[PR #4908] [MERGED] Bump github/codeql-action from 1.0.30 to 1.0.31 #5292

New issue

Closed

opened 2026-05-05 10:35:48 -06:00 by gitea-mirror · 0 comments

gitea-mirror commented 2026-05-05 10:35:48 -06:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/netblue30/firejail/pull/4908
Author: @dependabot[bot]
Created: 2/7/2022
Status: ✅ Merged
Merged: 2/7/2022
Merged by: @netblue30

Base: master ← Head: dependabot/github_actions/github/codeql-action-1.0.31

---

📝 Commits (1)

• 8faaca8 Bump github/codeql-action from 1.0.30 to 1.0.31

📊 Changes

1 file changed (+3 additions, -3 deletions)

View changed files

📝 .github/workflows/codeql-analysis.yml (+3 -3)

📄 Description

Bumps github/codeql-action from 1.0.30 to 1.0.31.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action and CodeQL Runner Changelog

[UNRELEASED]

• Add sarif-id as an output for the upload-sarif and analyze actions. #889
• Add ref and sha inputs to the analyze action, which override the defaults provided by the GitHub Action context. #889
• Update default CodeQL bundle version to 2.8.0. #911

1.0.31 - 31 Jan 2022

• Remove experimental message when using custom CodeQL packages. #888
• Add a better warning message stating that experimental features will be disabled if the workflow has been triggered by a pull request from a fork or the security-events: write permission is not present. #882

1.0.30 - 24 Jan 2022

• Display a better error message when encountering a workflow that runs the codeql-action/init action multiple times. #876
• Update default CodeQL bundle version to 2.7.6. #877

1.0.29 - 21 Jan 2022

• The feature to wait for SARIF processing to complete after upload has been disabled by default due to a bug in its interaction with pull requests from forks.

1.0.28 - 18 Jan 2022

• Update default CodeQL bundle version to 2.7.5. #866
• Fix a bug where SARIF files were failing upload due to an invalid test for unique categories. #872

1.0.27 - 11 Jan 2022

• The analyze and upload-sarif actions will now wait up to 2 minutes for processing to complete after they have uploaded the results so they can report any processing errors that occurred. This behavior can be disabled by setting the wait-for-processing action input to "false". #855

1.0.26 - 10 Dec 2021

• Update default CodeQL bundle version to 2.7.3. #842

1.0.25 - 06 Dec 2021

No user facing changes.

1.0.24 - 23 Nov 2021

• Update default CodeQL bundle version to 2.7.2. #827

1.0.23 - 16 Nov 2021

• The upload-sarif action now allows multiple uploads in a single job, as long as they have different categories. #801
• Update default CodeQL bundle version to 2.7.1. #816

1.0.22 - 04 Nov 2021

... (truncated)

Commits

• 1a927e9 Merge pull request #899 from github/update-v1.0.31-3a741b6c
• bbb9c53 1.0.31
• 3a741b6 Merge pull request #892 from github/dependabot/npm_and_yarn/node-fetch-2.6.7
• 1498bce Merge branch 'main' into dependabot/npm_and_yarn/node-fetch-2.6.7
• c260382 Merge pull request #894 from github/dependabot/npm_and_yarn/sinon-13.0.0
• 6410c06 Update checked-in dependencies
• c337e5f Update checked-in dependencies
• 9673b56 Bump sinon from 11.1.2 to 13.0.0
• bc4366e Bump node-fetch from 2.6.1 to 2.6.7
• 3b831aa Merge pull request #885 from github/dependabot/npm_and_yarn/runner/node-fetch...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/netblue30/firejail/pull/4908 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 2/7/2022 **Status:** ✅ Merged **Merged:** 2/7/2022 **Merged by:** [@netblue30](https://github.com/netblue30) **Base:** `master` ← **Head:** `dependabot/github_actions/github/codeql-action-1.0.31` --- ### 📝 Commits (1) - [`8faaca8`](https://github.com/netblue30/firejail/commit/8faaca85254a99b6e19a95a8c6bc81b25a0830eb) Bump github/codeql-action from 1.0.30 to 1.0.31 ### 📊 Changes **1 file changed** (+3 additions, -3 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/codeql-analysis.yml` (+3 -3) </details> ### 📄 Description Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1.0.30 to 1.0.31. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action and CodeQL Runner Changelog</h1> <h2>[UNRELEASED]</h2> <ul> <li>Add <code>sarif-id</code> as an output for the <code>upload-sarif</code> and <code>analyze</code> actions. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/889">#889</a></li> <li>Add <code>ref</code> and <code>sha</code> inputs to the <code>analyze</code> action, which override the defaults provided by the GitHub Action context. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/889">#889</a></li> <li>Update default CodeQL bundle version to 2.8.0. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/911">#911</a></li> </ul> <h2>1.0.31 - 31 Jan 2022</h2> <ul> <li>Remove <code>experimental</code> message when using custom CodeQL packages. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/888">#888</a></li> <li>Add a better warning message stating that experimental features will be disabled if the workflow has been triggered by a pull request from a fork or the <code>security-events: write</code> permission is not present. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/882">#882</a></li> </ul> <h2>1.0.30 - 24 Jan 2022</h2> <ul> <li>Display a better error message when encountering a workflow that runs the <code>codeql-action/init</code> action multiple times. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/876">#876</a></li> <li>Update default CodeQL bundle version to 2.7.6. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/877">#877</a></li> </ul> <h2>1.0.29 - 21 Jan 2022</h2> <ul> <li>The feature to wait for SARIF processing to complete after upload has been disabled by default due to a bug in its interaction with pull requests from forks.</li> </ul> <h2>1.0.28 - 18 Jan 2022</h2> <ul> <li>Update default CodeQL bundle version to 2.7.5. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/866">#866</a></li> <li>Fix a bug where SARIF files were failing upload due to an invalid test for unique categories. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/872">#872</a></li> </ul> <h2>1.0.27 - 11 Jan 2022</h2> <ul> <li>The <code>analyze</code> and <code>upload-sarif</code> actions will now wait up to 2 minutes for processing to complete after they have uploaded the results so they can report any processing errors that occurred. This behavior can be disabled by setting the <code>wait-for-processing</code> action input to <code>&quot;false&quot;</code>. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/855">#855</a></li> </ul> <h2>1.0.26 - 10 Dec 2021</h2> <ul> <li>Update default CodeQL bundle version to 2.7.3. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/842">#842</a></li> </ul> <h2>1.0.25 - 06 Dec 2021</h2> <p>No user facing changes.</p> <h2>1.0.24 - 23 Nov 2021</h2> <ul> <li>Update default CodeQL bundle version to 2.7.2. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/827">#827</a></li> </ul> <h2>1.0.23 - 16 Nov 2021</h2> <ul> <li>The <code>upload-sarif</code> action now allows multiple uploads in a single job, as long as they have different categories. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/801">#801</a></li> <li>Update default CodeQL bundle version to 2.7.1. <a href="https://github-redirect.dependabot.com/github/codeql-action/pull/816">#816</a></li> </ul> <h2>1.0.22 - 04 Nov 2021</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/github/codeql-action/commit/1a927e9307bc11970b2c679922ebc4d03a5bd980"><code>1a927e9</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/github/codeql-action/issues/899">#899</a> from github/update-v1.0.31-3a741b6c</li> <li><a href="https://github.com/github/codeql-action/commit/bbb9c53c65af786b1ff145128e79df59abef17f7"><code>bbb9c53</code></a> 1.0.31</li> <li><a href="https://github.com/github/codeql-action/commit/3a741b6cf5013d27ed3e5b923be091312489df28"><code>3a741b6</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/github/codeql-action/issues/892">#892</a> from github/dependabot/npm_and_yarn/node-fetch-2.6.7</li> <li><a href="https://github.com/github/codeql-action/commit/1498bce6608ff9f4dbad2ab02e03d96083ddaf15"><code>1498bce</code></a> Merge branch 'main' into dependabot/npm_and_yarn/node-fetch-2.6.7</li> <li><a href="https://github.com/github/codeql-action/commit/c260382f36fa7681d7ebb8cba71a42ac38d18f16"><code>c260382</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/github/codeql-action/issues/894">#894</a> from github/dependabot/npm_and_yarn/sinon-13.0.0</li> <li><a href="https://github.com/github/codeql-action/commit/6410c0691e039fa78b80a8083ba08f03c8154e61"><code>6410c06</code></a> Update checked-in dependencies</li> <li><a href="https://github.com/github/codeql-action/commit/c337e5f2f3624ea687f05f3c9648f6ed3ee86462"><code>c337e5f</code></a> Update checked-in dependencies</li> <li><a href="https://github.com/github/codeql-action/commit/9673b562d94c736fda82c9a3ff967739f759acce"><code>9673b56</code></a> Bump sinon from 11.1.2 to 13.0.0</li> <li><a href="https://github.com/github/codeql-action/commit/bc4366e9480d6444308ba83784d1fea104c0375b"><code>bc4366e</code></a> Bump node-fetch from 2.6.1 to 2.6.7</li> <li><a href="https://github.com/github/codeql-action/commit/3b831aafd98be2329e46f6ae6d6af7aa5bacd9bd"><code>3b831aa</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/github/codeql-action/issues/885">#885</a> from github/dependabot/npm_and_yarn/runner/node-fetch...</li> <li>Additional commits viewable in <a href="https://github.com/github/codeql-action/compare/8b37404d562d866ad6a65d0ecb4fa5131e047ca4...1a927e9307bc11970b2c679922ebc4d03a5bd980">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

gitea-mirror 2026-05-05 10:35:48 -06:00

• closed this issue
• added the
  pull-request
  label

gitea-mirror referenced this issue 2026-05-05 10:38:59 -06:00

[PR #5374] [MERGED] profiles: arduino: allow devel paths #5467

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

serialize_remounts_v2

landlock_v4

landlock

release-0.9.64

release-0.9.62

gitlab_ci

LTSbase

fred_ctests

docs

0.9.80

0.9.80-rc1

0.9.78

0.9.76

0.9.76-rc4

0.9.76-rc3

0.9.76-rc2

0.9.76-rc1

0.9.74

landlock-split

0.9.72

0.9.72rc1

0.9.70

0.9.68

0.9.68rc1

0.9.66

0.9.66rc1

0.9.64.4

0.9.64.2

0.9.64

0.9.64rc1

0.9.62.4

0.9.62.2

0.9.62

0.9.56.2-LTS

0.9.60

0.9.60-rc1

0.9.58.2

0.9.58

0.9.58-rc1

0.9.56-LTS-release

0.9.56-LTS

0.9.56

0.9.56-rc1

0.9.54

0.9.54-rc2

0.9.54-rc1

0.9.52

0.9.38.12

0.9.50

0.9.50-rc1

0.9.48

0.9.46

0.9.46-rc1

0.9.44.10

0.9.44.8

0.9.44.6

0.9.38.10

0.9.44.4

0.9.38.8

0.9.44.2

0.9.44

0.9.44-rc1

0.9.38.4

0.9.42

0.9.42-rc2

0.9.38.2

0.9.42-rc1

disable-globalcfg

0.9.40

0.9.40-rc1

0.9.38

0.9.38-rc1

0.9.36

0.9.36-rc1

0.9.34

0.9.34-rc1

0.9.32

0.9.32-rc1

0.9.30

0.9.30-rc1

Labels

Clear labels   

LTS merge

  

LTS merge

  

bug

  

bug

  

converted-to-discussion

  

doc-todo

  

documentation

  

duplicate

  

enhancement

  

file-transfer

  

firecfg

  

firejail-in-firejail

  

firetools

  

graphics

  

help wanted

  

information_old

  

installation

  

invalid

  

modif

  

moved

  

needinfo

  

networking

  

notabug

  

notourbug

  

old-version

  

overlayfs

  

packaging

  

profile-request

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

question_old

  

removal

  

runtime-permissions

  

sandbox-ipc

  

security

  

stale

  

wiki

  

wiki

  

wontfix

  

wordpress

  

workaround

No labels

LTS merge

LTS merge

bug

bug

converted-to-discussion

doc-todo

documentation

duplicate

enhancement

file-transfer

firecfg

firejail-in-firejail

firetools

graphics

help wanted

information_old

installation

invalid

modif

moved

needinfo

networking

notabug

notourbug

old-version

overlayfs

packaging

profile-request

pull-request

question

question_old

removal

runtime-permissions

sandbox-ipc

security

stale

wiki

wiki

wontfix

wordpress

workaround

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#5292

No description provided.