chore(deps): update github-actions deps (major) (#7576)

This PR contains the following updates:

| Package | Type | Update | Change |
|---|---|---|---|
|
[actions/github-script](https://redirect.github.com/actions/github-script)
| action | major | `v7` -> `v8` |
| [actions/setup-go](https://redirect.github.com/actions/setup-go) |
action | major | `v5.5.0` -> `v6.0.0` |
| [actions/setup-node](https://redirect.github.com/actions/setup-node) |
action | major | `v4.4.0` -> `v5.0.0` |
|
[actions/setup-python](https://redirect.github.com/actions/setup-python)
| action | major | `v5.6.0` -> `v6.0.0` |
|
[github/codeql-action](https://redirect.github.com/github/codeql-action)
| action | major | `v3.29.0` -> `v4.30.8` |
|
[github/codeql-action](https://redirect.github.com/github/codeql-action)
| action | major | `v3` -> `v4` |

---

> [!WARNING]
> Some dependencies could not be looked up. Check the Dependency
Dashboard for more information.

---

### Release Notes

<details>
<summary>actions/github-script (actions/github-script)</summary>

###
[`v8`](https://redirect.github.com/actions/github-script/releases/tag/v8):
.0.0

[Compare
Source](https://redirect.github.com/actions/github-script/compare/v7...v8)

#### What's Changed

- Update Node.js version support to 24.x by
[@&#8203;salmanmkc](https://redirect.github.com/salmanmkc) in
[#&#8203;637](https://redirect.github.com/actions/github-script/pull/637)
- README for updating actions/github-script from v7 to v8 by
[@&#8203;sneha-krip](https://redirect.github.com/sneha-krip) in
[#&#8203;653](https://redirect.github.com/actions/github-script/pull/653)

#### ⚠️ Minimum Compatible Runner Version

**v2.327.1**\
[Release
Notes](https://redirect.github.com/actions/runner/releases/tag/v2.327.1)

Make sure your runner is updated to this version or newer to use this
release.

#### New Contributors

- [@&#8203;salmanmkc](https://redirect.github.com/salmanmkc) made their
first contribution in
[#&#8203;637](https://redirect.github.com/actions/github-script/pull/637)
- [@&#8203;sneha-krip](https://redirect.github.com/sneha-krip) made
their first contribution in
[#&#8203;653](https://redirect.github.com/actions/github-script/pull/653)

**Full Changelog**:
<actions/github-script@v7.1.0...v8.0.0>

</details>

<details>
<summary>actions/setup-go (actions/setup-go)</summary>

###
[`v6.0.0`](https://redirect.github.com/actions/setup-go/releases/tag/v6.0.0)

[Compare
Source](https://redirect.github.com/actions/setup-go/compare/v5.5.0...v6.0.0)

#### What's Changed

##### Breaking Changes

- Improve toolchain handling to ensure more reliable and consistent
toolchain selection and management by
[@&#8203;matthewhughes934](https://redirect.github.com/matthewhughes934)
in [#&#8203;460](https://redirect.github.com/actions/setup-go/pull/460)
- Upgrade Nodejs runtime from node20 to node 24 by
[@&#8203;salmanmkc](https://redirect.github.com/salmanmkc) in
[#&#8203;624](https://redirect.github.com/actions/setup-go/pull/624)

Make sure your runner is on version v2.327.1 or later to ensure
compatibility with this release. [See Release
Notes](https://redirect.github.com/actions/runner/releases/tag/v2.327.1)

##### Dependency Upgrades

- Upgrade [@&#8203;types/jest](https://redirect.github.com/types/jest)
from 29.5.12 to 29.5.14 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;589](https://redirect.github.com/actions/setup-go/pull/589)
- Upgrade
[@&#8203;actions/tool-cache](https://redirect.github.com/actions/tool-cache)
from 2.0.1 to 2.0.2 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;591](https://redirect.github.com/actions/setup-go/pull/591)
- Upgrade
[@&#8203;typescript-eslint/parser](https://redirect.github.com/typescript-eslint/parser)
from 8.31.1 to 8.35.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;590](https://redirect.github.com/actions/setup-go/pull/590)
- Upgrade undici from 5.28.5 to 5.29.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;594](https://redirect.github.com/actions/setup-go/pull/594)
- Upgrade typescript from 5.4.2 to 5.8.3 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;538](https://redirect.github.com/actions/setup-go/pull/538)
- Upgrade eslint-plugin-jest from 28.11.0 to 29.0.1 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;603](https://redirect.github.com/actions/setup-go/pull/603)
- Upgrade `form-data` to bring in fix for critical vulnerability by
[@&#8203;matthewhughes934](https://redirect.github.com/matthewhughes934)
in [#&#8203;618](https://redirect.github.com/actions/setup-go/pull/618)
- Upgrade actions/checkout from 4 to 5 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;631](https://redirect.github.com/actions/setup-go/pull/631)

#### New Contributors

-
[@&#8203;matthewhughes934](https://redirect.github.com/matthewhughes934)
made their first contribution in
[#&#8203;618](https://redirect.github.com/actions/setup-go/pull/618)
- [@&#8203;salmanmkc](https://redirect.github.com/salmanmkc) made their
first contribution in
[#&#8203;624](https://redirect.github.com/actions/setup-go/pull/624)

**Full Changelog**:
<actions/setup-go@v5...v6.0.0>

</details>

<details>
<summary>actions/setup-node (actions/setup-node)</summary>

###
[`v5.0.0`](https://redirect.github.com/actions/setup-node/releases/tag/v5.0.0)

[Compare
Source](https://redirect.github.com/actions/setup-node/compare/v4.4.0...v5.0.0)

##### What's Changed

##### Breaking Changes

- Enhance caching in setup-node with automatic package manager detection
by [@&#8203;priya-kinthali](https://redirect.github.com/priya-kinthali)
in
[#&#8203;1348](https://redirect.github.com/actions/setup-node/pull/1348)

This update, introduces automatic caching when a valid `packageManager`
field is present in your `package.json`. This aims to improve workflow
performance and make dependency management more seamless.
To disable this automatic caching, set `package-manager-cache: false`

```yaml
steps:
- uses: actions/checkout@v5
- uses: actions/setup-node@v5
  with:
    package-manager-cache: false
```

- Upgrade action to use node24 by
[@&#8203;salmanmkc](https://redirect.github.com/salmanmkc) in
[#&#8203;1325](https://redirect.github.com/actions/setup-node/pull/1325)

Make sure your runner is on version v2.327.1 or later to ensure
compatibility with this release. [See Release
Notes](https://redirect.github.com/actions/runner/releases/tag/v2.327.1)

##### Dependency Upgrades

- Upgrade
[@&#8203;octokit/request-error](https://redirect.github.com/octokit/request-error)
and [@&#8203;actions/github](https://redirect.github.com/actions/github)
by [@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;1227](https://redirect.github.com/actions/setup-node/pull/1227)
- Upgrade uuid from 9.0.1 to 11.1.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;1273](https://redirect.github.com/actions/setup-node/pull/1273)
- Upgrade undici from 5.28.5 to 5.29.0 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;1295](https://redirect.github.com/actions/setup-node/pull/1295)
- Upgrade form-data to bring in fix for critical vulnerability by
[@&#8203;gowridurgad](https://redirect.github.com/gowridurgad) in
[#&#8203;1332](https://redirect.github.com/actions/setup-node/pull/1332)
- Upgrade actions/checkout from 4 to 5 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;1345](https://redirect.github.com/actions/setup-node/pull/1345)

##### New Contributors

- [@&#8203;priya-kinthali](https://redirect.github.com/priya-kinthali)
made their first contribution in
[#&#8203;1348](https://redirect.github.com/actions/setup-node/pull/1348)
- [@&#8203;salmanmkc](https://redirect.github.com/salmanmkc) made their
first contribution in
[#&#8203;1325](https://redirect.github.com/actions/setup-node/pull/1325)

**Full Changelog**:
<actions/setup-node@v4...v5.0.0>

</details>

<details>
<summary>actions/setup-python (actions/setup-python)</summary>

###
[`v6.0.0`](https://redirect.github.com/actions/setup-python/releases/tag/v6.0.0)

[Compare
Source](https://redirect.github.com/actions/setup-python/compare/v5.6.0...v6.0.0)

##### What's Changed

##### Breaking Changes

- Upgrade to node 24 by
[@&#8203;salmanmkc](https://redirect.github.com/salmanmkc) in
[#&#8203;1164](https://redirect.github.com/actions/setup-python/pull/1164)

Make sure your runner is on version v2.327.1 or later to ensure
compatibility with this release. [See Release
Notes](https://redirect.github.com/actions/runner/releases/tag/v2.327.1)

##### Enhancements:

- Add support for `pip-version` by
[@&#8203;priyagupta108](https://redirect.github.com/priyagupta108) in
[#&#8203;1129](https://redirect.github.com/actions/setup-python/pull/1129)
- Enhance reading from .python-version by
[@&#8203;krystof-k](https://redirect.github.com/krystof-k) in
[#&#8203;787](https://redirect.github.com/actions/setup-python/pull/787)
- Add version parsing from Pipfile by
[@&#8203;aradkdj](https://redirect.github.com/aradkdj) in
[#&#8203;1067](https://redirect.github.com/actions/setup-python/pull/1067)

##### Bug fixes:

- Clarify pythonLocation behaviour for PyPy and GraalPy in environment
variables by
[@&#8203;aparnajyothi-y](https://redirect.github.com/aparnajyothi-y) in
[#&#8203;1183](https://redirect.github.com/actions/setup-python/pull/1183)
- Change missing cache directory error to warning by
[@&#8203;aparnajyothi-y](https://redirect.github.com/aparnajyothi-y) in
[#&#8203;1182](https://redirect.github.com/actions/setup-python/pull/1182)
- Add Architecture-Specific PATH Management for Python with --user Flag
on Windows by
[@&#8203;aparnajyothi-y](https://redirect.github.com/aparnajyothi-y) in
[#&#8203;1122](https://redirect.github.com/actions/setup-python/pull/1122)
- Include python version in PyPy python-version output by
[@&#8203;cdce8p](https://redirect.github.com/cdce8p) in
[#&#8203;1110](https://redirect.github.com/actions/setup-python/pull/1110)
- Update docs: clarification on pip authentication with setup-python by
[@&#8203;priya-kinthali](https://redirect.github.com/priya-kinthali) in
[#&#8203;1156](https://redirect.github.com/actions/setup-python/pull/1156)

##### Dependency updates:

- Upgrade idna from 2.9 to 3.7 in /**tests**/data by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;843](https://redirect.github.com/actions/setup-python/pull/843)
- Upgrade form-data to fix critical vulnerabilities
[#&#8203;182](https://redirect.github.com/actions/setup-python/issues/182)
&
[#&#8203;183](https://redirect.github.com/actions/setup-python/issues/183)
by [@&#8203;aparnajyothi-y](https://redirect.github.com/aparnajyothi-y)
in
[#&#8203;1163](https://redirect.github.com/actions/setup-python/pull/1163)
- Upgrade setuptools to 78.1.1 to fix path traversal vulnerability in
PackageIndex.download by
[@&#8203;aparnajyothi-y](https://redirect.github.com/aparnajyothi-y) in
[#&#8203;1165](https://redirect.github.com/actions/setup-python/pull/1165)
- Upgrade actions/checkout from 4 to 5 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;1181](https://redirect.github.com/actions/setup-python/pull/1181)
- Upgrade
[@&#8203;actions/tool-cache](https://redirect.github.com/actions/tool-cache)
from 2.0.1 to 2.0.2 by
[@&#8203;dependabot](https://redirect.github.com/dependabot)\[bot] in
[#&#8203;1095](https://redirect.github.com/actions/setup-python/pull/1095)

##### New Contributors

- [@&#8203;krystof-k](https://redirect.github.com/krystof-k) made their
first contribution in
[#&#8203;787](https://redirect.github.com/actions/setup-python/pull/787)
- [@&#8203;cdce8p](https://redirect.github.com/cdce8p) made their first
contribution in
[#&#8203;1110](https://redirect.github.com/actions/setup-python/pull/1110)
- [@&#8203;aradkdj](https://redirect.github.com/aradkdj) made their
first contribution in
[#&#8203;1067](https://redirect.github.com/actions/setup-python/pull/1067)

**Full Changelog**:
<actions/setup-python@v5...v6.0.0>

</details>

<details>
<summary>github/codeql-action (github/codeql-action)</summary>

###
[`v4.30.8`](https://redirect.github.com/github/codeql-action/releases/tag/v4.30.8)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v4.30.7...v4.30.8)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 4.30.8 - 10 Oct 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v4.30.8/CHANGELOG.md)
for more information.

###
[`v4.30.7`](https://redirect.github.com/github/codeql-action/releases/tag/v4.30.7)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.30.8...v4.30.7)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 4.30.7 - 06 Oct 2025

- \[v4+ only] The CodeQL Action now runs on Node.js v24.
[#&#8203;3169](https://redirect.github.com/github/codeql-action/pull/3169)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v4.30.7/CHANGELOG.md)
for more information.

###
[`v3.30.8`](https://redirect.github.com/github/codeql-action/releases/tag/v3.30.8)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.30.7...v3.30.8)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.30.8 - 10 Oct 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.30.8/CHANGELOG.md)
for more information.

###
[`v3.30.7`](https://redirect.github.com/github/codeql-action/releases/tag/v3.30.7)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.30.6...v3.30.7)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.30.7 - 06 Oct 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.30.7/CHANGELOG.md)
for more information.

###
[`v3.30.6`](https://redirect.github.com/github/codeql-action/releases/tag/v3.30.6)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.30.5...v3.30.6)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.30.6 - 02 Oct 2025

- Update default CodeQL bundle version to 2.23.2.
[#&#8203;3168](https://redirect.github.com/github/codeql-action/pull/3168)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.30.6/CHANGELOG.md)
for more information.

###
[`v3.30.5`](https://redirect.github.com/github/codeql-action/releases/tag/v3.30.5)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.30.4...v3.30.5)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.30.5 - 26 Sep 2025

- We fixed a bug that was introduced in `3.30.4` with `upload-sarif`
which resulted in files without a `.sarif` extension not getting
uploaded.
[#&#8203;3160](https://redirect.github.com/github/codeql-action/pull/3160)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.30.5/CHANGELOG.md)
for more information.

###
[`v3.30.4`](https://redirect.github.com/github/codeql-action/releases/tag/v3.30.4)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.30.3...v3.30.4)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.30.4 - 25 Sep 2025

- We have improved the CodeQL Action's ability to validate that the
workflow it is used in does not use different versions of the CodeQL
Action for different workflow steps. Mixing different versions of the
CodeQL Action in the same workflow is unsupported and can lead to
unpredictable results. A warning will now be emitted from the
`codeql-action/init` step if different versions of the CodeQL Action are
detected in the workflow file. Additionally, an error will now be thrown
by the other CodeQL Action steps if they load a configuration file that
was generated by a different version of the `codeql-action/init` step.
[#&#8203;3099](https://redirect.github.com/github/codeql-action/pull/3099)
and
[#&#8203;3100](https://redirect.github.com/github/codeql-action/pull/3100)
- We added support for reducing the size of dependency caches for Java
analyses, which will reduce cache usage and speed up workflows. This
will be enabled automatically at a later time.
[#&#8203;3107](https://redirect.github.com/github/codeql-action/pull/3107)
- You can now run the latest CodeQL nightly bundle by passing `tools:
nightly` to the `init` action. In general, the nightly bundle is
unstable and we only recommend running it when directed by GitHub staff.
[#&#8203;3130](https://redirect.github.com/github/codeql-action/pull/3130)
- Update default CodeQL bundle version to 2.23.1.
[#&#8203;3118](https://redirect.github.com/github/codeql-action/pull/3118)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.30.4/CHANGELOG.md)
for more information.

###
[`v3.30.3`](https://redirect.github.com/github/codeql-action/releases/tag/v3.30.3)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.30.2...v3.30.3)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.30.3 - 10 Sep 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.30.3/CHANGELOG.md)
for more information.

###
[`v3.30.2`](https://redirect.github.com/github/codeql-action/releases/tag/v3.30.2)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.30.1...v3.30.2)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.30.2 - 09 Sep 2025

- Fixed a bug which could cause language autodetection to fail.
[#&#8203;3084](https://redirect.github.com/github/codeql-action/pull/3084)
- Experimental: The `quality-queries` input that was added in `3.29.2`
as part of an internal experiment is now deprecated and will be removed
in an upcoming version of the CodeQL Action. It has been superseded by a
new `analysis-kinds` input, which is part of the same internal
experiment. Do not use this in production as it is subject to change at
any time.
[#&#8203;3064](https://redirect.github.com/github/codeql-action/pull/3064)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.30.2/CHANGELOG.md)
for more information.

###
[`v3.30.1`](https://redirect.github.com/github/codeql-action/releases/tag/v3.30.1)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.30.0...v3.30.1)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.30.1 - 05 Sep 2025

- Update default CodeQL bundle version to 2.23.0.
[#&#8203;3077](https://redirect.github.com/github/codeql-action/pull/3077)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.30.1/CHANGELOG.md)
for more information.

###
[`v3.30.0`](https://redirect.github.com/github/codeql-action/releases/tag/v3.30.0)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.11...v3.30.0)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.30.0 - 01 Sep 2025

- Reduce the size of the CodeQL Action, speeding up workflows by
approximately 4 seconds.
[#&#8203;3054](https://redirect.github.com/github/codeql-action/pull/3054)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.30.0/CHANGELOG.md)
for more information.

###
[`v3.29.11`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.11)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.10...v3.29.11)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.29.11 - 21 Aug 2025

- Update default CodeQL bundle version to 2.22.4.
[#&#8203;3044](https://redirect.github.com/github/codeql-action/pull/3044)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.11/CHANGELOG.md)
for more information.

###
[`v3.29.10`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.10)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.9...v3.29.10)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.29.10 - 18 Aug 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.10/CHANGELOG.md)
for more information.

###
[`v3.29.9`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.9)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.8...v3.29.9)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.29.9 - 12 Aug 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.9/CHANGELOG.md)
for more information.

###
[`v3.29.8`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.8)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.7...v3.29.8)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.29.8 - 08 Aug 2025

- Fix an issue where the Action would autodetect unsupported languages
such as HTML.
[#&#8203;3015](https://redirect.github.com/github/codeql-action/pull/3015)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.8/CHANGELOG.md)
for more information.

###
[`v3.29.7`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.7)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.6...v3.29.7)

This is a re-release of v3.29.5 to mitigate an issue that was discovered
with v3.29.6.

###
[`v3.29.6`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.6)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.5...v3.29.6)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.29.6 - 07 Aug 2025

- The `cleanup-level` input to the `analyze` Action is now deprecated.
The CodeQL Action has written a limited amount of intermediate results
to the database since version 2.2.5, and now automatically manages
cleanup.
[#&#8203;2999](https://redirect.github.com/github/codeql-action/pull/2999)
- Update default CodeQL bundle version to 2.22.3.
[#&#8203;3000](https://redirect.github.com/github/codeql-action/pull/3000)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.6/CHANGELOG.md)
for more information.

###
[`v3.29.5`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.5)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.4...v3.29.5)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.29.5 - 29 Jul 2025

- Update default CodeQL bundle version to 2.22.2.
[#&#8203;2986](https://redirect.github.com/github/codeql-action/pull/2986)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.5/CHANGELOG.md)
for more information.

###
[`v3.29.4`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.4)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.3...v3.29.4)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.29.4 - 23 Jul 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.4/CHANGELOG.md)
for more information.

###
[`v3.29.3`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.3)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.2...v3.29.3)

### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

#### 3.29.3 - 21 Jul 2025

No user facing changes.

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.3/CHANGELOG.md)
for more information.

###
[`v3.29.2`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.2)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.1...v3.29.2)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.29.2 - 30 Jun 2025

- Experimental: When the `quality-queries` input for the `init` action
is provided with an argument, separate `.quality.sarif` files are
produced and uploaded for each language with the results of the
specified queries. Do not use this in production as it is part of an
internal experiment and subject to change at any time.
[#&#8203;2935](https://redirect.github.com/github/codeql-action/pull/2935)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.2/CHANGELOG.md)
for more information.

###
[`v3.29.1`](https://redirect.github.com/github/codeql-action/releases/tag/v3.29.1)

[Compare
Source](https://redirect.github.com/github/codeql-action/compare/v3.29.0...v3.29.1)

##### CodeQL Action Changelog

See the [releases
page](https://redirect.github.com/github/codeql-action/releases) for the
relevant changes to the CodeQL CLI and language packs.

##### 3.29.1 - 27 Jun 2025

- Fix bug in PR analysis where user-provided `include` query filter
fails to exclude non-included queries.
[#&#8203;2938](https://redirect.github.com/github/codeql-action/pull/2938)
- Update default CodeQL bundle version to 2.22.1.
[#&#8203;2950](https://redirect.github.com/github/codeql-action/pull/2950)

See the full
[CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.29.1/CHANGELOG.md)
for more information.

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "on the first day of the month" (UTC),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get
[config
help](https://redirect.github.com/renovatebot/renovate/discussions) if
that's undesired.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/jaegertracing/jaeger).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0MS4xNDMuMSIsInVwZGF0ZWRJblZlciI6IjQxLjE0My4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJjaGFuZ2Vsb2c6ZGVwZW5kZW5jaWVzIl19-->

Signed-off-by: Mend Renovate <bot@renovateapp.com>

Author: renovate-bot

.github/actions/setup-go-tip/action.yml

@@ -37,7 +37,7 @@ runs:
 
     - name: Install Go toolchain
       if: steps.download.outputs.success == 'false'
-      uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
+      uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: ${{ steps.get_go_version.outputs.LATEST_GO_VERSION }}
 

.github/actions/setup-node.js/action.yml

@@ -8,7 +8,7 @@ runs:
       run: |
         echo "JAEGER_UI_NODE_JS_VERSION=$(cat jaeger-ui/.nvmrc)" >> ${GITHUB_ENV}
 
-    - uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
+    - uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
       with:
         node-version: ${{ env.JAEGER_UI_NODE_JS_VERSION }}
         cache: 'npm'

.github/workflows/ci-build-binaries.yml

@@ -48,7 +48,7 @@ jobs:
       run: |
         git fetch --prune --unshallow --tags
 
-    - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
+    - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: 1.25.x
 

.github/workflows/ci-comment.yml

@@ -22,7 +22,7 @@ jobs:
 
       - name: Download all metrics artifacts from triggering workflow
         id: download-artifacts
-        uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7
+        uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8
         with:
           script: |
             const { owner, repo } = context.repo;

.github/workflows/ci-crossdock.yml

@@ -33,7 +33,7 @@ jobs:
       run: |
         git fetch --prune --unshallow --tags
 
-    - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
+    - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: 1.25.x
 

.github/workflows/ci-docker-all-in-one.yml

@@ -37,7 +37,7 @@ jobs:
     - name: Fetch git tags
       run: git fetch --prune --unshallow --tags
 
-    - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
+    - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: 1.25.x
 

.github/workflows/ci-docker-build.yml

@@ -32,7 +32,7 @@ jobs:
     - name: Fetch git tags
       run: git fetch --prune --unshallow --tags
 
-    - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
+    - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: 1.25.x
 

.github/workflows/ci-docker-hotrod.yml

@@ -41,7 +41,7 @@ jobs:
       run: |
         git fetch --prune --unshallow --tags
 
-    - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
+    - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: 1.25.x
 

.github/workflows/ci-e2e-badger.yaml

@@ -25,7 +25,7 @@ jobs:
         egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs
 
     - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
-    - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
+    - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: 1.25.x
 

.github/workflows/ci-e2e-cassandra.yml

@@ -39,7 +39,7 @@ jobs:
 
     - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
 
-    - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0
+    - uses: actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0.0
       with:
         go-version: 1.25.x