-
Notifications
You must be signed in to change notification settings - Fork 333
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Update bundle to 2.12.4 #1561
Update bundle to 2.12.4 #1561
Conversation
Thanks for the fix, @henrymercer. I've confirmed that it works locally. I created a PR against |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
(My commits are merged into main so I'm not signing off on my own code)
Erm, yes, I’m running into this because the bundle has been updated (compared to the previous run of the action). But there’s no new release; how do I get the builds working again? |
Ah well, reverting to an earlier version |
Hi @mirabilos — this fix was released in version 2.2.6 of the CodeQL Action. Please let us know if you still aren't able to use the latest bundle. |
Henry Mercer dixit:
Hi @mirabilos — this fix was released in version
[2.2.6](https://github.com/github/codeql-action/releases/tag/v2.2.6) of
the CodeQL Action. Please let us know if you still aren't able to use
the latest bundle.
Hm, where did you even get this release from?
https://github.com/github/codeql-action/releases does not show it,
and it shows codeql-bundle-20230317 as latest version, which is what
the GHA updater upgrades to then, for example:
{
"jobs": {
"analyse": {
"steps": [
[…]
{
"name": "Initialise CodeQL",
"uses": ***@***.***",
"with": {
"languages": "cpp"
}
},
[…]
So v2.2.6 does not look like a real release?
[GHA updater] → https://github.com/saadmk11/github-actions-version-updater
bye,
//mirabilos
--
„Cool, /usr/share/doc/mksh/examples/uhr.gz ist ja ein Grund,
mksh auf jedem System zu installieren.“
-- XTaran auf der OpenRheinRuhr, ganz begeistert
(EN: “[…]uhr.gz is a reason to install mksh on every system.”)
|
We release the CodeQL Action using git tags, and release CodeQL Action Bundles using GitHub Releases. It looks like the tool you're using is only picking up on the GitHub Releases. We'd recommend configuring your workflow to use the v2 tag (for example |
Merge / deployment checklist