chore(ci): bump the gh-actions-packages group across 1 directory with 4 updates

[dependabot]

Bumps the gh-actions-packages group with 4 updates in the / directory: planetscale/ghcommit-action, actions/cache, github/codeql-action and actions/stale.

Updates planetscale/ghcommit-action from 0.2.17 to 0.2.18

Release notes

Sourced from planetscale/ghcommit-action's releases.

v0.2.18

What's Changed

🏕 Changes

• chore(deps): update planetscale/ghcommit-action action to v0.2.17 by @​felix-renovate[bot] in planetscale/ghcommit-action#118
• chore(deps): update actions/checkout action to v5 by @​felix-renovate[bot] in planetscale/ghcommit-action#120
• chore(deps): update actions/setup-node action to v5 by @​felix-renovate[bot] in planetscale/ghcommit-action#121
• chore(deps): update all non-major dependencies by @​felix-renovate[bot] in planetscale/ghcommit-action#119

Full Changelog: planetscale/ghcommit-action@v0.2.17...v0.2.18

Commits

• f24050e 🤖 Bump version in Dockerfile
• 9927979 Merge pull request #119 from planetscale/renovate/all-minor-patch-digest
• 4c66e5e chore(deps): update all non-major dependencies
• d9ad60d chore(deps): update actions/setup-node action to v5 (#121)
• 07f47f9 chore(deps): update actions/checkout action to v5 (#120)
• b29ff36 chore(deps): update planetscale/ghcommit-action action to v0.2.17 (#118)
• See full diff in compare view

Updates actions/cache from 4.2.4 to 4.3.0

Release notes

Sourced from actions/cache's releases.

v4.3.0

What's Changed

• Add note on runner versions by @​GhadimiR in actions/cache#1642
• Prepare v4.3.0 release by @​Link- in actions/cache#1655

New Contributors

• @​GhadimiR made their first contribution in actions/cache#1642

Full Changelog: actions/cache@v4...v4.3.0

Changelog

Sourced from actions/cache's changelog.

Releases

4.3.0

• Bump @actions/cache to v4.1.0

4.2.4

• Bump @actions/cache to v4.0.5

4.2.3

• Bump @actions/cache to v4.0.3 (obfuscates SAS token in debug logs for cache entries)

4.2.2

• Bump @actions/cache to v4.0.2

4.2.1

• Bump @actions/cache to v4.0.1

4.2.0

TLDR; The cache backend service has been rewritten from the ground up for improved performance and reliability. actions/cache now integrates with the new cache service (v2) APIs.

The new service will gradually roll out as of February 1st, 2025. The legacy service will also be sunset on the same date. Changes in these release are fully backward compatible.

We are deprecating some versions of this action. We recommend upgrading to version v4 or v3 as soon as possible before February 1st, 2025. (Upgrade instructions below).

If you are using pinned SHAs, please use the SHAs of versions v4.2.0 or v3.4.0

If you do not upgrade, all workflow runs using any of the deprecated actions/cache will fail.

Upgrading to the recommended versions will not break your workflows.

4.1.2

• Add GitHub Enterprise Cloud instances hostname filters to inform API endpoint choices - #1474
• Security fix: Bump braces from 3.0.2 to 3.0.3 - #1475

4.1.1

• Restore original behavior of cache-hit output - #1467

4.1.0

• Ensure cache-hit output is set when a cache is missed - #1404
• Deprecate save-always input - #1452

... (truncated)

Commits

• 0057852 Merge pull request #1655 from actions/Link-/prepare-4.3.0
• 4f5ea67 Update licensed cache
• 9fcad95 Upgrade actions/cache to 4.1.0 and prepare 4.3.0 release
• 638ed79 Merge pull request #1642 from actions/GhadimiR-patch-1
• 3862dcc Add note on runner versions
• See full diff in compare view

Updates github/codeql-action from 3.30.3 to 3.30.6

Release notes

Sourced from github/codeql-action's releases.

v3.30.6

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.6 - 02 Oct 2025

• Update default CodeQL bundle version to 2.23.2. #3168

See the full CHANGELOG.md for more information.

v3.30.5

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.5 - 26 Sep 2025

• We fixed a bug that was introduced in 3.30.4 with upload-sarif which resulted in files without a .sarif extension not getting uploaded. #3160

See the full CHANGELOG.md for more information.

v3.30.4

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.4 - 25 Sep 2025

• We have improved the CodeQL Action's ability to validate that the workflow it is used in does not use different versions of the CodeQL Action for different workflow steps. Mixing different versions of the CodeQL Action in the same workflow is unsupported and can lead to unpredictable results. A warning will now be emitted from the codeql-action/init step if different versions of the CodeQL Action are detected in the workflow file. Additionally, an error will now be thrown by the other CodeQL Action steps if they load a configuration file that was generated by a different version of the codeql-action/init step. #3099 and #3100
• We added support for reducing the size of dependency caches for Java analyses, which will reduce cache usage and speed up workflows. This will be enabled automatically at a later time. #3107
• You can now run the latest CodeQL nightly bundle by passing tools: nightly to the init action. In general, the nightly bundle is unstable and we only recommend running it when directed by GitHub staff. #3130
• Update default CodeQL bundle version to 2.23.1. #3118

See the full CHANGELOG.md for more information.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

3.30.6 - 02 Oct 2025

• Update default CodeQL bundle version to 2.23.2. #3168

3.30.5 - 26 Sep 2025

• We fixed a bug that was introduced in 3.30.4 with upload-sarif which resulted in files without a .sarif extension not getting uploaded. #3160

3.30.4 - 25 Sep 2025

• We have improved the CodeQL Action's ability to validate that the workflow it is used in does not use different versions of the CodeQL Action for different workflow steps. Mixing different versions of the CodeQL Action in the same workflow is unsupported and can lead to unpredictable results. A warning will now be emitted from the codeql-action/init step if different versions of the CodeQL Action are detected in the workflow file. Additionally, an error will now be thrown by the other CodeQL Action steps if they load a configuration file that was generated by a different version of the codeql-action/init step. #3099 and #3100
• We added support for reducing the size of dependency caches for Java analyses, which will reduce cache usage and speed up workflows. This will be enabled automatically at a later time. #3107
• You can now run the latest CodeQL nightly bundle by passing tools: nightly to the init action. In general, the nightly bundle is unstable and we only recommend running it when directed by GitHub staff. #3130
• Update default CodeQL bundle version to 2.23.1. #3118

3.30.3 - 10 Sep 2025

No user facing changes.

3.30.2 - 09 Sep 2025

• Fixed a bug which could cause language autodetection to fail. #3084
• Experimental: The quality-queries input that was added in 3.29.2 as part of an internal experiment is now deprecated and will be removed in an upcoming version of the CodeQL Action. It has been superseded by a new analysis-kinds input, which is part of the same internal experiment. Do not use this in production as it is subject to change at any time. #3064

3.30.1 - 05 Sep 2025

• Update default CodeQL bundle version to 2.23.0. #3077

3.30.0 - 01 Sep 2025

• Reduce the size of the CodeQL Action, speeding up workflows by approximately 4 seconds. #3054

3.29.11 - 21 Aug 2025

• Update default CodeQL bundle version to 2.22.4. #3044

3.29.10 - 18 Aug 2025

No user facing changes.

3.29.9 - 12 Aug 2025

... (truncated)

Commits

• 64d10c1 Merge pull request #3172 from github/update-v3.30.6-10feb5d2a
• 909610e Update changelog for v3.30.6
• 10feb5d Merge pull request #3167 from github/mbg/upload-sarif/find-then-filter
• 4182ea3 Merge pull request #3168 from github/update-bundle/codeql-bundle-v2.23.2
• 34afe5b Merge pull request #3171 from github/mbg/start-proxy/telemetry
• 096fe67 Merge branch 'main' into update-bundle/codeql-bundle-v2.23.2
• b496401 Merge pull request #3170 from github/mbg/start-proxy/remove-update-workflow
• d573787 Report registry types that are configured for CodeQL in start-proxy telemetry
• 1591680 Send a basic status report in start-proxy Action if it succeeds
• cb5a284 Send status report when start-proxy fails
• Additional commits viewable in compare view

Updates actions/stale from 10.0.0 to 10.1.0

Release notes

Sourced from actions/stale's releases.

v10.1.0

What's Changed

• Add only-issue-types option to filter issues by type by @​Bibo-Joshi in actions/stale#1255

New Contributors

• @​Bibo-Joshi made their first contribution in actions/stale#1255

Full Changelog: actions/stale@v10...v10.1.0

Commits

• 5f858e3 Add only-issue-types option to filter issues by type (#1255)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[datadog-datadog-prod-us1]

🎯 Code Coverage
• Patch Coverage: 100.00%
• Total Coverage: 58.10% (-0.01%)

View detailed report

_{This comment will be updated automatically if new data arrives.
🔗 Commit SHA: 52a789b | Docs | Was this helpful? Give us feedback!}

[pr-commenter]

Benchmarks

Startup

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	dependabot/github_actions/gh-actions-packages-64a7bd43cb
git_commit_date	1759770980	1759771303
git_commit_sha	3b94a72	52a789b
release_version	1.55.0-SNAPSHOT~3b94a7236c	1.55.0-SNAPSHOT~52a789bbe1

See matching parameters

	Baseline	Candidate
application	insecure-bank	insecure-bank
ci_job_date	1759773120	1759773120
ci_job_id	1165369493	1165369493
ci_pipeline_id	78506185	78506185
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version	Linux runner-zfyrx7zua-project-304-concurrent-2-tt6si3hu 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux	Linux runner-zfyrx7zua-project-304-concurrent-2-tt6si3hu 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
module	Agent	Agent
parent	None	None

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 62 metrics, 3 unstable metrics.

Startup time reports for insecure-bank

gantt
    title insecure-bank - global startup overhead: candidate=1.55.0-SNAPSHOT~52a789bbe1, baseline=1.55.0-SNAPSHOT~3b94a7236c

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.017 s) : 0, 1017104
Total [baseline] (8.642 s) : 0, 8642332
Agent [candidate] (1.022 s) : 0, 1021519
Total [candidate] (8.637 s) : 0, 8637409
section iast
Agent [baseline] (1.148 s) : 0, 1147526
Total [baseline] (9.256 s) : 0, 9255997
Agent [candidate] (1.147 s) : 0, 1146687
Total [candidate] (9.257 s) : 0, 9257110

Loading

• baseline results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.017 s	-
Agent	iast	1.148 s	130.421 ms (12.8%)
Total	tracing	8.642 s	-
Total	iast	9.256 s	613.665 ms (7.1%)

• candidate results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.022 s	-
Agent	iast	1.147 s	125.169 ms (12.3%)
Total	tracing	8.637 s	-
Total	iast	9.257 s	619.701 ms (7.2%)

gantt
    title insecure-bank - break down per module: candidate=1.55.0-SNAPSHOT~52a789bbe1, baseline=1.55.0-SNAPSHOT~3b94a7236c

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.463 ms) : 0, 1463
crashtracking [candidate] (1.458 ms) : 0, 1458
BytebuddyAgent [baseline] (694.499 ms) : 0, 694499
BytebuddyAgent [candidate] (697.4 ms) : 0, 697400
GlobalTracer [baseline] (241.378 ms) : 0, 241378
GlobalTracer [candidate] (241.615 ms) : 0, 241615
AppSec [baseline] (32.904 ms) : 0, 32904
AppSec [candidate] (32.778 ms) : 0, 32778
Debugger [baseline] (6.431 ms) : 0, 6431
Debugger [candidate] (6.452 ms) : 0, 6452
Remote Config [baseline] (694.618 µs) : 0, 695
Remote Config [candidate] (691.065 µs) : 0, 691
Telemetry [baseline] (9.231 ms) : 0, 9231
Telemetry [candidate] (9.253 ms) : 0, 9253
Flare Poller [baseline] (9.405 ms) : 0, 9405
Flare Poller [candidate] (10.885 ms) : 0, 10885
section iast
crashtracking [baseline] (1.461 ms) : 0, 1461
crashtracking [candidate] (1.452 ms) : 0, 1452
BytebuddyAgent [baseline] (812.496 ms) : 0, 812496
BytebuddyAgent [candidate] (811.73 ms) : 0, 811730
GlobalTracer [baseline] (230.814 ms) : 0, 230814
GlobalTracer [candidate] (231.2 ms) : 0, 231200
AppSec [baseline] (35.589 ms) : 0, 35589
AppSec [candidate] (35.292 ms) : 0, 35292
Debugger [baseline] (6.128 ms) : 0, 6128
Debugger [candidate] (6.123 ms) : 0, 6123
Remote Config [baseline] (598.044 µs) : 0, 598
Remote Config [candidate] (600.805 µs) : 0, 601
Telemetry [baseline] (8.61 ms) : 0, 8610
Telemetry [candidate] (8.552 ms) : 0, 8552
Flare Poller [baseline] (4.171 ms) : 0, 4171
Flare Poller [candidate] (4.21 ms) : 0, 4210
IAST [baseline] (26.524 ms) : 0, 26524
IAST [candidate] (26.453 ms) : 0, 26453

Loading

Startup time reports for petclinic

gantt
    title petclinic - global startup overhead: candidate=1.55.0-SNAPSHOT~52a789bbe1, baseline=1.55.0-SNAPSHOT~3b94a7236c

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.019 s) : 0, 1019029
Total [baseline] (10.725 s) : 0, 10724993
Agent [candidate] (1.019 s) : 0, 1018700
Total [candidate] (10.724 s) : 0, 10724047
section appsec
Agent [baseline] (1.199 s) : 0, 1198587
Total [baseline] (11.029 s) : 0, 11029045
Agent [candidate] (1.194 s) : 0, 1193686
Total [candidate] (10.998 s) : 0, 10997612
section iast
Agent [baseline] (1.158 s) : 0, 1157931
Total [baseline] (10.973 s) : 0, 10973155
Agent [candidate] (1.158 s) : 0, 1158242
Total [candidate] (11.008 s) : 0, 11007878
section profiling
Agent [baseline] (1.165 s) : 0, 1164907
Total [baseline] (11.042 s) : 0, 11041634
Agent [candidate] (1.162 s) : 0, 1162217
Total [candidate] (10.993 s) : 0, 10993100

Loading

• baseline results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.019 s	-
Agent	appsec	1.199 s	179.558 ms (17.6%)
Agent	iast	1.158 s	138.901 ms (13.6%)
Agent	profiling	1.165 s	145.877 ms (14.3%)
Total	tracing	10.725 s	-
Total	appsec	11.029 s	304.052 ms (2.8%)
Total	iast	10.973 s	248.162 ms (2.3%)
Total	profiling	11.042 s	316.642 ms (3.0%)

• candidate results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.019 s	-
Agent	appsec	1.194 s	174.986 ms (17.2%)
Agent	iast	1.158 s	139.542 ms (13.7%)
Agent	profiling	1.162 s	143.517 ms (14.1%)
Total	tracing	10.724 s	-
Total	appsec	10.998 s	273.564 ms (2.6%)
Total	iast	11.008 s	283.831 ms (2.6%)
Total	profiling	10.993 s	269.053 ms (2.5%)

gantt
    title petclinic - break down per module: candidate=1.55.0-SNAPSHOT~52a789bbe1, baseline=1.55.0-SNAPSHOT~3b94a7236c

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.474 ms) : 0, 1474
crashtracking [candidate] (1.472 ms) : 0, 1472
BytebuddyAgent [baseline] (694.443 ms) : 0, 694443
BytebuddyAgent [candidate] (694.56 ms) : 0, 694560
GlobalTracer [baseline] (241.597 ms) : 0, 241597
GlobalTracer [candidate] (241.916 ms) : 0, 241916
AppSec [baseline] (33.039 ms) : 0, 33039
AppSec [candidate] (32.788 ms) : 0, 32788
Debugger [baseline] (6.415 ms) : 0, 6415
Debugger [candidate] (6.392 ms) : 0, 6392
Remote Config [baseline] (698.546 µs) : 0, 699
Remote Config [candidate] (690.981 µs) : 0, 691
Telemetry [baseline] (9.336 ms) : 0, 9336
Telemetry [candidate] (9.221 ms) : 0, 9221
Flare Poller [baseline] (10.969 ms) : 0, 10969
Flare Poller [candidate] (10.705 ms) : 0, 10705
section appsec
crashtracking [baseline] (1.463 ms) : 0, 1463
crashtracking [candidate] (1.46 ms) : 0, 1460
BytebuddyAgent [baseline] (720.916 ms) : 0, 720916
BytebuddyAgent [candidate] (718.54 ms) : 0, 718540
GlobalTracer [baseline] (234.944 ms) : 0, 234944
GlobalTracer [candidate] (233.676 ms) : 0, 233676
AppSec [baseline] (175.653 ms) : 0, 175653
AppSec [candidate] (175.362 ms) : 0, 175362
Debugger [baseline] (6.18 ms) : 0, 6180
Debugger [candidate] (6.043 ms) : 0, 6043
Remote Config [baseline] (654.398 µs) : 0, 654
Remote Config [candidate] (636.608 µs) : 0, 637
Telemetry [baseline] (8.575 ms) : 0, 8575
Telemetry [candidate] (8.346 ms) : 0, 8346
Flare Poller [baseline] (4.052 ms) : 0, 4052
Flare Poller [candidate] (3.924 ms) : 0, 3924
IAST [baseline] (25.03 ms) : 0, 25030
IAST [candidate] (24.644 ms) : 0, 24644
section iast
crashtracking [baseline] (1.469 ms) : 0, 1469
crashtracking [candidate] (1.462 ms) : 0, 1462
BytebuddyAgent [baseline] (820.084 ms) : 0, 820084
BytebuddyAgent [candidate] (820.742 ms) : 0, 820742
GlobalTracer [baseline] (232.792 ms) : 0, 232792
GlobalTracer [candidate] (233.111 ms) : 0, 233111
AppSec [baseline] (35.888 ms) : 0, 35888
AppSec [candidate] (35.326 ms) : 0, 35326
Debugger [baseline] (6.148 ms) : 0, 6148
Debugger [candidate] (6.107 ms) : 0, 6107
Remote Config [baseline] (620.04 µs) : 0, 620
Remote Config [candidate] (606.676 µs) : 0, 607
Telemetry [baseline] (8.642 ms) : 0, 8642
Telemetry [candidate] (8.715 ms) : 0, 8715
Flare Poller [baseline] (4.233 ms) : 0, 4233
Flare Poller [candidate] (4.275 ms) : 0, 4275
IAST [baseline] (26.7 ms) : 0, 26700
IAST [candidate] (26.625 ms) : 0, 26625
section profiling
crashtracking [baseline] (1.436 ms) : 0, 1436
crashtracking [candidate] (1.428 ms) : 0, 1428
BytebuddyAgent [baseline] (722.957 ms) : 0, 722957
BytebuddyAgent [candidate] (720.11 ms) : 0, 720110
GlobalTracer [baseline] (218.343 ms) : 0, 218343
GlobalTracer [candidate] (217.948 ms) : 0, 217948
AppSec [baseline] (33.086 ms) : 0, 33086
AppSec [candidate] (33.162 ms) : 0, 33162
Debugger [baseline] (6.51 ms) : 0, 6510
Debugger [candidate] (6.46 ms) : 0, 6460
Remote Config [baseline] (695.937 µs) : 0, 696
Remote Config [candidate] (693.775 µs) : 0, 694
Telemetry [baseline] (16.509 ms) : 0, 16509
Telemetry [candidate] (16.552 ms) : 0, 16552
Flare Poller [baseline] (4.192 ms) : 0, 4192
Flare Poller [candidate] (4.2 ms) : 0, 4200
ProfilingAgent [baseline] (107.662 ms) : 0, 107662
ProfilingAgent [candidate] (108.17 ms) : 0, 108170
Profiling [baseline] (109.05 ms) : 0, 109050
Profiling [candidate] (109.721 ms) : 0, 109721

Loading

Load

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	dependabot/github_actions/gh-actions-packages-64a7bd43cb
git_commit_date	1759770980	1759771303
git_commit_sha	3b94a72	52a789b
release_version	1.55.0-SNAPSHOT~3b94a7236c	1.55.0-SNAPSHOT~52a789bbe1

See matching parameters

	Baseline	Candidate
application	insecure-bank	insecure-bank
ci_job_date	1759772789	1759772789
ci_job_id	1165369494	1165369494
ci_pipeline_id	78506185	78506185
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version	Linux runner-zfyrx7zua-project-304-concurrent-0-27ezw73u 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux	Linux runner-zfyrx7zua-project-304-concurrent-0-27ezw73u 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 3 performance improvements and 1 performance regressions! Performance is the same for 8 metrics, 12 unstable metrics.

scenario	Δ mean http_req_duration	Δ mean throughput	candidate mean http_req_duration	candidate mean throughput	baseline mean http_req_duration	baseline mean throughput
scenario:load:insecure-bank:profiling:high_load	worse [+653.103µs; +994.022µs] or [+7.457%; +11.349%]	unstable [-107.648op/s; +17.273op/s] or [-20.330%; +3.262%]	9.582ms	484.312op/s	8.759ms	529.500op/s
scenario:load:insecure-bank:iast:high_load	better [-1.228ms; -0.873ms] or [-11.890%; -8.451%]	unstable [-2.252op/s; +103.127op/s] or [-0.501%; +22.932%]	9.278ms	500.156op/s	10.329ms	449.719op/s
scenario:load:insecure-bank:tracing:high_load	better [-757.145µs; -513.819µs] or [-9.186%; -6.234%]	unstable [-21.784op/s; +114.596op/s] or [-3.874%; +20.379%]	7.607ms	608.719op/s	8.243ms	562.312op/s
scenario:load:petclinic:profiling:high_load	better [-2.948ms; -1.950ms] or [-5.821%; -3.852%]	unstable [-2.840op/s; +12.165op/s] or [-3.073%; +13.164%]	48.192ms	97.075op/s	50.641ms	92.412op/s

Request duration reports for petclinic

gantt
    title petclinic - request duration [CI 0.99] : candidate=1.55.0-SNAPSHOT~52a789bbe1, baseline=1.55.0-SNAPSHOT~3b94a7236c
    dateFormat X
    axisFormat %s
section baseline
no_agent (37.04 ms) : 36737, 37343
.   : milestone, 37040,
appsec (47.283 ms) : 46860, 47705
.   : milestone, 47283,
code_origins (45.005 ms) : 44618, 45391
.   : milestone, 45005,
iast (45.052 ms) : 44658, 45446
.   : milestone, 45052,
profiling (50.641 ms) : 50155, 51127
.   : milestone, 50641,
tracing (45.441 ms) : 45036, 45847
.   : milestone, 45441,
section candidate
no_agent (36.709 ms) : 36404, 37014
.   : milestone, 36709,
appsec (47.897 ms) : 47494, 48300
.   : milestone, 47897,
code_origins (43.751 ms) : 43371, 44130
.   : milestone, 43751,
iast (45.974 ms) : 45577, 46372
.   : milestone, 45974,
profiling (48.192 ms) : 47752, 48631
.   : milestone, 48192,
tracing (44.665 ms) : 44286, 45044
.   : milestone, 44665,

Loading

• baseline results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	37.04 ms [36.737 ms, 37.343 ms]	-
appsec	47.283 ms [46.86 ms, 47.705 ms]	10.243 ms (27.7%)
code_origins	45.005 ms [44.618 ms, 45.391 ms]	7.965 ms (21.5%)
iast	45.052 ms [44.658 ms, 45.446 ms]	8.012 ms (21.6%)
profiling	50.641 ms [50.155 ms, 51.127 ms]	13.601 ms (36.7%)
tracing	45.441 ms [45.036 ms, 45.847 ms]	8.401 ms (22.7%)

• candidate results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	36.709 ms [36.404 ms, 37.014 ms]	-
appsec	47.897 ms [47.494 ms, 48.3 ms]	11.187 ms (30.5%)
code_origins	43.751 ms [43.371 ms, 44.13 ms]	7.041 ms (19.2%)
iast	45.974 ms [45.577 ms, 46.372 ms]	9.265 ms (25.2%)
profiling	48.192 ms [47.752 ms, 48.631 ms]	11.482 ms (31.3%)
tracing	44.665 ms [44.286 ms, 45.044 ms]	7.955 ms (21.7%)

Request duration reports for insecure-bank

gantt
    title insecure-bank - request duration [CI 0.99] : candidate=1.55.0-SNAPSHOT~52a789bbe1, baseline=1.55.0-SNAPSHOT~3b94a7236c
    dateFormat X
    axisFormat %s
section baseline
no_agent (4.386 ms) : 4336, 4436
.   : milestone, 4386,
iast (10.329 ms) : 10158, 10499
.   : milestone, 10329,
iast_FULL (13.966 ms) : 13684, 14248
.   : milestone, 13966,
iast_GLOBAL (11.044 ms) : 10849, 11239
.   : milestone, 11044,
profiling (8.759 ms) : 8604, 8913
.   : milestone, 8759,
tracing (8.243 ms) : 8124, 8361
.   : milestone, 8243,
section candidate
no_agent (4.344 ms) : 4293, 4395
.   : milestone, 4344,
iast (9.278 ms) : 9119, 9438
.   : milestone, 9278,
iast_FULL (14.234 ms) : 13947, 14522
.   : milestone, 14234,
iast_GLOBAL (10.973 ms) : 10774, 11171
.   : milestone, 10973,
profiling (9.582 ms) : 9420, 9745
.   : milestone, 9582,
tracing (7.607 ms) : 7500, 7714
.   : milestone, 7607,

Loading

• baseline results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	4.386 ms [4.336 ms, 4.436 ms]	-
iast	10.329 ms [10.158 ms, 10.499 ms]	5.943 ms (135.5%)
iast_FULL	13.966 ms [13.684 ms, 14.248 ms]	9.58 ms (218.4%)
iast_GLOBAL	11.044 ms [10.849 ms, 11.239 ms]	6.658 ms (151.8%)
profiling	8.759 ms [8.604 ms, 8.913 ms]	4.373 ms (99.7%)
tracing	8.243 ms [8.124 ms, 8.361 ms]	3.857 ms (87.9%)

• candidate results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	4.344 ms [4.293 ms, 4.395 ms]	-
iast	9.278 ms [9.119 ms, 9.438 ms]	4.934 ms (113.6%)
iast_FULL	14.234 ms [13.947 ms, 14.522 ms]	9.89 ms (227.7%)
iast_GLOBAL	10.973 ms [10.774 ms, 11.171 ms]	6.629 ms (152.6%)
profiling	9.582 ms [9.42 ms, 9.745 ms]	5.238 ms (120.6%)
tracing	7.607 ms [7.5 ms, 7.714 ms]	3.263 ms (75.1%)

Dacapo

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	dependabot/github_actions/gh-actions-packages-64a7bd43cb
git_commit_date	1759770980	1759771303
git_commit_sha	3b94a72	52a789b
release_version	1.55.0-SNAPSHOT~3b94a7236c	1.55.0-SNAPSHOT~52a789bbe1

See matching parameters

	Baseline	Candidate
application	biojava	biojava
ci_job_date	1759773358	1759773358
ci_job_id	1165369495	1165369495
ci_pipeline_id	78506185	78506185
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version	Linux runner-zfyrx7zua-project-304-concurrent-2-7mbv1seh 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux	Linux runner-zfyrx7zua-project-304-concurrent-2-7mbv1seh 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 1 performance improvements and 0 performance regressions! Performance is the same for 11 metrics, 0 unstable metrics.

scenario	Δ mean execution_time	candidate mean execution_time	baseline mean execution_time
scenario:dacapo:tomcat:appsec	better [-1.373ms; -1.032ms] or [-37.496%; -28.168%]	2.460ms	3.662ms

Execution time for tomcat

gantt
    title tomcat - execution time [CI 0.99] : candidate=1.55.0-SNAPSHOT~52a789bbe1, baseline=1.55.0-SNAPSHOT~3b94a7236c
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.478 ms) : 1466, 1489
.   : milestone, 1478,
appsec (3.662 ms) : 3443, 3881
.   : milestone, 3662,
iast (2.211 ms) : 2148, 2275
.   : milestone, 2211,
iast_GLOBAL (2.244 ms) : 2180, 2307
.   : milestone, 2244,
profiling (2.066 ms) : 2014, 2119
.   : milestone, 2066,
tracing (2.018 ms) : 1968, 2067
.   : milestone, 2018,
section candidate
no_agent (1.477 ms) : 1465, 1488
.   : milestone, 1477,
appsec (2.46 ms) : 2409, 2511
.   : milestone, 2460,
iast (2.209 ms) : 2145, 2272
.   : milestone, 2209,
iast_GLOBAL (2.241 ms) : 2177, 2305
.   : milestone, 2241,
profiling (2.046 ms) : 1995, 2097
.   : milestone, 2046,
tracing (2.022 ms) : 1972, 2071
.   : milestone, 2022,

Loading

• baseline results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	1.478 ms [1.466 ms, 1.489 ms]	-
appsec	3.662 ms [3.443 ms, 3.881 ms]	2.184 ms (147.8%)
iast	2.211 ms [2.148 ms, 2.275 ms]	733.558 µs (49.6%)
iast_GLOBAL	2.244 ms [2.18 ms, 2.307 ms]	766.057 µs (51.8%)
profiling	2.066 ms [2.014 ms, 2.119 ms]	588.632 µs (39.8%)
tracing	2.018 ms [1.968 ms, 2.067 ms]	539.821 µs (36.5%)

• candidate results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	1.477 ms [1.465 ms, 1.488 ms]	-
appsec	2.46 ms [2.409 ms, 2.511 ms]	982.833 µs (66.5%)
iast	2.209 ms [2.145 ms, 2.272 ms]	731.946 µs (49.6%)
iast_GLOBAL	2.241 ms [2.177 ms, 2.305 ms]	764.181 µs (51.7%)
profiling	2.046 ms [1.995 ms, 2.097 ms]	568.78 µs (38.5%)
tracing	2.022 ms [1.972 ms, 2.071 ms]	544.846 µs (36.9%)

Execution time for biojava

gantt
    title biojava - execution time [CI 0.99] : candidate=1.55.0-SNAPSHOT~52a789bbe1, baseline=1.55.0-SNAPSHOT~3b94a7236c
    dateFormat X
    axisFormat %s
section baseline
no_agent (14.857 s) : 14857000, 14857000
.   : milestone, 14857000,
appsec (15.14 s) : 15140000, 15140000
.   : milestone, 15140000,
iast (18.618 s) : 18618000, 18618000
.   : milestone, 18618000,
iast_GLOBAL (17.925 s) : 17925000, 17925000
.   : milestone, 17925000,
profiling (15.297 s) : 15297000, 15297000
.   : milestone, 15297000,
tracing (15.199 s) : 15199000, 15199000
.   : milestone, 15199000,
section candidate
no_agent (15.629 s) : 15629000, 15629000
.   : milestone, 15629000,
appsec (15.166 s) : 15166000, 15166000
.   : milestone, 15166000,
iast (18.509 s) : 18509000, 18509000
.   : milestone, 18509000,
iast_GLOBAL (18.123 s) : 18123000, 18123000
.   : milestone, 18123000,
profiling (15.67 s) : 15670000, 15670000
.   : milestone, 15670000,
tracing (15.213 s) : 15213000, 15213000
.   : milestone, 15213000,

Loading

• baseline results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	14.857 s [14.857 s, 14.857 s]	-
appsec	15.14 s [15.14 s, 15.14 s]	283.0 ms (1.9%)
iast	18.618 s [18.618 s, 18.618 s]	3.761 s (25.3%)
iast_GLOBAL	17.925 s [17.925 s, 17.925 s]	3.068 s (20.7%)
profiling	15.297 s [15.297 s, 15.297 s]	440.0 ms (3.0%)
tracing	15.199 s [15.199 s, 15.199 s]	342.0 ms (2.3%)

• candidate results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	15.629 s [15.629 s, 15.629 s]	-
appsec	15.166 s [15.166 s, 15.166 s]	-463.0 ms (-3.0%)
iast	18.509 s [18.509 s, 18.509 s]	2.88 s (18.4%)
iast_GLOBAL	18.123 s [18.123 s, 18.123 s]	2.494 s (16.0%)
profiling	15.67 s [15.67 s, 15.67 s]	41.0 ms (0.3%)
tracing	15.213 s [15.213 s, 15.213 s]	-416.0 ms (-2.7%)