Merge pull request #2918 from github/update-v3.28.19-4a00331d4

Merge main into releases/v3

Author: aibaars

.github/dependabot.yml

@@ -2,8 +2,6 @@ version: 2
 updates:
   - package-ecosystem: npm
     directory: "/"
-    reviewers:
-      - "github/codeql-production-shield"
     schedule:
       interval: weekly
     labels:
@@ -26,8 +24,6 @@ updates:
           - "*"
   - package-ecosystem: github-actions
     directory: "/"
-    reviewers:
-      - "github/codeql-production-shield"
     schedule:
       interval: weekly
     groups:
@@ -36,8 +32,6 @@ updates:
           - "*"
   - package-ecosystem: github-actions
     directory: "/.github/actions/setup-swift/" # All subdirectories outside of "/.github/workflows" must be explicitly included.
-    reviewers:
-      - "github/codeql-production-shield"
     schedule:
       interval: weekly
     groups:

.github/workflows/__rubocop-multi-language.yml

@@ -75,7 +75,7 @@ jobs:
     strategy:
       fail-fast: false
       matrix:
-        os: [ubuntu-22.04,ubuntu-24.04,windows-2019,windows-2022,macos-13,macos-14]
+        os: [ubuntu-22.04,ubuntu-24.04,windows-2022,windows-2025,macos-13,macos-14,macos-15]
         tools: ${{ fromJson(needs.check-codeql-versions.outputs.versions) }}
     runs-on: ${{ matrix.os }}
 

.github/workflows/codeql.yml

@@ -2,6 +2,14 @@
 
 See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.
 
+## 3.28.19 - 03 Jun 2025
+
+- The CodeQL Action no longer includes its own copy of the extractor for the `actions` language, which is currently in public preview.
+  The `actions` extractor has been included in the CodeQL CLI since v2.20.6. If your workflow has enabled the `actions` language _and_ you have pinned
+  your `tools:` property to a specific version of the CodeQL CLI earlier than v2.20.6, you will need to update to at least CodeQL v2.20.6 or disable
+  `actions` analysis.
+- Update default CodeQL bundle version to 2.21.4. [#2910](https://github.com/github/codeql-action/pull/2910)
+
 ## 3.28.18 - 16 May 2025
 
 - Update default CodeQL bundle version to 2.21.3. [#2893](https://github.com/github/codeql-action/pull/2893)

CHANGELOG.md

@@ -1 +1 @@
-{ "maximumVersion": "3.17", "minimumVersion": "3.13" }
+{ "maximumVersion": "3.18", "minimumVersion": "3.13" }

actions-extractor/codeql-extractor.yml

@@ -1,6 +1,6 @@
 {
-    "bundleVersion": "codeql-bundle-v2.21.3",
-    "cliVersion": "2.21.3",
-    "priorBundleVersion": "codeql-bundle-v2.21.2",
-    "priorCliVersion": "2.21.2"
+    "bundleVersion": "codeql-bundle-v2.21.4",
+    "cliVersion": "2.21.4",
+    "priorBundleVersion": "codeql-bundle-v2.21.3",
+    "priorCliVersion": "2.21.3"
 }