chore(deps): update github/codeql-action action to v3.26.7

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
github/codeql-action	action	patch	v3.26.2 -> v3.26.7

---

Release Notes

github/codeql-action (github/codeql-action)

v3.26.7

Compare Source

v3.26.6

Compare Source

v3.26.5

Compare Source

v3.26.4

Compare Source

v3.26.3

Compare Source

---

Configuration

📅 Schedule: Branch creation - "* 0-4 * * 3" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

[puLL-Merge] - github/codeql-action@v3.26.2..v3.26.5

Description

This PR introduces several changes to the CodeQL Action, including bug fixes, improvements to telemetry collection, and enhancements to the proxy functionality. The changes span multiple files and include updates to the changelog, action configurations, and various TypeScript files.

Possible Issues

1. The deprecation of the add-snippets input on the analyze Action may affect users who rely on this feature. A migration plan should be communicated to users well before the August 2025 removal date.

2. The changes to disk usage checks and System Integrity Protection (SIP) status checks for MacOS ARM machines might introduce unexpected behavior for users on these systems.

Security Hotspots

1. The new registries_credentials input in the start-proxy action uses base64 encoding for credentials. Ensure that this data is properly protected and not logged or exposed in any way.

2. The proxy functionality changes involve handling of credentials and authentication. Careful review of these changes is necessary to ensure no security vulnerabilities are introduced.

Changes

Changes

1. CHANGELOG.md:

   • Added entries for versions 3.26.5, 3.26.4, and 3.26.3, detailing bug fixes and deprecations.

2. analyze/action.yml:

   • Added deprecation message for the add-snippets input.

3. lib/analyze-action.js:

   • Updated checkDiskUsage function call to include logger parameter.

4. lib/diagnostics.js:

   • Modified filename generation for diagnostic files to remove colons, ensuring compatibility with Windows.

5. lib/environment.ts:

   • Added new environment variable IS_SIP_ENABLED for tracking System Integrity Protection status.

6. lib/init-action.ts, lib/init-action-post.ts, lib/resolve-environment-action.ts, lib/upload-sarif-action.ts:

   • Updated checkDiskUsage function calls to include logger parameter.

7. lib/init.ts:

   • Removed isSipEnabled function (functionality moved to util.ts).

8. lib/start-proxy-action-post.ts:

   • Changed logging of proxy output to upload as an artifact instead of writing to stdout.

9. lib/start-proxy-action.ts, start-proxy/action.yml:

   • Added support for new registries_credentials input.
   • Refactored credential handling and proxy configuration.

10. lib/util.ts:

    • Added checkSipEnablement function to determine System Integrity Protection status.
    • Modified checkDiskUsage function to avoid running on MacOS ARM with SIP disabled.

11. package.json:

    • Updated version to 3.26.5.

These changes primarily focus on improving the robustness of the CodeQL Action, particularly for MacOS ARM systems, and enhancing the proxy functionality. The deprecation of the add-snippets input and the introduction of new credential handling methods are notable changes that may require user attention.

[github-actions]

[puLL-Merge] - github/codeql-action@v3.26.2..v3.26.6

This pull request introduces several changes and updates to the CodeQL action. Here's a summary of the main changes:

Description

This PR updates the CodeQL action to version 3.26.6, including updates to dependencies, improvements to error handling and logging, and enhancements to the proxy functionality.

Changes

Changes

1. package.json:
   • Updated version to 3.26.6