Skip to content

chore: github actions update(deps): bump github/codeql-action from 4.35.1 to 4.35.2 in /.github/workflows in the version-updates group#327

Merged
mrlunchbox777 merged 2 commits intomainfrom
dependabot/github_actions/dot-github/workflows/version-updates-f3e34333ea
Apr 22, 2026
Merged

chore: github actions update(deps): bump github/codeql-action from 4.35.1 to 4.35.2 in /.github/workflows in the version-updates group#327
mrlunchbox777 merged 2 commits intomainfrom
dependabot/github_actions/dot-github/workflows/version-updates-f3e34333ea

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 22, 2026

Bumps the version-updates group in /.github/workflows with 1 update: github/codeql-action.

Updates github/codeql-action from 4.35.1 to 4.35.2

Release notes

Sourced from github/codeql-action's releases.

v4.35.2

  • The undocumented TRAP cache cleanup feature that could be enabled using the CODEQL_ACTION_CLEANUP_TRAP_CACHES environment variable is deprecated and will be removed in May 2026. If you are affected by this, we recommend disabling TRAP caching by passing the trap-caching: false input to the init Action. #3795
  • The Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. #3789
  • Python analysis on GHES no longer extracts the standard library, relying instead on models of the standard library. This should result in significantly faster extraction and analysis times, while the effect on alerts should be minimal. #3794
  • Fixed a bug in the validation of OIDC configurations for private registries that was added in CodeQL Action 4.33.0 / 3.33.0. #3807
  • Update default CodeQL bundle version to 2.25.2. #3823
Changelog

Sourced from github/codeql-action's changelog.

4.35.2 - 15 Apr 2026

  • The undocumented TRAP cache cleanup feature that could be enabled using the CODEQL_ACTION_CLEANUP_TRAP_CACHES environment variable is deprecated and will be removed in May 2026. If you are affected by this, we recommend disabling TRAP caching by passing the trap-caching: false input to the init Action. #3795
  • The Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. #3789
  • Python analysis on GHES no longer extracts the standard library, relying instead on models of the standard library. This should result in significantly faster extraction and analysis times, while the effect on alerts should be minimal. #3794
  • Fixed a bug in the validation of OIDC configurations for private registries that was added in CodeQL Action 4.33.0 / 3.33.0. #3807
  • Update default CodeQL bundle version to 2.25.2. #3823
Commits
  • 95e58e9 Merge pull request #3824 from github/update-v4.35.2-d2e135a73
  • 6f31bfe Update changelog for v4.35.2
  • d2e135a Merge pull request #3823 from github/update-bundle/codeql-bundle-v2.25.2
  • 60abb65 Add changelog note
  • 5a0a562 Update default bundle to codeql-bundle-v2.25.2
  • 6521697 Merge pull request #3820 from github/dependabot/github_actions/dot-github/wor...
  • 3c45af2 Merge pull request #3821 from github/dependabot/npm_and_yarn/npm-minor-345b93...
  • f1c3393 Rebuild
  • 1024fc4 Rebuild
  • 9dd4cfe Bump the npm-minor group across 1 directory with 6 updates
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore: github actions update(deps): bump github/codeql-action
b6ff48b 
Bumps the version-updates group in /.github/workflows with 1 update: [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/codeql-action` from 4.35.1 to 4.35.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@v4.35.1...v4.35.2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: version-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added changes/meta .github file changes kind/chore Chore to be completed, e.g. renovate priority/1 Highest priority status/review Ready for review labels Apr 22, 2026
@dependabot dependabot Bot requested a review from mrlunchbox777 as a code owner April 22, 2026 10:35
@dependabot dependabot Bot added kind/chore Chore to be completed, e.g. renovate changes/meta .github file changes priority/1 Highest priority status/review Ready for review labels Apr 22, 2026
@github-actions github-actions Bot added the size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. label Apr 22, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Apr 22, 2026

Thank you for being part of our community and opening a pull request. We will work with you as soon as possible to integrate your contribution.

mrlunchbox777
mrlunchbox777 approved these changes Apr 22, 2026
View reviewed changes
Copy link
Copy Markdown
Owner

@mrlunchbox777 mrlunchbox777 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm

@github-actions github-actions Bot added the size/S Denotes a PR that changes 10-29 lines, ignoring generated files. label Apr 22, 2026
@mrlunchbox777 mrlunchbox777 enabled auto-merge (squash) April 22, 2026 14:05
@github-actions github-actions Bot added changes/documentation Documentation file changes size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. changes/root Root file changes changes/resources Resources file changes and removed size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Apr 22, 2026
@mrlunchbox777 mrlunchbox777 disabled auto-merge April 22, 2026 14:12
@mrlunchbox777 mrlunchbox777 merged commit e5cbf97 into main Apr 22, 2026
8 checks passed
@mrlunchbox777 mrlunchbox777 deleted the dependabot/github_actions/dot-github/workflows/version-updates-f3e34333ea branch April 22, 2026 14:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mrlunchbox777 mrlunchbox777 mrlunchbox777 approved these changes

Assignees

No one assigned

Labels

changes/documentation Documentation file changes changes/meta .github file changes changes/resources Resources file changes changes/root Root file changes kind/chore Chore to be completed, e.g. renovate priority/1 Highest priority size/S Denotes a PR that changes 10-29 lines, ignoring generated files. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. status/review Ready for review

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mrlunchbox777