chore(deps): update github/codeql-action action to v3.28.9

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
github/codeql-action	action	patch	v3.28.1 -> v3.28.9

---

Release Notes

github/codeql-action (github/codeql-action)

v3.28.9

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.9 - 07 Feb 2025

• Update default CodeQL bundle version to 2.20.4. #​2753

See the full CHANGELOG.md for more information.

v3.28.8

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.8 - 29 Jan 2025

• Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. #​2744

See the full CHANGELOG.md for more information.

v3.28.7

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.7 - 29 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.6

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.6 - 27 Jan 2025

• Re-enable debug artifact upload for CLI versions 2.20.3 or greater. #​2726

See the full CHANGELOG.md for more information.

v3.28.5

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.5 - 24 Jan 2025

• Update default CodeQL bundle version to 2.20.3. #​2717

See the full CHANGELOG.md for more information.

v3.28.4

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.4 - 23 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.28.3

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.3 - 22 Jan 2025

• Update default CodeQL bundle version to 2.20.2. #​2707
• Fix an issue downloading the CodeQL Bundle from a GitHub Enterprise Server instance which occurred when the CodeQL Bundle had been synced to the instance using the CodeQL Action sync tool and the Actions runner did not have Zstandard installed. #​2710
• Uploading debug artifacts for CodeQL analysis is temporarily disabled. #​2712

See the full CHANGELOG.md for more information.

v3.28.2

Compare Source

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.2 - 21 Jan 2025

No user facing changes.

See the full CHANGELOG.md for more information.

---

Configuration

📅 Schedule: Branch creation - "* 0-3 1 * *" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

🦙 MegaLinter status: ✅ SUCCESS

Descriptor	Linter	Files	Fixed	Errors	Elapsed time
✅ ACTION	actionlint	4		0	0.01s
✅ DOCKERFILE	hadolint	1		0	0.21s
✅ JSON	jsonlint	6		0	0.34s
✅ JSON	npm-package-json-lint	yes		no	0.82s
✅ JSON	prettier	6		0	0.67s
✅ JSON	v8r	6		0	16.4s
✅ MARKDOWN	markdownlint	2		0	0.66s
✅ MARKDOWN	markdown-table-formatter	2		0	0.64s
✅ REPOSITORY	checkov	yes		no	15.01s
✅ REPOSITORY	dustilock	yes		no	0.09s
✅ REPOSITORY	gitleaks	yes		no	0.17s
✅ REPOSITORY	git_diff	yes		no	0.01s
✅ REPOSITORY	grype	yes		no	15.63s
✅ REPOSITORY	kics	yes		no	34.71s
✅ REPOSITORY	secretlint	yes		no	0.84s
✅ REPOSITORY	syft	yes		no	3.45s
✅ REPOSITORY	trivy	yes		no	10.0s
✅ REPOSITORY	trivy-sbom	yes		no	0.27s
✅ REPOSITORY	trufflehog	yes		no	4.05s
✅ YAML	prettier	10		0	1.11s
✅ YAML	v8r	10		0	9.73s
✅ YAML	yamllint	10		0	0.71s

See detailed report in MegaLinter reports

You could have the same capabilities but better runtime performances if you use a MegaLinter flavor:

• oxsecurity/megalinter/flavors/[email protected] (83 linters)

MegaLinter is graciously provided by

[github-actions]

Trivy image scan report

ghcr.io/miracum/ig-build-tools:pr-206 (ubuntu 24.04)

5 known vulnerabilities found (CRITICAL: 0 HIGH: 0 MEDIUM: 5 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
libexpat1	CVE-2024-50602	MEDIUM	2.6.1-2ubuntu0.1	2.6.1-2ubuntu0.2
libgssapi-krb5-2	CVE-2024-3596	MEDIUM	1.20.1-6ubuntu2.2	1.20.1-6ubuntu2.3
libk5crypto3	CVE-2024-3596	MEDIUM	1.20.1-6ubuntu2.2	1.20.1-6ubuntu2.3
libkrb5-3	CVE-2024-3596	MEDIUM	1.20.1-6ubuntu2.2	1.20.1-6ubuntu2.3
libkrb5support0	CVE-2024-3596	MEDIUM	1.20.1-6ubuntu2.2	1.20.1-6ubuntu2.3

No Misconfigurations found

Java

7 known vulnerabilities found (CRITICAL: 0 HIGH: 3 MEDIUM: 3 LOW: 1)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
ch.qos.logback:logback-core	CVE-2024-12798	MEDIUM	1.2.13	1.5.13, 1.3.15
ch.qos.logback:logback-core	CVE-2024-12801	LOW	1.2.13	1.5.13, 1.3.15
org.fhir:ucum	CVE-2024-55887	HIGH	1.0.3	1.0.9
org.hl7.fhir.publisher:org.hl7.fhir.publisher.cli	CVE-2024-52807	HIGH	1.7.1	1.7.4
org.hl7.fhir.publisher:org.hl7.fhir.publisher.cli	CVE-2025-24363	MEDIUM	1.7.1	1.8.9
org.hl7.fhir.publisher:org.hl7.fhir.publisher.core	CVE-2024-52807	HIGH	1.7.1	1.7.4
org.hl7.fhir.publisher:org.hl7.fhir.publisher.core	CVE-2025-24363	MEDIUM	1.7.1	1.8.9

No Misconfigurations found

Node.js

No Vulnerabilities found

No Misconfigurations found

Ruby

No Vulnerabilities found

No Misconfigurations found

root/.dotnet/tools/.store/firely.terminal/3.3.2/firely.terminal/3.3.2/tools/net8.0/any/Firely.Terminal.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/Containers/tasks/net8.0/Microsoft.NET.Build.Containers.deps.json

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
NuGet.Packaging	CVE-2024-0057	CRITICAL	6.8.1-rc.32767	5.11.6, 6.0.6, 6.3.4, 6.4.3, 6.6.2, 6.7.1, 6.8.1

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/DotnetTools/dotnet-format/dotnet-format.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/DotnetTools/dotnet-user-jwts/8.0.12-servicing.24603.12/tools/net8.0/any/dotnet-user-jwts.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/DotnetTools/dotnet-user-secrets/8.0.12-servicing.24603.12/tools/net8.0/any/dotnet-user-secrets.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/DotnetTools/dotnet-watch/8.0.112-servicing.24604.14/tools/net8.0/any/dotnet-watch.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/FSharp/fsc.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/FSharp/fsi.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/MSBuild.deps.json

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
NuGet.Packaging	CVE-2024-0057	CRITICAL	6.8.1-rc.32767	5.11.6, 6.0.6, 6.3.4, 6.4.3, 6.6.2, 6.7.1, 6.8.1

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/NuGet.CommandLine.XPlat.deps.json

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
NuGet.Packaging	CVE-2024-0057	CRITICAL	6.8.1-rc.32767	5.11.6, 6.0.6, 6.3.4, 6.4.3, 6.6.2, 6.7.1, 6.8.1

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/Sdks/Microsoft.NET.Sdk.BlazorWebAssembly/tools/net8.0/Microsoft.NET.Sdk.BlazorWebAssembly.Tool.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/Sdks/Microsoft.NET.Sdk.Razor/source-generators/Microsoft.NET.Sdk.Razor.SourceGenerators.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/Sdks/Microsoft.NET.Sdk.Razor/tools/rzc.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/Sdks/Microsoft.NET.Sdk.StaticWebAssets/tools/net8.0/Microsoft.NET.Sdk.StaticWebAssets.Tool.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/datacollector.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/dotnet.deps.json

1 known vulnerabilities found (CRITICAL: 1 HIGH: 0 MEDIUM: 0 LOW: 0)

Show detailed table of vulnerabilities

Package	ID	Severity	Installed Version	Fixed Version
NuGet.Packaging	CVE-2024-0057	CRITICAL	6.8.1-rc.32767	5.11.6, 6.0.6, 6.3.4, 6.4.3, 6.6.2, 6.7.1, 6.8.1

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/testhost.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/sdk/8.0.112/vstest.console.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/shared/Microsoft.AspNetCore.App/8.0.12/Microsoft.AspNetCore.App.deps.json

No Vulnerabilities found

No Misconfigurations found

usr/lib/dotnet/shared/Microsoft.NETCore.App/8.0.12/Microsoft.NETCore.App.deps.json

No Vulnerabilities found

No Misconfigurations found

[miracum-bot]

🎉 This PR is included in version 2.1.17 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀