Compare commits

..

3 Commits

Author SHA1 Message Date
dependabot[bot]
2306d3ce16 build(deps): bump the codeql-actions group with 2 updates
Bumps the codeql-actions group with 2 updates: [github/codeql-action/init](https://github.com/github/codeql-action) and [github/codeql-action/analyze](https://github.com/github/codeql-action).


Updates `github/codeql-action/init` from 4.36.2 to 4.36.3
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](8aad20d150...54f647b7e1)

Updates `github/codeql-action/analyze` from 4.36.2 to 4.36.3
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](8aad20d150...54f647b7e1)

---
updated-dependencies:
- dependency-name: github/codeql-action/init
  dependency-version: 4.36.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: codeql-actions
- dependency-name: github/codeql-action/analyze
  dependency-version: 4.36.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: codeql-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
2026-07-09 12:02:05 +00:00
CrazyMax
5b9cf3909b Merge pull request #588 from crazy-max/group-codeql-dependabot-updates
chore: group codeql dependabot updates
2026-07-09 13:58:44 +02:00
CrazyMax
732ad0c7e0 chore: group codeql dependabot updates
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
2026-07-09 12:43:17 +02:00
7 changed files with 88 additions and 97 deletions

View File

@@ -10,6 +10,9 @@ updates:
crazy-max-dot-github:
patterns:
- "crazy-max/.github/*"
codeql-actions:
patterns:
- "github/codeql-action/*"
labels:
- "dependencies"
- "bot"

View File

@@ -35,12 +35,12 @@ jobs:
node-version: ${{ env.NODE_VERSION }}
-
name: Initialize CodeQL
uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
uses: github/codeql-action/init@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3
with:
languages: javascript-typescript
build-mode: none
-
name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2
uses: github/codeql-action/analyze@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3
with:
category: "/language:javascript-typescript"

150
dist/index.cjs generated vendored

File diff suppressed because one or more lines are too long

8
dist/index.cjs.map generated vendored

File diff suppressed because one or more lines are too long

5
dist/licenses.txt generated vendored
View File

@@ -1790,12 +1790,11 @@ SOFTWARE.
-----------
The following npm packages may be included in this product:
The following npm package may be included in this product:
- js-yaml@5.2.0
- js-yaml@5.2.1
These packages each contain the following license:
This package contains the following license:
(The MIT License)

View File

@@ -25,7 +25,7 @@
"dependencies": {
"@actions/core": "^3.0.1",
"@docker/actions-toolkit": "^0.92.0",
"js-yaml": "^5.2.1"
"js-yaml": "^5.2.0"
},
"devDependencies": {
"@eslint/js": "^9.39.3",

View File

@@ -2840,7 +2840,7 @@ __metadata:
eslint-plugin-prettier: "npm:^5.5.5"
generate-license-file: "npm:^4.1.1"
globals: "npm:^17.3.0"
js-yaml: "npm:^5.2.1"
js-yaml: "npm:^5.2.0"
prettier: "npm:^3.8.1"
typescript: "npm:^5.9.3"
vitest: "npm:^4.0.18"
@@ -4008,17 +4008,6 @@ __metadata:
languageName: node
linkType: hard
"js-yaml@npm:^5.2.1":
version: 5.2.1
resolution: "js-yaml@npm:5.2.1"
dependencies:
argparse: "npm:^2.0.1"
bin:
js-yaml: bin/js-yaml.mjs
checksum: 10/e1eca2d21c15572585bb236d9fde31d6789eb50b9c63e8753fa7e0777bc480f7521cad517bd7a0c66f27dfc27ddcd7100beeefa51c1a50e10e98f2e009633c3d
languageName: node
linkType: hard
"jsbn@npm:1.1.0":
version: 1.1.0
resolution: "jsbn@npm:1.1.0"