Releases: github/codeql-action
Releases · github/codeql-action
v4.35.2
Immutable
release. Only release title and notes can be modified.
- The undocumented TRAP cache cleanup feature that could be enabled using the
CODEQL_ACTION_CLEANUP_TRAP_CACHESenvironment variable is deprecated and will be removed in May 2026. If you are affected by this, we recommend disabling TRAP caching by passing thetrap-caching: falseinput to theinitAction. #3795 - The Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. #3789
- Python analysis on GHES no longer extracts the standard library, relying instead on models of the standard library. This should result in significantly faster extraction and analysis times, while the effect on alerts should be minimal. #3794
- Fixed a bug in the validation of OIDC configurations for private registries that was added in CodeQL Action 4.33.0 / 3.33.0. #3807
- Update default CodeQL bundle version to 2.25.2. #3823
v3.35.2
Immutable
release. Only release title and notes can be modified.
- The undocumented TRAP cache cleanup feature that could be enabled using the
CODEQL_ACTION_CLEANUP_TRAP_CACHESenvironment variable is deprecated and will be removed in May 2026. If you are affected by this, we recommend disabling TRAP caching by passing thetrap-caching: falseinput to theinitAction. #3795 - The Git version 2.36.0 requirement for improved incremental analysis now only applies to repositories that contain submodules. #3789
- Python analysis on GHES no longer extracts the standard library, relying instead on models of the standard library. This should result in significantly faster extraction and analysis times, while the effect on alerts should be minimal. #3794
- Fixed a bug in the validation of OIDC configurations for private registries that was added in CodeQL Action 4.33.0 / 3.33.0. #3807
- Update default CodeQL bundle version to 2.25.2. #3823
CodeQL Bundle v2.25.2
Immutable
release. Only release title and notes can be modified.
Bundles CodeQL CLI v2.25.2
Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.25.2:
codeql/actions-queries(changelog, source)codeql/actions-all(changelog, source)codeql/cpp-queries(changelog, source)codeql/cpp-all(changelog, source)codeql/csharp-queries(changelog, source)codeql/csharp-all(changelog, source)codeql/go-queries(changelog, source)codeql/go-all(changelog, source)codeql/java-queries(changelog, source)codeql/java-all(changelog, source)codeql/javascript-queries(changelog, source)codeql/javascript-all(changelog, source)codeql/python-queries(changelog, source)codeql/python-all(changelog, source)codeql/ruby-queries(changelog, source)codeql/ruby-all(changelog, source)codeql/rust-queries(changelog, source)codeql/rust-all(changelog, source)codeql/swift-queries(changelog, source)codeql/swift-all(changelog, source)
v4.35.1
Immutable
release. Only release title and notes can be modified.
- Fix incorrect minimum required Git version for improved incremental analysis: it should have been 2.36.0, not 2.11.0. #3781
v4.35.0
Immutable
release. Only release title and notes can be modified.
- Reduced the minimum Git version required for improved incremental analysis from 2.38.0 to 2.11.0. #3767
- Update default CodeQL bundle version to 2.25.1. #3773
v3.35.1
Immutable
release. Only release title and notes can be modified.
- Fix incorrect minimum required Git version for improved incremental analysis: it should have been 2.36.0, not 2.11.0. #3781
v3.35.0
Immutable
release. Only release title and notes can be modified.
- Reduced the minimum Git version required for improved incremental analysis from 2.38.0 to 2.11.0. #3767
- Update default CodeQL bundle version to 2.25.1. #3773
CodeQL Bundle v2.25.1
Immutable
release. Only release title and notes can be modified.
Bundles CodeQL CLI v2.25.1
Includes the following CodeQL language packs from github/codeql@codeql-cli/v2.25.1:
codeql/actions-queries(changelog, source)codeql/actions-all(changelog, source)codeql/cpp-queries(changelog, source)codeql/cpp-all(changelog, source)codeql/csharp-queries(changelog, source)codeql/csharp-all(changelog, source)codeql/go-queries(changelog, source)codeql/go-all(changelog, source)codeql/java-queries(changelog, source)codeql/java-all(changelog, source)codeql/javascript-queries(changelog, source)codeql/javascript-all(changelog, source)codeql/python-queries(changelog, source)codeql/python-all(changelog, source)codeql/ruby-queries(changelog, source)codeql/ruby-all(changelog, source)codeql/rust-queries(changelog, source)codeql/rust-all(changelog, source)codeql/swift-queries(changelog, source)codeql/swift-all(changelog, source)
v4.34.1
v4.34.0
Immutable
release. Only release title and notes can be modified.
- Added an experimental change which disables TRAP caching when improved incremental analysis is enabled, since improved incremental analysis supersedes TRAP caching. This will improve performance and reduce Actions cache usage. We expect to roll this change out to everyone in March. #3569
- We are rolling out improved incremental analysis to C/C++ analyses that use build mode
none. We expect this rollout to be complete by the end of April 2026. #3584 - Update default CodeQL bundle version to 2.25.0. #3585