)]}'
{
  "commit": "1ea0aa63dc77993f52cfaf4f80f7ae007ac4d546",
  "tree": "ec5b652d2c0cbbae009a2d43d456033e1de41362",
  "parents": [
    "f4211e48358f3b9fbef573dd2c047beb79b5e215"
  ],
  "author": {
    "name": "dependabot[bot]",
    "email": "49699333+dependabot[bot]@users.noreply.github.com",
    "time": "Mon Jul 29 09:50:06 2024 +0000"
  },
  "committer": {
    "name": "GitHub",
    "email": "noreply@github.com",
    "time": "Mon Jul 29 09:50:06 2024 +0000"
  },
  "message": "Bump github/codeql-action from 3.25.14 to 3.25.15 (#880)\n\nBumps [github/codeql-action](https://github.com/github/codeql-action) from 3.25.14 to 3.25.15.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href\u003d\"https://github.com/github/codeql-action/blob/main/CHANGELOG.md\"\u003egithub/codeql-action\u0027s changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCodeQL Action Changelog\u003c/h1\u003e\n\u003cp\u003eSee the \u003ca href\u003d\"https://github.com/github/codeql-action/releases\"\u003ereleases page\u003c/a\u003e for the relevant changes to the CodeQL CLI and language packs.\u003c/p\u003e\n\u003cp\u003eNote that the only difference between \u003ccode\u003ev2\u003c/code\u003e and \u003ccode\u003ev3\u003c/code\u003e of the CodeQL Action is the node version they support, with \u003ccode\u003ev3\u003c/code\u003e running on node 20 while we continue to release \u003ccode\u003ev2\u003c/code\u003e to support running on node 16. For example \u003ccode\u003e3.22.11\u003c/code\u003e was the first \u003ccode\u003ev3\u003c/code\u003e release and is functionally identical to \u003ccode\u003e2.22.11\u003c/code\u003e. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.\u003c/p\u003e\n\u003ch2\u003e[UNRELEASED]\u003c/h2\u003e\n\u003cp\u003eNo user facing changes.\u003c/p\u003e\n\u003ch2\u003e3.25.15 - 26 Jul 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to 2.18.1. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2385\"\u003e#2385\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.14 - 25 Jul 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eExperimental: add a new \u003ccode\u003estart-proxy\u003c/code\u003e action which starts the same HTTP proxy as used by \u003ca href\u003d\"https://github.com/github/dependabot-action\"\u003e\u003ccode\u003egithub/dependabot-action\u003c/code\u003e\u003c/a\u003e. Do not use this in production as it is part of an internal experiment and subject to change at any time.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.13 - 19 Jul 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ecodeql-version\u003c/code\u003e to outputs. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2368\"\u003e#2368\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a deprecation warning for customers using CodeQL version 2.13.4 and earlier. These versions of CodeQL were discontinued on 9 July 2024 alongside GitHub Enterprise Server 3.9, and will be unsupported by CodeQL Action versions 3.26.0 and later and versions 2.26.0 and later. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2375\"\u003e#2375\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eIf you are using one of these versions, please update to CodeQL CLI version 2.13.5 or later. For instance, if you have specified a custom version of the CLI using the \u0027tools\u0027 input to the \u0027init\u0027 Action, you can remove this input to use the default version.\u003c/li\u003e\n\u003cli\u003eAlternatively, if you want to continue using a version of the CodeQL CLI between 2.12.6 and 2.13.4, you can replace \u003ccode\u003egithub/codeql-action/*@v3\u003c/code\u003e by \u003ccode\u003egithub/codeql-action/*@v3.25.13\u003c/code\u003e and \u003ccode\u003egithub/codeql-action/*@v2\u003c/code\u003e by \u003ccode\u003egithub/codeql-action/*@v2.25.13\u003c/code\u003e in your code scanning workflow to ensure you continue using this version of the CodeQL Action.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.12 - 12 Jul 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the reliability and performance of analyzing code when analyzing a compiled language with the \u003ccode\u003eautobuild\u003c/code\u003e \u003ca href\u003d\"https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages#codeql-build-modes\"\u003ebuild mode\u003c/a\u003e on GitHub Enterprise Server. This feature is already available to GitHub.com users. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2353\"\u003e#2353\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to 2.18.0. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2364\"\u003e#2364\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.11 - 28 Jun 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAvoid failing the workflow run if there is an error while uploading debug artifacts. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2349\"\u003e#2349\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to 2.17.6. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2352\"\u003e#2352\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.10 - 13 Jun 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to 2.17.5. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2327\"\u003e#2327\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.9 - 12 Jun 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAvoid failing database creation if the database folder already exists and contains some unexpected files. Requires CodeQL 2.18.0 or higher. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2330\"\u003e#2330\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe init Action will attempt to clean up the database cluster directory before creating a new database and at the end of the job. This will help to avoid issues where the database cluster directory is left in an inconsistent state. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2332\"\u003e#2332\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.8 - 04 Jun 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to 2.17.4. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2321\"\u003e#2321\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.7 - 31 May 2024\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/afb54ba388a7dca6ecae48f608c4ff05ff4cc77a\"\u003e\u003ccode\u003eafb54ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/issues/2391\"\u003e#2391\u003c/a\u003e from github/update-v3.25.15-4b1d7da10\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/57a4b22c7d841087f9554367a1df5d1654ad7f58\"\u003e\u003ccode\u003e57a4b22\u003c/code\u003e\u003c/a\u003e Update changelog for v3.25.15\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/4b1d7da102ff94aca014c0245062b1a463356d72\"\u003e\u003ccode\u003e4b1d7da\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/issues/2385\"\u003e#2385\u003c/a\u003e from github/update-bundle/codeql-bundle-v2.18.1\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/97e8f6936878e35d1ab1aea8d48fd2eb80fd0ffc\"\u003e\u003ccode\u003e97e8f69\u003c/code\u003e\u003c/a\u003e Merge branch \u0027main\u0027 into update-bundle/codeql-bundle-v2.18.1\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/f8e94f97750f67eb20315a4c8d9e085db128b221\"\u003e\u003ccode\u003ef8e94f9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/issues/2389\"\u003e#2389\u003c/a\u003e from github/mergeback/v3.25.14-to-main-5cf07d8b\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/9e375a8f4f6c35a436d30c08d90e034f7ee6c9ee\"\u003e\u003ccode\u003e9e375a8\u003c/code\u003e\u003c/a\u003e Update checked-in dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/02d73d05447c3f282c80a9ce71dc56ba6cc59e38\"\u003e\u003ccode\u003e02d73d0\u003c/code\u003e\u003c/a\u003e Update changelog and version after v3.25.14\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/736528d92f71a5ff9a90f1c24da0b5959ef4dc13\"\u003e\u003ccode\u003e736528d\u003c/code\u003e\u003c/a\u003e Add changelog note\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/98042e78cab7d8b8cf7299b1a29d46068477f1bb\"\u003e\u003ccode\u003e98042e7\u003c/code\u003e\u003c/a\u003e Update default bundle to codeql-bundle-v2.18.1\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href\u003d\"https://github.com/github/codeql-action/compare/5cf07d8b700b67e235fbb65cbc84f69c0cf10464...afb54ba388a7dca6ecae48f608c4ff05ff4cc77a\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\u003cdetails\u003e\n\u003csummary\u003eMost Recent Ignore Conditions Applied to This Pull Request\u003c/summary\u003e\n\n| Dependency Name | Ignore Conditions |\n| --- | --- |\n| github/codeql-action | [\u003c 2.3.5, \u003e 2.3.4] |\n\u003c/details\u003e\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dgithub/codeql-action\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d3.25.14\u0026new-version\u003d3.25.15)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\u003c/details\u003e",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "8ba96f55f91f24324bc1093131304a6a2cc39126",
      "old_mode": 33188,
      "old_path": ".github/workflows/scorecards-analysis.yml",
      "new_id": "43e5b27b6c9af95f9550f8a7d762c169efbbfee7",
      "new_mode": 33188,
      "new_path": ".github/workflows/scorecards-analysis.yml"
    }
  ]
}