From 75f1b2aab716519fc30180ecddec08aa53f6f9f4 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 13 Jul 2026 00:55:49 +0000 Subject: [PATCH 1/2] build(deps): bump github/codeql-action/analyze from 4.36.3 to 4.37.0 Bumps [github/codeql-action/analyze](https://github.com/github/codeql-action) from 4.36.3 to 4.37.0. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/54f647b7e1bb85c95cddabcd46b0c578ec92bc1a...99df26d4f13ea111d4ec1a7dddef6063f76b97e9) --- updated-dependencies: - dependency-name: github/codeql-action/analyze dependency-version: 4.37.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/codecheck.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/codecheck.yml b/.github/workflows/codecheck.yml index f92f01fa90..8d74e92ab3 100644 --- a/.github/workflows/codecheck.yml +++ b/.github/workflows/codecheck.yml @@ -85,4 +85,4 @@ jobs: # queries: ./path/to/local/query, your-org/your-repo/queries@main - run: ./gradlew -x test assembleReleaseJar - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3 + uses: github/codeql-action/analyze@99df26d4f13ea111d4ec1a7dddef6063f76b97e9 # v4.37.0 From f9e3d582bc553087f0c9b4058263f9dfa1831d84 Mon Sep 17 00:00:00 2001 From: Jaroslav Bachorik Date: Mon, 13 Jul 2026 11:24:25 +0200 Subject: [PATCH 2/2] ci: keep codeql-action init/analyze on matching v4.37.0 analyze had already moved to v4.37.0 here but init was still on v4.36.3 (bumped separately in #652); mixed versions make analyze reject init's config. Bump init to match. --- .github/workflows/codecheck.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/codecheck.yml b/.github/workflows/codecheck.yml index 8d74e92ab3..bf2015cbb4 100644 --- a/.github/workflows/codecheck.yml +++ b/.github/workflows/codecheck.yml @@ -76,7 +76,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3 + uses: github/codeql-action/init@99df26d4f13ea111d4ec1a7dddef6063f76b97e9 # v4.37.0 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file.