Upgrade CodeQL CLI dependency to v2.25.2 by github-actions[bot] · Pull Request #358 · advanced-security/codeql-sap-js

github-actions · 2026-04-15T16:30:47Z

This PR upgrades the CodeQL CLI version to v2.25.2.

Changes made:

Updated qlt.conf.json (CodeQLCLI, CodeQLStandardLibrary, CodeQLCLIBundle) to 2.25.2
Updated all version-bearing qlpack.yml files to 2.25.2
Upgraded CodeQL pack lock files
Compiled CAP CDS files
CodeQL unit tests passed ✅

To complete the release, merge this PR and then trigger the release workflow
via workflow_dispatch on release.yml with version v2.25.2.

Copilot

Pull request overview

Upgrades the repository’s CodeQL toolchain and pack versions to align with CodeQL CLI v2.25.2, keeping all packs/locks consistent for the next release.

Changes:

Bumped qlt.conf.json CodeQL CLI / standard library / bundle references to 2.25.2.
Updated CodeQL pack versions and internal pack dependency pins across CAP/UI5/XSJS/heuristic-models to 2.25.2.
Refreshed codeql-pack.lock.yml files to the dependency set that resolves under the new CodeQL version.

Show a summary per file

File	Description
qlt.conf.json	Updates CodeQL CLI + bundle/std-lib references to 2.25.2.
javascript/heuristic-models/tests/qlpack.yml	Bumps test pack version and dependency pin to 2.25.2.
javascript/heuristic-models/tests/codeql-pack.lock.yml	Updates resolved dependency versions for the test pack.
javascript/heuristic-models/ext/qlpack.yml	Bumps extension pack version to 2.25.2.
javascript/frameworks/xsjs/test/qlpack.yml	Bumps XSJS test pack version and dependency pins to 2.25.2.
javascript/frameworks/xsjs/test/codeql-pack.lock.yml	Updates resolved dependency versions for XSJS tests.
javascript/frameworks/xsjs/src/qlpack.yml	Bumps XSJS queries pack version and dependency pin to 2.25.2.
javascript/frameworks/xsjs/src/codeql-pack.lock.yml	Updates resolved dependency versions for XSJS queries pack.
javascript/frameworks/xsjs/lib/qlpack.yml	Bumps XSJS “all” pack version to 2.25.2.
javascript/frameworks/xsjs/lib/codeql-pack.lock.yml	Updates resolved dependency versions for XSJS “all” pack.
javascript/frameworks/xsjs/ext/qlpack.yml	Bumps XSJS models extension pack version to 2.25.2.
javascript/frameworks/ui5/test/qlpack.yml	Bumps UI5 test pack version and dependency pins to 2.25.2.
javascript/frameworks/ui5/test/codeql-pack.lock.yml	Updates resolved dependency versions for UI5 tests.
javascript/frameworks/ui5/src/qlpack.yml	Bumps UI5 queries pack version and dependency pin to 2.25.2.
javascript/frameworks/ui5/src/codeql-pack.lock.yml	Updates resolved dependency versions for UI5 queries pack.
javascript/frameworks/ui5/lib/qlpack.yml	Bumps UI5 “all” pack version to 2.25.2.
javascript/frameworks/ui5/lib/codeql-pack.lock.yml	Updates resolved dependency versions for UI5 “all” pack.
javascript/frameworks/ui5/ext/qlpack.yml	Bumps UI5 models extension pack version to 2.25.2.
javascript/frameworks/ui5-webcomponents/test/qlpack.yml	Bumps UI5-webcomponents test pack version and dependency pin to 2.25.2.
javascript/frameworks/ui5-webcomponents/test/codeql-pack.lock.yml	Updates resolved dependency versions for UI5-webcomponents tests.
javascript/frameworks/cap/test/qlpack.yml	Bumps CAP test pack version and dependency pins to 2.25.2.
javascript/frameworks/cap/test/codeql-pack.lock.yml	Updates resolved dependency versions for CAP tests.
javascript/frameworks/cap/src/qlpack.yml	Bumps CAP queries pack version and dependency pin to 2.25.2.
javascript/frameworks/cap/src/codeql-pack.lock.yml	Updates resolved dependency versions for CAP queries pack.
javascript/frameworks/cap/lib/qlpack.yml	Bumps CAP “all” pack version to 2.25.2.
javascript/frameworks/cap/lib/codeql-pack.lock.yml	Updates resolved dependency versions for CAP “all” pack.
javascript/frameworks/cap/ext/qlpack.yml	Bumps CAP models extension pack version to 2.25.2.

Copilot's findings

Files reviewed: 27/27 changed files
Comments generated: 1

mbaluda

🚀

data-douser requested a review from Copilot April 15, 2026 16:34

data-douser self-assigned this Apr 15, 2026

data-douser added enhancement New feature or request dependencies Pull requests that update a dependency file labels Apr 15, 2026

data-douser requested a review from a team April 15, 2026 16:35

Copilot started reviewing on behalf of data-douser April 15, 2026 16:35 View session

data-douser closed this Apr 15, 2026

data-douser reopened this Apr 15, 2026

Copilot AI reviewed Apr 15, 2026

View reviewed changes

Comment thread javascript/heuristic-models/tests/qlpack.yml

data-douser enabled auto-merge (squash) April 15, 2026 17:13

Upgrade CodeQL CLI dependency to v2.25.2

dab0091

github-actions bot force-pushed the codeql/upgrade-to-v2.25.2 branch from 33793ed to dab0091 Compare April 16, 2026 01:29

mbaluda approved these changes Apr 16, 2026

View reviewed changes

data-douser closed this Apr 16, 2026

auto-merge was automatically disabled April 16, 2026 12:19
Pull request was closed

data-douser reopened this Apr 16, 2026

data-douser enabled auto-merge (squash) April 16, 2026 12:19

data-douser merged commit ebac816 into main Apr 16, 2026
16 checks passed

data-douser deleted the codeql/upgrade-to-v2.25.2 branch April 16, 2026 12:47

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Upgrade CodeQL CLI dependency to v2.25.2#358

Upgrade CodeQL CLI dependency to v2.25.2#358
data-douser merged 1 commit intomainfrom
codeql/upgrade-to-v2.25.2

github-actions bot commented Apr 15, 2026

Uh oh!

Copilot AI left a comment

Uh oh!

Uh oh!

mbaluda left a comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

github-actions bot commented Apr 15, 2026

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Copilot's findings

Uh oh!

Uh oh!

mbaluda left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants