From 1df2cf419ebbab2526b77c4d1c7093f326877af3 Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 10 Jun 2026 11:18:36 +0000 Subject: [PATCH 1/4] 2.1.0 --- package.json | 2 +- packages/codeql-action/CHANGELOG.md | 11 ++++++++++- packages/codeql-action/package.json | 2 +- packages/language-detector/CHANGELOG.md | 11 ++++++++++- packages/language-detector/package.json | 2 +- packages/semgrep-action/CHANGELOG.md | 11 ++++++++++- packages/semgrep-action/package.json | 2 +- 7 files changed, 34 insertions(+), 7 deletions(-) diff --git a/package.json b/package.json index f8e8bc0..821f0b2 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "@metamask/action-security-code-scanner", - "version": "2.0.6", + "version": "2.1.0", "private": true, "description": "Security Code Scanner", "repository": { diff --git a/packages/codeql-action/CHANGELOG.md b/packages/codeql-action/CHANGELOG.md index 88d5229..ebe5a35 100644 --- a/packages/codeql-action/CHANGELOG.md +++ b/packages/codeql-action/CHANGELOG.md @@ -7,6 +7,14 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [2.1.0] + +### Uncategorized + +- Update publish-release workflow and CodeQL action versions +- Update actions/checkout to latest commit for consistency across workflows +- Update GitHub Actions to use latest versions of dependencies + ## [2.0.6] ### Uncategorized @@ -41,7 +49,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 - Added multi language support - Updated CodeQL action to v4 -[Unreleased]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.6...HEAD +[Unreleased]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.1.0...HEAD +[2.1.0]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.6...v2.1.0 [2.0.6]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.5...v2.0.6 [2.0.5]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.3...v2.0.5 [2.0.3]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.1...v2.0.3 diff --git a/packages/codeql-action/package.json b/packages/codeql-action/package.json index 32c96d3..9a4a0be 100644 --- a/packages/codeql-action/package.json +++ b/packages/codeql-action/package.json @@ -1,6 +1,6 @@ { "name": "@metamask/codeql-action", - "version": "2.0.6", + "version": "2.1.0", "private": true, "description": "Custom CodeQL analysis action", "keywords": [], diff --git a/packages/language-detector/CHANGELOG.md b/packages/language-detector/CHANGELOG.md index 26b6e18..560f5e3 100644 --- a/packages/language-detector/CHANGELOG.md +++ b/packages/language-detector/CHANGELOG.md @@ -7,6 +7,14 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [2.1.0] + +### Uncategorized + +- Update Node.js version to 24 in language-detector action and checkout action version in build-lint-test workflow for consistency +- Update Node.js version in .nvmrc and enable Corepack in actions using node +- Update GitHub Actions to use latest versions of dependencies + ## [2.0.4] ### Changed @@ -42,7 +50,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 - Added support for autodetecting languages using Github API -[Unreleased]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.4...HEAD +[Unreleased]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.1.0...HEAD +[2.1.0]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.4...v2.1.0 [2.0.4]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.3...v2.0.4 [2.0.3]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.2...v2.0.3 [2.0.2]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.1...v2.0.2 diff --git a/packages/language-detector/package.json b/packages/language-detector/package.json index 3c96fb5..58a0871 100644 --- a/packages/language-detector/package.json +++ b/packages/language-detector/package.json @@ -1,6 +1,6 @@ { "name": "@metamask/language-detector", - "version": "2.0.4", + "version": "2.1.0", "description": "Language detection and matrix generation for code scanning", "type": "module", "main": "src/index.js", diff --git a/packages/semgrep-action/CHANGELOG.md b/packages/semgrep-action/CHANGELOG.md index 022da45..788fafe 100644 --- a/packages/semgrep-action/CHANGELOG.md +++ b/packages/semgrep-action/CHANGELOG.md @@ -7,6 +7,14 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [2.1.0] + +### Uncategorized + +- Update CodeQL action version in Semgrep workflow for consistency +- Update actions/checkout to latest commit for consistency across workflows +- Update GitHub Actions to use latest versions of dependencies + ## [2.0.6] ### Uncategorized @@ -39,7 +47,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 - Migrated action from its separate repository to the monorepo -[Unreleased]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.6...HEAD +[Unreleased]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.1.0...HEAD +[2.1.0]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.6...v2.1.0 [2.0.6]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.5...v2.0.6 [2.0.5]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.2...v2.0.5 [2.0.2]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.1...v2.0.2 diff --git a/packages/semgrep-action/package.json b/packages/semgrep-action/package.json index 946e2ef..386ee7f 100644 --- a/packages/semgrep-action/package.json +++ b/packages/semgrep-action/package.json @@ -1,6 +1,6 @@ { "name": "@metamask/semgrep-action", - "version": "2.0.6", + "version": "2.1.0", "private": true, "description": "Semgrep-based security scanning action", "keywords": [ From 5fee78a3d2b7b3cd5a2108212b513c237fe18809 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82?= Date: Wed, 10 Jun 2026 12:30:38 +0100 Subject: [PATCH 2/4] update chagelogs --- packages/codeql-action/CHANGELOG.md | 4 ++-- packages/language-detector/CHANGELOG.md | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/packages/codeql-action/CHANGELOG.md b/packages/codeql-action/CHANGELOG.md index ebe5a35..59b36bf 100644 --- a/packages/codeql-action/CHANGELOG.md +++ b/packages/codeql-action/CHANGELOG.md @@ -9,7 +9,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [2.1.0] -### Uncategorized +### Changed - Update publish-release workflow and CodeQL action versions - Update actions/checkout to latest commit for consistency across workflows @@ -17,7 +17,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [2.0.6] -### Uncategorized +### Changed - fix(codeql): prevent shell injection in debug steps and build command diff --git a/packages/language-detector/CHANGELOG.md b/packages/language-detector/CHANGELOG.md index 560f5e3..6eda3a1 100644 --- a/packages/language-detector/CHANGELOG.md +++ b/packages/language-detector/CHANGELOG.md @@ -9,7 +9,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [2.1.0] -### Uncategorized +### Changed - Update Node.js version to 24 in language-detector action and checkout action version in build-lint-test workflow for consistency - Update Node.js version in .nvmrc and enable Corepack in actions using node @@ -29,7 +29,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [2.0.2] -### Uncategorized +### Changed - Update language detector and job configurator to add Github Actions support by default ([#60](https://github.com/MetaMask/action-security-code-scanner/pull/60)) From 7cce367a384927b7fec90c38d875db9c99577e6d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82?= Date: Wed, 10 Jun 2026 12:39:25 +0100 Subject: [PATCH 3/4] update changelog --- CHANGELOG.md | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index a199284..b737d45 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -7,6 +7,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [Unreleased] +## [2.1.0] + ## [2.0.5] ### Added @@ -72,7 +74,8 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 - Initial release of this action ([#29](https://github.com/MetaMask/action-security-code-scanner/pull/29)) -[Unreleased]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.5...HEAD +[Unreleased]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.1.0...HEAD +[2.1.0]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.5...v2.1.0 [2.0.5]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.4...v2.0.5 [2.0.4]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.3...v2.0.4 [2.0.3]: https://github.com/MetaMask/action-security-code-scanner/compare/v2.0.2...v2.0.3 From 00ca0c59a177d4bd1a97c04b80471a0e3f25a87f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Micha=C5=82?= Date: Wed, 10 Jun 2026 12:49:14 +0100 Subject: [PATCH 4/4] update changelog --- CHANGELOG.md | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index b737d45..44b8a6f 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -9,6 +9,14 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0 ## [2.1.0] +### Added + +- Add zizmor static analysis of GitHub Actions workflows + +### Fixed + +- Addressed zizmor findings + ## [2.0.5] ### Added