github-starred/firejail
2
0
Fork 0
mirror of https://github.com/netblue30/firejail.git synced 2026-05-15 14:16:14 -06:00
Code Issues 531 Projects Packages Wiki Activity Actions 6

[PR #5759] [CLOSED] build(deps): bump github/codeql-action from 2.2.7 to 2.2.8 #5652

New issue
Closed
opened 2026-05-05 10:42:25 -06:00 by gitea-mirror · 0 comments
gitea-mirror commented 2026-05-05 10:42:25 -06:00
Owner
Copy link

📋 Pull Request Information

Original PR: https://github.com/netblue30/firejail/pull/5759
Author: @dependabot[bot]
Created: 3/27/2023
Status: Closed

Base: masterHead: dependabot/github_actions/github/codeql-action-2.2.8

📝 Commits (1)

  • d1dfb78 build(deps): bump github/codeql-action from 2.2.7 to 2.2.8

📊 Changes

1 file changed (+3 additions, -3 deletions)

View changed files

📝 .github/workflows/codeql-analysis.yml (+3 -3)

📄 Description

Bumps github/codeql-action from 2.2.7 to 2.2.8.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

[UNRELEASED]

No user facing changes.

2.2.8 - 22 Mar 2023

  • Update default CodeQL bundle version to 2.12.5. #1585
  • Customers post-processing the SARIF output of the analyze Action before uploading it to Code Scanning will benefit from an improved debugging experience. #1598
    • The CodeQL Action will now upload a SARIF file with debugging information to Code Scanning on failed runs for customers using upload: false. Previously, this was only available for customers using the default value of the upload input.
    • The upload input to the analyze Action now accepts the following values:
      • always is the default value, which uploads the SARIF file to Code Scanning for successful and failed runs.
      • failure-only is recommended for customers post-processing the SARIF file before uploading it to Code Scanning. This option uploads debugging information to Code Scanning for failed runs to improve the debugging experience.
      • never avoids uploading the SARIF file to Code Scanning even if the code scanning run fails. This is not recommended for external users since it complicates debugging.
      • The legacy true and false options will be interpreted as always and failure-only respectively.

2.2.7 - 15 Mar 2023

No user facing changes.

2.2.6 - 10 Mar 2023

  • Update default CodeQL bundle version to 2.12.4. #1561

2.2.5 - 24 Feb 2023

  • Update default CodeQL bundle version to 2.12.3. #1543

2.2.4 - 10 Feb 2023

No user facing changes.

2.2.3 - 08 Feb 2023

  • Update default CodeQL bundle version to 2.12.2. #1518

2.2.2 - 06 Feb 2023

2.2.1 - 27 Jan 2023

No user facing changes.

2.2.0 - 26 Jan 2023

  • Improve stability when choosing the default version of CodeQL to use in code scanning workflow runs on Actions on GitHub.com. #1475
    • This change addresses customer reports of code scanning alerts on GitHub.com being closed and reopened during the rollout of new versions of CodeQL in the GitHub Actions runner images.
    • No change is required for the majority of workflows, including:

... (truncated)

Commits
  • 67a35a0 Merge pull request #1601 from github/update-v2.2.8-066b6343e
  • 57571ab Update changelog for v2.2.8
  • 066b634 Merge pull request #1599 from github/update-supported-enterprise-server-versions
  • aefd989 Merge pull request #1597 from github/rneatherway/ghe-dotcom
  • 3ca2260 Account for versioning of ghe.com
  • 5f20b2c Update supported GitHub Enterprise Server versions.
  • 760583e Bump setup-go from v3 to v4 (#1595)
  • 0ef7eda Merge pull request #1585 from github/henrymercer/bundle-2.12.5
  • 8612813 Merge branch 'main' into henrymercer/bundle-2.12.5
  • ebbe965 Merge pull request #1588 from github/update-supported-enterprise-server-versions
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.

## 📋 Pull Request Information **Original PR:** https://github.com/netblue30/firejail/pull/5759 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 3/27/2023 **Status:** ❌ Closed **Base:** `master` ← **Head:** `dependabot/github_actions/github/codeql-action-2.2.8` --- ### 📝 Commits (1) - [`d1dfb78`](https://github.com/netblue30/firejail/commit/d1dfb78b23538911a68f55674a7237cd789e5c6b) build(deps): bump github/codeql-action from 2.2.7 to 2.2.8 ### 📊 Changes **1 file changed** (+3 additions, -3 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/codeql-analysis.yml` (+3 -3) </details> ### 📄 Description Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.7 to 2.2.8. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/github/codeql-action/blob/main/CHANGELOG.md">github/codeql-action's changelog</a>.</em></p> <blockquote> <h1>CodeQL Action Changelog</h1> <h2>[UNRELEASED]</h2> <p>No user facing changes.</p> <h2>2.2.8 - 22 Mar 2023</h2> <ul> <li>Update default CodeQL bundle version to 2.12.5. <a href="https://redirect.github.com/github/codeql-action/pull/1585">#1585</a></li> <li>Customers post-processing the SARIF output of the <code>analyze</code> Action before uploading it to Code Scanning will benefit from an improved debugging experience. <a href="https://redirect.github.com/github/codeql-action/pull/1598">#1598</a> <ul> <li>The CodeQL Action will now upload a SARIF file with debugging information to Code Scanning on failed runs for customers using <code>upload: false</code>. Previously, this was only available for customers using the default value of the <code>upload</code> input.</li> <li>The <code>upload</code> input to the <code>analyze</code> Action now accepts the following values: <ul> <li><code>always</code> is the default value, which uploads the SARIF file to Code Scanning for successful and failed runs.</li> <li><code>failure-only</code> is recommended for customers post-processing the SARIF file before uploading it to Code Scanning. This option uploads debugging information to Code Scanning for failed runs to improve the debugging experience.</li> <li><code>never</code> avoids uploading the SARIF file to Code Scanning even if the code scanning run fails. This is not recommended for external users since it complicates debugging.</li> <li>The legacy <code>true</code> and <code>false</code> options will be interpreted as <code>always</code> and <code>failure-only</code> respectively.</li> </ul> </li> </ul> </li> </ul> <h2>2.2.7 - 15 Mar 2023</h2> <p>No user facing changes.</p> <h2>2.2.6 - 10 Mar 2023</h2> <ul> <li>Update default CodeQL bundle version to 2.12.4. <a href="https://redirect.github.com/github/codeql-action/pull/1561">#1561</a></li> </ul> <h2>2.2.5 - 24 Feb 2023</h2> <ul> <li>Update default CodeQL bundle version to 2.12.3. <a href="https://redirect.github.com/github/codeql-action/pull/1543">#1543</a></li> </ul> <h2>2.2.4 - 10 Feb 2023</h2> <p>No user facing changes.</p> <h2>2.2.3 - 08 Feb 2023</h2> <ul> <li>Update default CodeQL bundle version to 2.12.2. <a href="https://redirect.github.com/github/codeql-action/pull/1518">#1518</a></li> </ul> <h2>2.2.2 - 06 Feb 2023</h2> <ul> <li>Fix an issue where customers using the CodeQL Action with the <a href="https://docs.github.com/en/enterprise-server@3.7/admin/code-security/managing-github-advanced-security-for-your-enterprise/configuring-code-scanning-for-your-appliance#configuring-codeql-analysis-on-a-server-without-internet-access">CodeQL Action sync tool</a> would not be able to obtain the CodeQL tools. <a href="https://redirect.github.com/github/codeql-action/pull/1517">#1517</a></li> </ul> <h2>2.2.1 - 27 Jan 2023</h2> <p>No user facing changes.</p> <h2>2.2.0 - 26 Jan 2023</h2> <ul> <li>Improve stability when choosing the default version of CodeQL to use in code scanning workflow runs on Actions on GitHub.com. <a href="https://redirect.github.com/github/codeql-action/pull/1475">#1475</a> <ul> <li>This change addresses customer reports of code scanning alerts on GitHub.com being closed and reopened during the rollout of new versions of CodeQL in the GitHub Actions <a href="https://github.com/actions/runner-images">runner images</a>.</li> <li><strong>No change is required for the majority of workflows</strong>, including:</li> </ul> </li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/github/codeql-action/commit/67a35a08586135a9573f4327e904ecbf517a882d"><code>67a35a0</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/1601">#1601</a> from github/update-v2.2.8-066b6343e</li> <li><a href="https://github.com/github/codeql-action/commit/57571ab0cd1646c26245e45072046dd8523c04c5"><code>57571ab</code></a> Update changelog for v2.2.8</li> <li><a href="https://github.com/github/codeql-action/commit/066b6343ef05c8b9004054f8fb7c6af1a95375aa"><code>066b634</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/1599">#1599</a> from github/update-supported-enterprise-server-versions</li> <li><a href="https://github.com/github/codeql-action/commit/aefd9896b1ac0a2e24b95525643cfa6d0f5538db"><code>aefd989</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/1597">#1597</a> from github/rneatherway/ghe-dotcom</li> <li><a href="https://github.com/github/codeql-action/commit/3ca226064378a93b85e71a9b77c6cf4cbb0d6f3d"><code>3ca2260</code></a> Account for versioning of ghe.com</li> <li><a href="https://github.com/github/codeql-action/commit/5f20b2c372e2df4127c0afad236b5e27f7422434"><code>5f20b2c</code></a> Update supported GitHub Enterprise Server versions.</li> <li><a href="https://github.com/github/codeql-action/commit/760583e70d47693ffb9619d29cd1b1858c197d2b"><code>760583e</code></a> Bump setup-go from v3 to v4 (<a href="https://redirect.github.com/github/codeql-action/issues/1595">#1595</a>)</li> <li><a href="https://github.com/github/codeql-action/commit/0ef7eda548a9f29902ca2a55e9b9d243bd1223dd"><code>0ef7eda</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/1585">#1585</a> from github/henrymercer/bundle-2.12.5</li> <li><a href="https://github.com/github/codeql-action/commit/86128131faa8ac9b0c4d90915acefa9bc8b30a07"><code>8612813</code></a> Merge branch 'main' into henrymercer/bundle-2.12.5</li> <li><a href="https://github.com/github/codeql-action/commit/ebbe965b436d3cf08f411a8e9cdefb6cda0170db"><code>ebbe965</code></a> Merge pull request <a href="https://redirect.github.com/github/codeql-action/issues/1588">#1588</a> from github/update-supported-enterprise-server-versions</li> <li>Additional commits viewable in <a href="https://github.com/github/codeql-action/compare/168b99b3c22180941ae7dbdd5f5c9678ede476ba...67a35a08586135a9573f4327e904ecbf517a882d">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=2.2.7&new-version=2.2.8)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- <sub>🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.</sub>
gitea-mirror 2026-05-05 10:42:25 -06:00
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
serialize_remounts_v2
landlock_v4
landlock
release-0.9.64
release-0.9.62
gitlab_ci
LTSbase
fred_ctests
docs
0.9.80
0.9.80-rc1
0.9.78
0.9.76
0.9.76-rc4
0.9.76-rc3
0.9.76-rc2
0.9.76-rc1
0.9.74
landlock-split
0.9.72
0.9.72rc1
0.9.70
0.9.68
0.9.68rc1
0.9.66
0.9.66rc1
0.9.64.4
0.9.64.2
0.9.64
0.9.64rc1
0.9.62.4
0.9.62.2
0.9.62
0.9.56.2-LTS
0.9.60
0.9.60-rc1
0.9.58.2
0.9.58
0.9.58-rc1
0.9.56-LTS-release
0.9.56-LTS
0.9.56
0.9.56-rc1
0.9.54
0.9.54-rc2
0.9.54-rc1
0.9.52
0.9.38.12
0.9.50
0.9.50-rc1
0.9.48
0.9.46
0.9.46-rc1
0.9.44.10
0.9.44.8
0.9.44.6
0.9.38.10
0.9.44.4
0.9.38.8
0.9.44.2
0.9.44
0.9.44-rc1
0.9.38.4
0.9.42
0.9.42-rc2
0.9.38.2
0.9.42-rc1
disable-globalcfg
0.9.40
0.9.40-rc1
0.9.38
0.9.38-rc1
0.9.36
0.9.36-rc1
0.9.34
0.9.34-rc1
0.9.32
0.9.32-rc1
0.9.30
0.9.30-rc1
Labels
Clear labels   
LTS merge

   
LTS merge

   
bug

   
bug

   
converted-to-discussion

   
doc-todo

   
documentation

   
duplicate

   
enhancement

   
file-transfer

   
firecfg

   
firejail-in-firejail

   
firetools

   
graphics

   
help wanted

   
information_old

   
installation

   
invalid

   
modif

   
moved

   
needinfo

   
networking

   
notabug

   
notourbug

   
old-version

   
overlayfs

   
packaging

   
profile-request

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question_old

   
removal

   
runtime-permissions

   
sandbox-ipc

   
security

   
stale

   
wiki

   
wiki

   
wontfix

   
wordpress

   
workaround
No labels
LTS merge
LTS merge
bug
bug
converted-to-discussion
doc-todo
documentation
duplicate
enhancement
file-transfer
firecfg
firejail-in-firejail
firetools
graphics
help wanted
information_old
installation
invalid
modif
moved
needinfo
networking
notabug
notourbug
old-version
overlayfs
packaging
profile-request
pull-request
question
question_old
removal
runtime-permissions
sandbox-ipc
security
stale
wiki
wiki
wontfix
wordpress
workaround
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/firejail#5652
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?