Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

[UNRELEASED]

• Update default CodeQL bundle version to 2.9.2. #1074

2.1.10 - 10 May 2022

• Update default CodeQL bundle version to 2.9.1. #1056
• When wait-for-processing is enabled, the workflow will now fail if there were any errors that occurred during processing of the analysis results.

2.1.9 - 27 Apr 2022

• Add working-directory input to the autobuild action. #1024
• The analyze and upload-sarif actions will now wait up to 2 minutes for processing to complete after they have uploaded the results so they can report any processing errors that occurred. This behavior can be disabled by setting the wait-for-processing action input to "false". #1007
• Update default CodeQL bundle version to 2.9.0.
• Fix a bug where status reporting fails on Windows. #1042

2.1.8 - 08 Apr 2022

• Update default CodeQL bundle version to 2.8.5. #1014
• Fix error where the init action would fail due to a GitHub API request that was taking too long to complete #1025

2.1.7 - 05 Apr 2022

• A bug where additional queries specified in the workflow file would sometimes not be respected has been fixed. #1018

2.1.6 - 30 Mar 2022

• [v2+ only] The CodeQL Action now runs on Node.js v16. #1000
• Update default CodeQL bundle version to 2.8.4. #990
• Fix a bug where an invalid commit_oid was being sent to code scanning when a custom checkout path was being used. #956

1.1.5 - 15 Mar 2022

• Update default CodeQL bundle version to 2.8.3.
• The CodeQL runner is now deprecated and no longer being released. For more information, see CodeQL runner deprecation.
• Fix two bugs that cause action failures with GHES 3.3 or earlier. #978
  • Fix not a permitted key invalid requests with GHES 3.1 or earlier
  • Fix RUNNER_ARCH environment variable must be set errors with GHES 3.3 or earlier

1.1.4 - 07 Mar 2022

• Update default CodeQL bundle version to 2.8.2. #950
• Fix a bug where old results can be uploaded if the languages in a repository change when using a non-ephemeral self-hosted runner. #955

1.1.3 - 23 Feb 2022

• Fix a bug where the CLR traces can continue tracing even after tracing should be stopped. #938

... (truncated)

• a3a6c12 Merge pull request #1078 from github/update-v2.1.11-657c2f3f
• 657581e Update changelog for v2.1.11
• 657c2f3 Merge pull request #1074 from github/edoardo/2.9.2-update
• 1725087 Update default CodeQL to 2.9.2
• e655565 Merge pull request #1076 from github/henrymercer/fix-changelog-typo
• c38e41c Fix a typo in the CHANGELOG
• 0658e4b Merge pull request #1075 from github/henrymercer/update-actions-tool-cache
• 54b4854 Bump @​actions/tool-cache to 2.0.0
• 1fae5bf Merge pull request #1051 from github/henrymercer/run-atm-on-windows
• 533ce91 Merge remote-tracking branch 'origin/main' into henrymercer/run-atm-on-windows
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)