)]}'
{
  "commit": "c4e6f1fd04011c967796f595dd73ebbc4a4e3008",
  "tree": "5643199911e5be5b804efa6b324009f6b79a8f98",
  "parents": [
    "f85c3be4bf808add6ba867b8ff7943fd235b7b5e"
  ],
  "author": {
    "name": "dependabot[bot]",
    "email": "49699333+dependabot[bot]@users.noreply.github.com",
    "time": "Mon Sep 16 09:48:13 2024 +0000"
  },
  "committer": {
    "name": "GitHub",
    "email": "noreply@github.com",
    "time": "Mon Sep 16 09:48:13 2024 +0000"
  },
  "message": "Bump github/codeql-action from 3.26.6 to 3.26.7 (#895)\n\nBumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.6 to 3.26.7.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href\u003d\"https://github.com/github/codeql-action/blob/main/CHANGELOG.md\"\u003egithub/codeql-action\u0027s changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCodeQL Action Changelog\u003c/h1\u003e\n\u003cp\u003eSee the \u003ca href\u003d\"https://github.com/github/codeql-action/releases\"\u003ereleases page\u003c/a\u003e for the relevant changes to the CodeQL CLI and language packs.\u003c/p\u003e\n\u003cp\u003eNote that the only difference between \u003ccode\u003ev2\u003c/code\u003e and \u003ccode\u003ev3\u003c/code\u003e of the CodeQL Action is the node version they support, with \u003ccode\u003ev3\u003c/code\u003e running on node 20 while we continue to release \u003ccode\u003ev2\u003c/code\u003e to support running on node 16. For example \u003ccode\u003e3.22.11\u003c/code\u003e was the first \u003ccode\u003ev3\u003c/code\u003e release and is functionally identical to \u003ccode\u003e2.22.11\u003c/code\u003e. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.\u003c/p\u003e\n\u003ch2\u003e[UNRELEASED]\u003c/h2\u003e\n\u003cp\u003eNo user facing changes.\u003c/p\u003e\n\u003ch2\u003e3.26.7 - 13 Sep 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to 2.18.4. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2471\"\u003e#2471\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.26.6 - 29 Aug 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to 2.18.3. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2449\"\u003e#2449\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.26.5 - 23 Aug 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix an issue where the \u003ccode\u003ecsrutil\u003c/code\u003e system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2441\"\u003e#2441\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.26.4 - 21 Aug 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003eDeprecation:\u003c/em\u003e The \u003ccode\u003eadd-snippets\u003c/code\u003e input on the \u003ccode\u003eanalyze\u003c/code\u003e Action is deprecated and will be removed in the first release in August 2025. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2436\"\u003e#2436\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix an issue where the disk usage system call used for telemetry would fail on MacOS ARM machines with System Integrity Protection disabled, and then surface a warning. The system call is now disabled for these machines. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2434\"\u003e#2434\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.26.3 - 19 Aug 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix an issue where the CodeQL Action could not write diagnostic messages on Windows. This issue did not impact analysis quality. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2430\"\u003e#2430\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.26.2 - 14 Aug 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to 2.18.2. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2417\"\u003e#2417\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.26.1 - 13 Aug 2024\u003c/h2\u003e\n\u003cp\u003eNo user facing changes.\u003c/p\u003e\n\u003ch2\u003e3.26.0 - 06 Aug 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cem\u003eDeprecation:\u003c/em\u003e Swift analysis on Ubuntu runner images is no longer supported. Please migrate to a macOS runner if this affects you. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2403\"\u003e#2403\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the minimum CodeQL bundle version to 2.13.5. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2408\"\u003e#2408\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.15 - 26 Jul 2024\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate default CodeQL bundle version to 2.18.1. \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/pull/2385\"\u003e#2385\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e3.25.14 - 25 Jul 2024\u003c/h2\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/8214744c546c1e5c8f03dde8fab3a7353211988d\"\u003e\u003ccode\u003e8214744\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/issues/2478\"\u003e#2478\u003c/a\u003e from github/update-v3.26.7-4a01ec798\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/a3b3e07cecabba6fce92183951fcd7152dc3795d\"\u003e\u003ccode\u003ea3b3e07\u003c/code\u003e\u003c/a\u003e Update changelog for v3.26.7\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/4a01ec798636a8442fbe054c7795e139a5960d29\"\u003e\u003ccode\u003e4a01ec7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/issues/2474\"\u003e#2474\u003c/a\u003e from github/aeisenberg/always-upload-eslint-sarif\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/762dbaeeb79f3e01fe9f52f151cb17042dab7c84\"\u003e\u003ccode\u003e762dbae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/issues/2471\"\u003e#2471\u003c/a\u003e from github/update-bundle/codeql-bundle-v2.18.4\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/0d0f998f2891417c3609fda383e08753d605c77e\"\u003e\u003ccode\u003e0d0f998\u003c/code\u003e\u003c/a\u003e Always upload eslint.sarif\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/e817992b3db357f199b6e99216d3bf853dafd0fc\"\u003e\u003ccode\u003ee817992\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/issues/2469\"\u003e#2469\u003c/a\u003e from github/aeisenberg/upload-eslint-sarif\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/49021ad7f5a68089739ccf2e66e25b7e531c6bcf\"\u003e\u003ccode\u003e49021ad\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href\u003d\"https://redirect.github.com/github/codeql-action/issues/2472\"\u003e#2472\u003c/a\u003e from rvermeulen/rvermeulen/update-release-branch-authz\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/56b841888472b4f479ef3b9c0643f73434756177\"\u003e\u003ccode\u003e56b8418\u003c/code\u003e\u003c/a\u003e Ignore suppressed alerts\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/f824adbf9bf63ebfa2c4278e0637d65d20b4ddbb\"\u003e\u003ccode\u003ef824adb\u003c/code\u003e\u003c/a\u003e Merge branch \u0027main\u0027 into rvermeulen/update-release-branch-authz\u003c/li\u003e\n\u003cli\u003e\u003ca href\u003d\"https://github.com/github/codeql-action/commit/8d9ed0b40e24a3209eda0edca170ba215148ed22\"\u003e\u003ccode\u003e8d9ed0b\u003c/code\u003e\u003c/a\u003e Add changelog note\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href\u003d\"https://github.com/github/codeql-action/compare/4dd16135b69a43b6c8efb853346f8437d92d3c93...8214744c546c1e5c8f03dde8fab3a7353211988d\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\u003cdetails\u003e\n\u003csummary\u003eMost Recent Ignore Conditions Applied to This Pull Request\u003c/summary\u003e\n\n| Dependency Name | Ignore Conditions |\n| --- | --- |\n| github/codeql-action | [\u003c 2.3.5, \u003e 2.3.4] |\n\u003c/details\u003e\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dgithub/codeql-action\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d3.26.6\u0026new-version\u003d3.26.7)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\u003c/details\u003e",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "faf55703fb71385b75c1c86262aad5e76c951220",
      "old_mode": 33188,
      "old_path": ".github/workflows/scorecards-analysis.yml",
      "new_id": "eac1a13c18af8451278fd00f891cc7a9be97cd88",
      "new_mode": 33188,
      "new_path": ".github/workflows/scorecards-analysis.yml"
    }
  ]
}