Skip to content

chore(deps): bump github/codeql-action from 4.31.7 to 4.31.8#5466

Merged
antonis merged 2 commits intomainfrom
dependabot/github_actions/github/codeql-action-4.31.8
Dec 15, 2025
Merged

chore(deps): bump github/codeql-action from 4.31.7 to 4.31.8#5466
antonis merged 2 commits intomainfrom
dependabot/github_actions/github/codeql-action-4.31.8

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 15, 2025

Bumps github/codeql-action from 4.31.7 to 4.31.8.

Release notes

Sourced from github/codeql-action's releases.

v4.31.8

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

4.31.8 - 11 Dec 2025

  • Update default CodeQL bundle version to 2.23.8. #3354

See the full CHANGELOG.md for more information.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

4.31.8 - 11 Dec 2025

  • Update default CodeQL bundle version to 2.23.8. #3354

4.31.7 - 05 Dec 2025

  • Update default CodeQL bundle version to 2.23.7. #3343

4.31.6 - 01 Dec 2025

No user facing changes.

4.31.5 - 24 Nov 2025

  • Update default CodeQL bundle version to 2.23.6. #3321

4.31.4 - 18 Nov 2025

No user facing changes.

4.31.3 - 13 Nov 2025

  • CodeQL Action v3 will be deprecated in December 2026. The Action now logs a warning for customers who are running v3 but could be running v4. For more information, see Upcoming deprecation of CodeQL Action v3.
  • Update default CodeQL bundle version to 2.23.5. #3288

4.31.2 - 30 Oct 2025

No user facing changes.

4.31.1 - 30 Oct 2025

  • The add-snippets input has been removed from the analyze action. This input has been deprecated since CodeQL Action 3.26.4 in August 2024 when this removal was announced.

4.31.0 - 24 Oct 2025

  • Bump minimum CodeQL bundle version to 2.17.6. #3223
  • When SARIF files are uploaded by the analyze or upload-sarif actions, the CodeQL Action automatically performs post-processing steps to prepare the data for the upload. Previously, these post-processing steps were only performed before an upload took place. We are now changing this so that the post-processing steps will always be performed, even when the SARIF files are not uploaded. This does not change anything for the upload-sarif action. For analyze, this may affect Advanced Setup for CodeQL users who specify a value other than always for the upload input. #3222

4.30.9 - 17 Oct 2025

  • Update default CodeQL bundle version to 2.23.3. #3205
  • Experimental: A new setup-codeql action has been added which is similar to init, except it only installs the CodeQL CLI and does not initialize a database. Do not use this in production as it is part of an internal experiment and subject to change at any time. #3204

... (truncated)

Commits
  • 1b168cd Merge pull request #3355 from github/update-v4.31.8-1b0b941e1
  • 120f277 Update changelog for v4.31.8
  • 1b0b941 Merge pull request #3354 from github/update-bundle/codeql-bundle-v2.23.8
  • db812c1 Add changelog note
  • 2930dba Update default bundle to codeql-bundle-v2.23.8
  • c43362b Merge pull request #3340 from github/kaspersv/check-for-overlayBaseSpecifier
  • 002a7f2 Overlay: log overlayBaseSpecifier at debug log-level
  • 5b7e7fc Update src/codeql.ts
  • 149d184 Merge pull request #3345 from github/mergeback/v4.31.7-to-main-cf1bb45a
  • 97c2630 Rebuild
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump github/codeql-action from 4.31.7 to 4.31.8
f002837 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.31.7 to 4.31.8.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@cf1bb45...1b168cd)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.31.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Dec 15, 2025
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Dec 15, 2025
@antonis antonis added the ready-to-merge Triggers the full CI test suite label Dec 15, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Dec 15, 2025
edited
Loading

Android (legacy) Performance metrics 🚀

  Plain With Sentry Diff
Startup time 406.54 ms 427.82 ms 21.28 ms
Size 43.75 MiB 48.07 MiB 4.32 MiB

Baseline results on branch: main

Startup times

Revision Plain With Sentry Diff
652f785+dirty 401.02 ms 420.60 ms 19.58 ms
77061ed+dirty 369.55 ms 408.35 ms 38.80 ms
a206511+dirty 424.28 ms 474.82 ms 50.54 ms
b3b5b0d 399.82 ms 419.20 ms 19.38 ms
c4e097a 338.06 ms 439.36 ms 101.30 ms
136effd+dirty 398.57 ms 494.91 ms 96.34 ms
f17e051+dirty 396.23 ms 444.02 ms 47.79 ms
8490686+dirty 365.59 ms 400.24 ms 34.65 ms
a0b15d6 423.06 ms 437.77 ms 14.71 ms
bc9680d 375.15 ms 401.12 ms 25.97 ms

App size

Revision Plain With Sentry Diff
652f785+dirty 43.75 MiB 47.99 MiB 4.24 MiB
77061ed+dirty 17.75 MiB 19.68 MiB 1.94 MiB
a206511+dirty 43.75 MiB 48.07 MiB 4.32 MiB
b3b5b0d 17.75 MiB 19.68 MiB 1.94 MiB
c4e097a 17.75 MiB 19.68 MiB 1.94 MiB
136effd+dirty 43.75 MiB 47.99 MiB 4.23 MiB
f17e051+dirty 43.75 MiB 48.07 MiB 4.32 MiB
8490686+dirty 17.75 MiB 19.70 MiB 1.96 MiB
a0b15d6 17.75 MiB 20.15 MiB 2.41 MiB
bc9680d 17.75 MiB 20.15 MiB 2.41 MiB

@github-actions
Copy link
Contributor

github-actions bot commented Dec 15, 2025
edited
Loading

Android (new) Performance metrics 🚀

  Plain With Sentry Diff
Startup time 427.92 ms 473.26 ms 45.34 ms
Size 43.94 MiB 48.90 MiB 4.96 MiB

Baseline results on branch: main

Startup times

Revision Plain With Sentry Diff
0b64753+dirty 358.55 ms 429.16 ms 70.61 ms
652f785+dirty 367.80 ms 390.71 ms 22.91 ms
3e0a5f9+dirty 379.92 ms 450.96 ms 71.04 ms
a02e30b+dirty 346.13 ms 381.76 ms 35.62 ms
e2fa43d+dirty 326.56 ms 372.88 ms 46.32 ms
a206511+dirty 331.54 ms 356.98 ms 25.44 ms
7480abe+dirty 363.80 ms 431.34 ms 67.54 ms
d916aa3+dirty 411.72 ms 451.76 ms 40.03 ms
534ba8c+dirty 472.35 ms 537.31 ms 64.96 ms
136effd+dirty 451.30 ms 450.87 ms -0.43 ms

App size

Revision Plain With Sentry Diff
0b64753+dirty 7.15 MiB 8.42 MiB 1.27 MiB
652f785+dirty 43.94 MiB 48.82 MiB 4.88 MiB
3e0a5f9+dirty 7.15 MiB 8.42 MiB 1.27 MiB
a02e30b+dirty 7.15 MiB 8.42 MiB 1.27 MiB
e2fa43d+dirty 7.15 MiB 8.42 MiB 1.27 MiB
a206511+dirty 43.94 MiB 48.90 MiB 4.96 MiB
7480abe+dirty 7.15 MiB 8.41 MiB 1.26 MiB
d916aa3+dirty 7.15 MiB 8.42 MiB 1.27 MiB
534ba8c+dirty 7.15 MiB 8.42 MiB 1.27 MiB
136effd+dirty 43.94 MiB 48.81 MiB 4.88 MiB

@github-actions
Copy link
Contributor

github-actions bot commented Dec 15, 2025
edited
Loading

iOS (legacy) Performance metrics 🚀

  Plain With Sentry Diff
Startup time 1200.15 ms 1214.51 ms 14.36 ms
Size 3.41 MiB 4.67 MiB 1.25 MiB

Baseline results on branch: main

Startup times

Revision Plain With Sentry Diff
8490686+dirty 1227.84 ms 1228.91 ms 1.08 ms
c1573b3+dirty 1203.33 ms 1202.47 ms -0.86 ms
526494a+dirty 1210.20 ms 1203.13 ms -7.08 ms
161947d+dirty 1203.43 ms 1217.00 ms 13.57 ms
e76d0d3+dirty 1223.04 ms 1216.80 ms -6.24 ms
a2bb688+dirty 1223.53 ms 1232.90 ms 9.37 ms
fa7bb7e+dirty 1216.23 ms 1225.04 ms 8.81 ms
af9331b+dirty 1233.61 ms 1230.50 ms -3.11 ms
55b77fc+dirty 1223.71 ms 1224.12 ms 0.41 ms
8d20c8e+dirty 1216.62 ms 1220.31 ms 3.69 ms

App size

Revision Plain With Sentry Diff
8490686+dirty 2.63 MiB 4.00 MiB 1.36 MiB
c1573b3+dirty 2.63 MiB 3.81 MiB 1.18 MiB
526494a+dirty 3.41 MiB 4.58 MiB 1.17 MiB
161947d+dirty 2.63 MiB 3.99 MiB 1.36 MiB
e76d0d3+dirty 2.63 MiB 4.00 MiB 1.37 MiB
a2bb688+dirty 2.63 MiB 3.99 MiB 1.36 MiB
fa7bb7e+dirty 2.63 MiB 4.01 MiB 1.38 MiB
af9331b+dirty 2.63 MiB 3.91 MiB 1.28 MiB
55b77fc+dirty 3.41 MiB 4.58 MiB 1.17 MiB
8d20c8e+dirty 3.41 MiB 4.57 MiB 1.16 MiB

@github-actions
Copy link
Contributor

github-actions bot commented Dec 15, 2025
edited
Loading

iOS (new) Performance metrics 🚀

  Plain With Sentry Diff
Startup time 1216.32 ms 1219.30 ms 2.98 ms
Size 3.41 MiB 4.67 MiB 1.25 MiB

Baseline results on branch: main

Startup times

Revision Plain With Sentry Diff
8490686+dirty 1227.32 ms 1240.82 ms 13.50 ms
c1573b3+dirty 1245.69 ms 1245.48 ms -0.21 ms
526494a+dirty 1220.96 ms 1221.57 ms 0.61 ms
161947d+dirty 1203.45 ms 1217.83 ms 14.38 ms
e76d0d3+dirty 1229.94 ms 1228.04 ms -1.90 ms
a2bb688+dirty 1244.82 ms 1238.60 ms -6.22 ms
fa7bb7e+dirty 1226.27 ms 1241.88 ms 15.61 ms
af9331b+dirty 1230.08 ms 1233.24 ms 3.16 ms
55b77fc+dirty 1213.08 ms 1218.19 ms 5.11 ms
8d20c8e+dirty 1223.60 ms 1223.87 ms 0.27 ms

App size

Revision Plain With Sentry Diff
8490686+dirty 3.19 MiB 4.56 MiB 1.38 MiB
c1573b3+dirty 3.19 MiB 4.38 MiB 1.19 MiB
526494a+dirty 3.41 MiB 4.58 MiB 1.17 MiB
161947d+dirty 3.19 MiB 4.56 MiB 1.37 MiB
e76d0d3+dirty 3.19 MiB 4.57 MiB 1.38 MiB
a2bb688+dirty 3.19 MiB 4.56 MiB 1.37 MiB
fa7bb7e+dirty 3.19 MiB 4.58 MiB 1.39 MiB
af9331b+dirty 3.19 MiB 4.48 MiB 1.29 MiB
55b77fc+dirty 3.41 MiB 4.58 MiB 1.17 MiB
8d20c8e+dirty 3.41 MiB 4.57 MiB 1.16 MiB

@antonis antonis enabled auto-merge (squash) December 15, 2025 10:00
@antonis antonis merged commit a955ebb into main Dec 15, 2025
69 of 70 checks passed
@antonis antonis deleted the dependabot/github_actions/github/codeql-action-4.31.8 branch December 15, 2025 10:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@antonis antonis antonis approved these changes

@alwx alwx Awaiting requested review from alwx alwx is a code owner

@lucas-zimerman lucas-zimerman Awaiting requested review from lucas-zimerman lucas-zimerman is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code ready-to-merge Triggers the full CI test suite

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@antonis