From c3f90ba975e427c1913b529a89ef97a2442493f2 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Fri, 20 Mar 2026 11:56:24 +0000 Subject: [PATCH 1/5] Update changelog and version after v4.34.0 --- CHANGELOG.md | 4 ++++ package-lock.json | 4 ++-- package.json | 2 +- 3 files changed, 7 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 53d19355cb..2bfb758fe2 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -2,6 +2,10 @@ See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. +## [UNRELEASED] + +No user facing changes. + ## 4.34.0 - 20 Mar 2026 - Added an experimental change which disables TRAP caching when [improved incremental analysis](https://github.com/github/roadmap/issues/1158) is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. [#3569](https://github.com/github/codeql-action/pull/3569) diff --git a/package-lock.json b/package-lock.json index 0f253eac79..fd50a65398 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "codeql", - "version": "4.34.0", + "version": "4.34.1", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "codeql", - "version": "4.34.0", + "version": "4.34.1", "license": "MIT", "workspaces": [ "pr-checks" diff --git a/package.json b/package.json index dadfb87c9c..f4360692ba 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "codeql", - "version": "4.34.0", + "version": "4.34.1", "private": true, "description": "CodeQL action", "scripts": { From 89f0c86efa3acf01faeff510383f0c4a4152760a Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Fri, 20 Mar 2026 12:03:59 +0000 Subject: [PATCH 2/5] Rebuild --- lib/analyze-action-post.js | 2 +- lib/analyze-action.js | 2 +- lib/autobuild-action.js | 2 +- lib/init-action-post.js | 2 +- lib/init-action.js | 2 +- lib/resolve-environment-action.js | 2 +- lib/setup-codeql-action.js | 2 +- lib/start-proxy-action-post.js | 2 +- lib/start-proxy-action.js | 2 +- lib/upload-lib.js | 2 +- lib/upload-sarif-action-post.js | 2 +- lib/upload-sarif-action.js | 2 +- 12 files changed, 12 insertions(+), 12 deletions(-) diff --git a/lib/analyze-action-post.js b/lib/analyze-action-post.js index 02a6ff7ca8..36fb1d63bc 100644 --- a/lib/analyze-action-post.js +++ b/lib/analyze-action-post.js @@ -161527,7 +161527,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); diff --git a/lib/analyze-action.js b/lib/analyze-action.js index f5c90bc1e6..a2f0fe787e 100644 --- a/lib/analyze-action.js +++ b/lib/analyze-action.js @@ -106696,7 +106696,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); diff --git a/lib/autobuild-action.js b/lib/autobuild-action.js index 90354b765c..d117cd12a0 100644 --- a/lib/autobuild-action.js +++ b/lib/autobuild-action.js @@ -103501,7 +103501,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); diff --git a/lib/init-action-post.js b/lib/init-action-post.js index 7119b5d06c..eb0b4e524d 100644 --- a/lib/init-action-post.js +++ b/lib/init-action-post.js @@ -164635,7 +164635,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); diff --git a/lib/init-action.js b/lib/init-action.js index 1038796448..c07395956b 100644 --- a/lib/init-action.js +++ b/lib/init-action.js @@ -104063,7 +104063,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); diff --git a/lib/resolve-environment-action.js b/lib/resolve-environment-action.js index ffbc05b116..9b2f85f4d5 100644 --- a/lib/resolve-environment-action.js +++ b/lib/resolve-environment-action.js @@ -103509,7 +103509,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); diff --git a/lib/setup-codeql-action.js b/lib/setup-codeql-action.js index b35c4327ed..ef9691fbc0 100644 --- a/lib/setup-codeql-action.js +++ b/lib/setup-codeql-action.js @@ -103606,7 +103606,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); diff --git a/lib/start-proxy-action-post.js b/lib/start-proxy-action-post.js index d64b65a961..e397ef33a3 100644 --- a/lib/start-proxy-action-post.js +++ b/lib/start-proxy-action-post.js @@ -161479,7 +161479,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } var persistedInputsKey = "persisted_inputs"; var restoreInputs = function() { diff --git a/lib/start-proxy-action.js b/lib/start-proxy-action.js index a50104cdea..d4f48fd06e 100644 --- a/lib/start-proxy-action.js +++ b/lib/start-proxy-action.js @@ -120658,7 +120658,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); diff --git a/lib/upload-lib.js b/lib/upload-lib.js index 53d3b96b02..e154706f51 100644 --- a/lib/upload-lib.js +++ b/lib/upload-lib.js @@ -106402,7 +106402,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); diff --git a/lib/upload-sarif-action-post.js b/lib/upload-sarif-action-post.js index 9c917db642..022a7068c0 100644 --- a/lib/upload-sarif-action-post.js +++ b/lib/upload-sarif-action-post.js @@ -161479,7 +161479,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } var persistedInputsKey = "persisted_inputs"; var restoreInputs = function() { diff --git a/lib/upload-sarif-action.js b/lib/upload-sarif-action.js index af1f098141..ca5ccf6d26 100644 --- a/lib/upload-sarif-action.js +++ b/lib/upload-sarif-action.js @@ -106430,7 +106430,7 @@ function getTemporaryDirectory() { return value !== void 0 && value !== "" ? value : getRequiredEnvParam("RUNNER_TEMP"); } function getActionVersion() { - return "4.34.0"; + return "4.34.1"; } function getWorkflowEventName() { return getRequiredEnvParam("GITHUB_EVENT_NAME"); From 51a1d6917f5d33f400200c675401974da443b2ea Mon Sep 17 00:00:00 2001 From: Henry Mercer Date: Fri, 20 Mar 2026 16:45:20 +0000 Subject: [PATCH 3/5] Downgrade default bundle to codeql-bundle-v2.24.3 --- lib/analyze-action.js | 4 ++-- lib/autobuild-action.js | 4 ++-- lib/defaults.json | 8 ++++---- lib/init-action-post.js | 4 ++-- lib/init-action.js | 4 ++-- lib/setup-codeql-action.js | 4 ++-- lib/start-proxy-action.js | 4 ++-- lib/upload-lib.js | 4 ++-- lib/upload-sarif-action.js | 4 ++-- src/defaults.json | 8 ++++---- 10 files changed, 24 insertions(+), 24 deletions(-) diff --git a/lib/analyze-action.js b/lib/analyze-action.js index a2f0fe787e..fd3e677e2d 100644 --- a/lib/analyze-action.js +++ b/lib/analyze-action.js @@ -107636,8 +107636,8 @@ var path5 = __toESM(require("path")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.0"; -var cliVersion = "2.25.0"; +var bundleVersion = "codeql-bundle-v2.24.3"; +var cliVersion = "2.24.3"; // src/overlay/index.ts var fs3 = __toESM(require("fs")); diff --git a/lib/autobuild-action.js b/lib/autobuild-action.js index d117cd12a0..ebf0ba9d2a 100644 --- a/lib/autobuild-action.js +++ b/lib/autobuild-action.js @@ -104104,8 +104104,8 @@ var path3 = __toESM(require("path")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.0"; -var cliVersion = "2.25.0"; +var bundleVersion = "codeql-bundle-v2.24.3"; +var cliVersion = "2.24.3"; // src/overlay/index.ts var fs2 = __toESM(require("fs")); diff --git a/lib/defaults.json b/lib/defaults.json index c327217afe..9b6ec84bd4 100644 --- a/lib/defaults.json +++ b/lib/defaults.json @@ -1,6 +1,6 @@ { - "bundleVersion": "codeql-bundle-v2.25.0", - "cliVersion": "2.25.0", - "priorBundleVersion": "codeql-bundle-v2.24.3", - "priorCliVersion": "2.24.3" + "bundleVersion": "codeql-bundle-v2.24.3", + "cliVersion": "2.24.3", + "priorBundleVersion": "codeql-bundle-v2.24.2", + "priorCliVersion": "2.24.2" } diff --git a/lib/init-action-post.js b/lib/init-action-post.js index eb0b4e524d..e072fd87b1 100644 --- a/lib/init-action-post.js +++ b/lib/init-action-post.js @@ -165530,8 +165530,8 @@ var path5 = __toESM(require("path")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.0"; -var cliVersion = "2.25.0"; +var bundleVersion = "codeql-bundle-v2.24.3"; +var cliVersion = "2.24.3"; // src/overlay/index.ts var fs3 = __toESM(require("fs")); diff --git a/lib/init-action.js b/lib/init-action.js index c07395956b..563de2ca38 100644 --- a/lib/init-action.js +++ b/lib/init-action.js @@ -105163,8 +105163,8 @@ var path6 = __toESM(require("path")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.0"; -var cliVersion = "2.25.0"; +var bundleVersion = "codeql-bundle-v2.24.3"; +var cliVersion = "2.24.3"; // src/overlay/index.ts var fs3 = __toESM(require("fs")); diff --git a/lib/setup-codeql-action.js b/lib/setup-codeql-action.js index ef9691fbc0..3cb43bd652 100644 --- a/lib/setup-codeql-action.js +++ b/lib/setup-codeql-action.js @@ -103961,8 +103961,8 @@ var path4 = __toESM(require("path")); var semver4 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.0"; -var cliVersion = "2.25.0"; +var bundleVersion = "codeql-bundle-v2.24.3"; +var cliVersion = "2.24.3"; // src/overlay/index.ts var fs3 = __toESM(require("fs")); diff --git a/lib/start-proxy-action.js b/lib/start-proxy-action.js index d4f48fd06e..33bd1e9a55 100644 --- a/lib/start-proxy-action.js +++ b/lib/start-proxy-action.js @@ -120905,8 +120905,8 @@ var path = __toESM(require("path")); var semver4 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.0"; -var cliVersion = "2.25.0"; +var bundleVersion = "codeql-bundle-v2.24.3"; +var cliVersion = "2.24.3"; // src/overlay/index.ts var actionsCache = __toESM(require_cache5()); diff --git a/lib/upload-lib.js b/lib/upload-lib.js index e154706f51..920f619397 100644 --- a/lib/upload-lib.js +++ b/lib/upload-lib.js @@ -107221,8 +107221,8 @@ var path5 = __toESM(require("path")); var semver5 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.0"; -var cliVersion = "2.25.0"; +var bundleVersion = "codeql-bundle-v2.24.3"; +var cliVersion = "2.24.3"; // src/overlay/index.ts var fs3 = __toESM(require("fs")); diff --git a/lib/upload-sarif-action.js b/lib/upload-sarif-action.js index ca5ccf6d26..bacb624fbf 100644 --- a/lib/upload-sarif-action.js +++ b/lib/upload-sarif-action.js @@ -106902,8 +106902,8 @@ var path4 = __toESM(require("path")); var semver4 = __toESM(require_semver2()); // src/defaults.json -var bundleVersion = "codeql-bundle-v2.25.0"; -var cliVersion = "2.25.0"; +var bundleVersion = "codeql-bundle-v2.24.3"; +var cliVersion = "2.24.3"; // src/overlay/index.ts var fs3 = __toESM(require("fs")); diff --git a/src/defaults.json b/src/defaults.json index c327217afe..9b6ec84bd4 100644 --- a/src/defaults.json +++ b/src/defaults.json @@ -1,6 +1,6 @@ { - "bundleVersion": "codeql-bundle-v2.25.0", - "cliVersion": "2.25.0", - "priorBundleVersion": "codeql-bundle-v2.24.3", - "priorCliVersion": "2.24.3" + "bundleVersion": "codeql-bundle-v2.24.3", + "cliVersion": "2.24.3", + "priorBundleVersion": "codeql-bundle-v2.24.2", + "priorCliVersion": "2.24.2" } From 47b94fe61cd788995769140a7a8adffec0738aa1 Mon Sep 17 00:00:00 2001 From: Henry Mercer Date: Fri, 20 Mar 2026 16:46:45 +0000 Subject: [PATCH 4/5] Add changelog note --- CHANGELOG.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 2bfb758fe2..ca71131fe8 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -4,7 +4,7 @@ See the [releases page](https://github.com/github/codeql-action/releases) for th ## [UNRELEASED] -No user facing changes. +- Downgrade default CodeQL bundle version to [2.24.3](https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3) due to issues with a small percentage of Actions and JavaScript analyses. [#3762](https://github.com/github/codeql-action/pull/3762) ## 4.34.0 - 20 Mar 2026 From 20e68ac12bc8d1eb16a56d3ef4e78263197d2e47 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Fri, 20 Mar 2026 17:33:39 +0000 Subject: [PATCH 5/5] Update changelog for v4.34.1 --- CHANGELOG.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index ca71131fe8..3ecc315318 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -2,7 +2,7 @@ See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. -## [UNRELEASED] +## 4.34.1 - 20 Mar 2026 - Downgrade default CodeQL bundle version to [2.24.3](https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.24.3) due to issues with a small percentage of Actions and JavaScript analyses. [#3762](https://github.com/github/codeql-action/pull/3762)