Skip to content

Merge main into releases/v4 #3494

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
mbg merged 84 commits into from
Feb 20, 2026
Merged

Merge main into releases/v4 #3494

Changes from 1 commit
Commits
Show all changes
84 commits
Select commit Hold shift + click to select a range
713a293
Set `keyUsage`
mbg Feb 10, 2026
e8f0116
Explicitly sign certificate with SHA256
mbg Feb 10, 2026
d155ebf
Set more extensions
mbg Feb 10, 2026
d636fb3
Move certificate code to its own file
mbg Feb 11, 2026
b1d963e
Gate updated cert gen behind FF
mbg Feb 11, 2026
7801eda
Add some basic unit tests
mbg Feb 11, 2026
bc1164e
Fix typo in test
mbg Feb 11, 2026
9267d8d
Add `csra` analysis kind
mbg Feb 11, 2026
5b3261b
Enforce that only compatible kinds can be enabled concurrently
mbg Feb 11, 2026
5132eb5
Fix `CodeScanning` config's `sarifPredicate` and add test
mbg Feb 11, 2026
406bbfc
Update `upload-lib` tests for CSRA
mbg Feb 11, 2026
8cc4d25
Remove redundant analysis kind check
mbg Feb 11, 2026
6a17f4e
Update `getPrimaryAnalysis*` and add test
mbg Feb 11, 2026
2de76b6
Update PR check for `csra`
mbg Feb 11, 2026
db93462
Add `csra` case to `addSarifExtension` test
mbg Feb 11, 2026
cbb92e7
Type the upload payload object
mbg Feb 11, 2026
0cfcceb
Add `transformPayload` to `AnalysisConfig`
mbg Feb 11, 2026
c48cd24
Add `assessment_id` to CSRA payload
mbg Feb 11, 2026
da67096
Change `assessment_id` to be a number
mbg Feb 12, 2026
2adcb64
Add `BasePayload` type and derive `AssessmentPayload` from it
mbg Feb 12, 2026
0ce6420
Validate `CODEQL_ACTION_CSRA_ASSESSMENT_ID` value
mbg Feb 12, 2026
9835994
CSRA category does not need to be adjusted
mbg Feb 12, 2026
15a3d32
Extend `uploadPayload` tests to all analysis kinds
mbg Feb 12, 2026
edf3609
Add `RecordingLogger` that keeps track of groups
mbg Feb 12, 2026
e1933c6
Find all missing messages in `checkExpectedLogMessages`
mbg Feb 12, 2026
01fcdce
Update changelog and version after v4.32.3
github-actions[bot] Feb 13, 2026
6bddc79
Rebuild
github-actions[bot] Feb 13, 2026
ef618fe
Merge pull request #3480 from github/mergeback/v4.32.3-to-main-9e907b5e
henrymercer Feb 13, 2026
64940fa
Use author if they are GitHub staff
mbg Feb 13, 2026
248d797
Remove superfluous `try`/`catch`
mbg Feb 15, 2026
34d43db
Add `ForceNightly` feature
mbg Feb 15, 2026
817d568
Improve docs in `setup-codeql`
mbg Feb 15, 2026
466a4f0
Add unit test for `tools: nightly`
mbg Feb 15, 2026
d5f0374
Force `nightly` bundle when FF is enabled
mbg Feb 15, 2026
a61e3cb
Add integration test
mbg Feb 15, 2026
595ce2d
Add `JavaNetworkDebugging` feature
mbg Feb 15, 2026
e21e4ca
Add debugging options to `JAVA_TOOL_OPTIONS` when FF is enabled
mbg Feb 15, 2026
8b734d3
Improve variable names and comments
mbg Feb 16, 2026
73f5a29
Complete JSDoc
mbg Feb 16, 2026
e6a312a
Allow `addNoLanguageDiagnostic` to be used without a `Config`
mbg Feb 16, 2026
e315c6f
Add diagnostic when a nightly release is forced
mbg Feb 16, 2026
f8c75d3
Change diagnostic level to `note`
mbg Feb 16, 2026
ac74c28
Use `init` in new check workflow
mbg Feb 16, 2026
aee29a1
Merge pull request #3473 from github/mbg/start-proxy/cert-gen
mbg Feb 16, 2026
ad5a6c0
Merge pull request #3482 from github/mbg/release/author-or-merger
mbg Feb 16, 2026
3e37216
Merge branch 'main' into mbg/java/network-debugging
mbg Feb 16, 2026
147d149
Merge pull request #3484 from github/mbg/cli/force-nightly
mbg Feb 16, 2026
d1689c9
Use `all`
mbg Feb 17, 2026
ebce69a
Merge pull request #3485 from github/mbg/java/network-debugging
mbg Feb 17, 2026
f315d82
Rename `csra` to `risk-assessment`
mbg Feb 17, 2026
d6ea670
Remove unnecessary check
mbg Feb 17, 2026
bff89dc
Add enum for Java-related env var names
mbg Feb 17, 2026
33e2dff
Log information about proxy-related environment variables
mbg Feb 17, 2026
a3d7d36
Find likely JDK locations and check configurations
mbg Feb 17, 2026
4250b46
Wrap `checkProxyEnvironment` call in `try`/`catch` for good measure
mbg Feb 17, 2026
ef9cfd9
Clear GHA `JAVA_HOME_*` env vars for `discoverActionsJdks` test
mbg Feb 17, 2026
c1d6ee5
Fix typos
mbg Feb 17, 2026
99fcc7b
Check whether `value` is a URL in `checkEnvVar` and clear credentials
mbg Feb 17, 2026
11c6c18
Only run when debugging or test mode is enabled
mbg Feb 17, 2026
44a4bea
Fixup: add missing `.env`
mbg Feb 17, 2026
5c96b6e
Add JSDoc comments to `upload-lib` types
mbg Feb 17, 2026
6d55dff
Reword error message
mbg Feb 17, 2026
2abec3f
Replace most occurrences of `CSRA`
mbg Feb 17, 2026
9715925
Consistently use "\n" to split lines, then trim extra characters if n…
mbg Feb 17, 2026
32ab108
Move interesting JRE properties out of `checkJdkSettings`
mbg Feb 17, 2026
46473e0
Add more interesting Java properties
mbg Feb 17, 2026
b1b1e44
Merge pull request #3474 from github/mbg/risk-assessment-analysis
mbg Feb 17, 2026
906dd89
Run `java` to show computed settings
mbg Feb 17, 2026
64300e4
Merge branch 'main' into mbg/start-proxy/java-env-checks
mbg Feb 17, 2026
61f7dd3
Fix `checkExpectedLogMessages` not asserting anything on success
mbg Feb 17, 2026
015d8c7
Merge pull request #3486 from github/mbg/start-proxy/java-env-checks
mbg Feb 17, 2026
7407d38
Bump fast-xml-parser from 5.3.4 to 5.3.6
dependabot[bot] Feb 18, 2026
76cf404
Rebuild
github-actions[bot] Feb 18, 2026
5e7a52f
Merge pull request #3488 from github/dependabot/npm_and_yarn/fast-xml…
oscarsj Feb 18, 2026
f7905e8
Use new feature flag for repository properties
henrymercer Feb 19, 2026
50fdbb9
Merge pull request #3492 from github/henrymercer/new-repository-prope…
mbg Feb 20, 2026
d97dce6
Update default bundle to codeql-bundle-v2.24.2
github-actions[bot] Feb 20, 2026
00150da
Add changelog note
github-actions[bot] Feb 20, 2026
39ba80c
Merge pull request #3493 from github/update-bundle/codeql-bundle-v2.24.2
mbg Feb 20, 2026
cfda84c
Update changelog for v4.32.4
github-actions[bot] Feb 20, 2026
cdda72d
Add changelog entries
mbg Feb 20, 2026
314172e
Fix typo
mbg Feb 20, 2026
0c20209
Apply suggestions from code review
mbg Feb 20, 2026
e5d84c8
Apply remaining review suggestions
mbg Feb 20, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Use author if they are GitHub staff
  • Loading branch information
@mbg
mbg committed Feb 13, 2026
commit 64940fad4a6b0b2c35ad79bc05e34be1b26197a6
20 changes: 16 additions & 4 deletions .github/update-release-branch.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -71,8 +71,9 @@
body.append('')
body.append('Contains the following pull requests:')
for pr in pull_requests:
merger = get_merger_of_pr(repo, pr)
body.append(f'- #{pr.number} (@{merger})')
# Use PR author if they are GitHub staff, otherwise use the merger
display_user = get_pr_author_if_staff(pr) or get_merger_of_pr(repo, pr)
body.append(f'- #{pr.number} (@{display_user})')

# List all commits not part of a PR
if len(commits_without_pull_requests) > 0:
Expand Down Expand Up @@ -168,6 +169,17 @@
def get_merger_of_pr(repo, pr):
return repo.get_commit(pr.merge_commit_sha).author.login

# Get the PR author if they are GitHub staff, otherwise None.
def get_pr_author_if_staff(pr):
if pr.user is None:
return None
try:
if getattr(pr.user, 'site_admin', False):
return pr.user.login
except Exception:

Check notice

Code scanning / CodeQL

Empty except Note

'except' clause does nothing but pass and there is no explanatory comment.
pass
return None

def get_current_version():
with open('package.json', 'r') as f:
return json.load(f)['version']
Expand All @@ -181,9 +193,9 @@
print(line.replace(prev_version, new_version), end='')
else:
prev_line_is_codeql = False
print(line, end='')
print(line, end='')
if '\"name\": \"codeql\",' in line:
prev_line_is_codeql = True
prev_line_is_codeql = True

def get_today_string():
today = datetime.datetime.today()
Expand Down
Loading