github/workflows/post-release-mergeback.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -131,7 +131,7 @@ jobs:
echo "::endgroup::"
- name: Generate token
uses: actions/create-github-app-token@v2.2.1
uses: actions/create-github-app-token@v3.0.0
id: app-token
with:
app-id: ${{ vars.AUTOMATION_APP_ID }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/rollback-release.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -136,7 +136,7 @@ jobs:
- name: Generate token
if: github.event_name == 'workflow_dispatch'
uses: actions/create-github-app-token@v2.2.1
uses: actions/create-github-app-token@v3.0.0
id: app-token
with:
app-id: ${{ vars.AUTOMATION_APP_ID }}
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/update-release-branch.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -93,7 +93,7 @@ jobs:
pull-requests: write # needed to create pull request
steps:
- name: Generate token
uses: actions/create-github-app-token@v2.2.1
uses: actions/create-github-app-token@v3.0.0
id: app-token
with:
app-id: ${{ vars.AUTOMATION_APP_ID }}
Expand Down
6 changes: 6 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,12 @@

See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.

## 4.34.0 - 20 Mar 2026

- Added an experimental change which disables TRAP caching when [improved incremental analysis](https://github.com/github/roadmap/issues/1158) is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. [#3569](https://github.com/github/codeql-action/pull/3569)
- We are rolling out improved incremental analysis to C/C++ analyses that use build mode `none`. We expect this rollout to be complete by the end of April 2026. [#3584](https://github.com/github/codeql-action/pull/3584)
- Update default CodeQL bundle version to [2.25.0](https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.25.0). [#3585](https://github.com/github/codeql-action/pull/3585)

## 4.33.0 - 16 Mar 2026

- Upcoming change: Starting April 2026, the CodeQL Action will skip collecting file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. Pull request analyses will log a warning about this upcoming change. [#3562](https://github.com/github/codeql-action/pull/3562)
Expand Down
1,961 changes: 1,180 additions & 781 deletions lib/analyze-action-post.js
View file
Open in desktop

Large diffs are not rendered by default.

1,863 changes: 1,133 additions & 730 deletions lib/analyze-action.js
View file
Open in desktop

Large diffs are not rendered by default.

1,771 changes: 1,085 additions & 686 deletions lib/autobuild-action.js
View file
Open in desktop

Large diffs are not rendered by default.

8 changes: 4 additions & 4 deletions lib/defaults.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"bundleVersion": "codeql-bundle-v2.24.3",
"cliVersion": "2.24.3",
"priorBundleVersion": "codeql-bundle-v2.24.2",
"priorCliVersion": "2.24.2"
"bundleVersion": "codeql-bundle-v2.25.0",
"cliVersion": "2.25.0",
"priorBundleVersion": "codeql-bundle-v2.24.3",
"priorCliVersion": "2.24.3"
}
2,035 changes: 1,216 additions & 819 deletions lib/init-action-post.js
View file
Open in desktop

Large diffs are not rendered by default.

1,901 changes: 1,148 additions & 753 deletions lib/init-action.js
View file
Open in desktop

Large diffs are not rendered by default.

1,759 changes: 1,079 additions & 680 deletions lib/resolve-environment-action.js
View file
Open in desktop

Large diffs are not rendered by default.

1,775 changes: 1,088 additions & 687 deletions lib/setup-codeql-action.js
View file
Open in desktop

Large diffs are not rendered by default.

1,952 changes: 1,178 additions & 774 deletions lib/start-proxy-action-post.js
View file
Open in desktop

Large diffs are not rendered by default.

1,764 changes: 1,085 additions & 679 deletions lib/start-proxy-action.js
View file
Open in desktop

Large diffs are not rendered by default.

1,751 changes: 1,075 additions & 676 deletions lib/upload-lib.js
View file
Open in desktop

Large diffs are not rendered by default.

1,954 changes: 1,180 additions & 774 deletions lib/upload-sarif-action-post.js
View file
Open in desktop

Large diffs are not rendered by default.

1,787 changes: 1,092 additions & 695 deletions lib/upload-sarif-action.js
View file
Open in desktop

Large diffs are not rendered by default.

Loading
Loading