From 00127ced5db8bd44e26484647a4ca66f4731926e Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Laurens=20St=C3=B6tzel?= Date: Wed, 22 Apr 2026 02:13:07 +0200 Subject: [PATCH 1/2] ci: bump actions to Node.js 24 compatible versions Upgrade JavaScript-based GitHub Actions to majors that run on the Node.js 24 runtime, resolving the Node.js 20 JavaScript actions deprecation warning and the CodeQL Action v3 deprecation warning. - actions/checkout@v4 -> @v5 - actions/setup-node@v4 -> @v5 - actions/cache@v4 -> @v5 - github/codeql-action/{init,autobuild,analyze}@v3 -> @v4 - bump two stale @v2 pins in npm-release.yml to current majors Co-Authored-By: Claude Opus 4.7 (1M context) --- .github/workflows/codeql-analysis.yml | 8 ++++---- .github/workflows/nodejs.yml | 12 ++++++------ .github/workflows/npm-release.yml | 4 ++-- .github/workflows/prettier.yml | 6 +++--- 4 files changed, 15 insertions(+), 15 deletions(-) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 232892a..9a862f2 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -39,11 +39,11 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v5 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v4 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -54,7 +54,7 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, or Java). # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild - uses: github/codeql-action/autobuild@v3 + uses: github/codeql-action/autobuild@v4 # â„šī¸ Command-line programs to run using the OS shell. # 📚 https://git.io/JvXDl @@ -68,4 +68,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v4 diff --git a/.github/workflows/nodejs.yml b/.github/workflows/nodejs.yml index 48cce8c..53e4e28 100644 --- a/.github/workflows/nodejs.yml +++ b/.github/workflows/nodejs.yml @@ -13,15 +13,15 @@ jobs: matrix: node-version: ['20', '22', '24', '25'] steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Use Node.js ${{ matrix.node-version }} - uses: actions/setup-node@v4 + uses: actions/setup-node@v5 with: node-version: ${{ matrix.node-version }} check-latest: true - name: Cache Node.js modules id: yarn-cache - uses: actions/cache@v4 + uses: actions/cache@v5 with: path: '**/node_modules' key: ${{ runner.os }}-modules-${{ hashFiles('**/yarn.lock') }}-${{ matrix.node-version }} @@ -39,15 +39,15 @@ jobs: matrix: node-version: ['20', '22', '24', '25'] steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Use Node.js ${{ matrix.node-version }} - uses: actions/setup-node@v4 + uses: actions/setup-node@v5 with: node-version: ${{ matrix.node-version }} check-latest: true - name: Cache Node.js modules id: yarn-cache - uses: actions/cache@v4 + uses: actions/cache@v5 with: path: '**/node_modules' key: ${{ runner.os }}-modules-${{ hashFiles('**/yarn.lock') }}-${{ matrix.node-version }}-deno diff --git a/.github/workflows/npm-release.yml b/.github/workflows/npm-release.yml index 4391dd5..63af14e 100644 --- a/.github/workflows/npm-release.yml +++ b/.github/workflows/npm-release.yml @@ -9,8 +9,8 @@ jobs: publish: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 - - uses: actions/setup-node@v2 + - uses: actions/checkout@v5 + - uses: actions/setup-node@v5 with: node-version: '20' registry-url: 'https://registry.npmjs.org' diff --git a/.github/workflows/prettier.yml b/.github/workflows/prettier.yml index 5c5b6a6..78ed4bb 100644 --- a/.github/workflows/prettier.yml +++ b/.github/workflows/prettier.yml @@ -13,15 +13,15 @@ jobs: matrix: node-version: ['22'] steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v5 - name: Use Node.js ${{ matrix.node-version }} - uses: actions/setup-node@v4 + uses: actions/setup-node@v5 with: node-version: ${{ matrix.node-version }} check-latest: true - name: Cache Node.js modules id: yarn-cache - uses: actions/cache@v4 + uses: actions/cache@v5 with: path: '**/node_modules' key: ${{ runner.os }}-modules-${{ hashFiles('**/yarn.lock') }}-${{ matrix.node-version }} From 3914340c915b0bbf3b1732b6e1d5310e177e5634 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Laurens=20St=C3=B6tzel?= Date: Wed, 22 Apr 2026 02:16:20 +0200 Subject: [PATCH 2/2] ci: opt in to CodeQL file coverage on PRs Preserves current behavior by setting CODEQL_ACTION_FILE_COVERAGE_ON_PRS=true. Without this flag, starting April 2026 CodeQL will skip file coverage on PR analyses by default. Co-Authored-By: Claude Opus 4.7 (1M context) --- .github/workflows/codeql-analysis.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 9a862f2..a1b75dc 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -29,6 +29,9 @@ jobs: contents: read security-events: write + env: + CODEQL_ACTION_FILE_COVERAGE_ON_PRS: true + strategy: fail-fast: false matrix: