chore(ci): bump the gh-actions-packages group with 4 updates #9535

dependabot · 2025-09-15T17:52:41Z

Bumps the gh-actions-packages group with 4 updates: actions/github-script, github/codeql-action, aquasecurity/trivy-action and actions/stale.

Updates actions/github-script from 7.0.1 to 8.0.0

Release notes

Sourced from actions/github-script's releases.

v8.0.0

What's Changed

Update Node.js version support to 24.x by @salmanmkc in actions/github-script#637

README for updating actions/github-script from v7 to v8 by @sneha-krip in actions/github-script#653

⚠️ Minimum Compatible Runner Version

v2.327.1
Release Notes

Make sure your runner is updated to this version or newer to use this release.

New Contributors

@salmanmkc made their first contribution in actions/github-script#637

@sneha-krip made their first contribution in actions/github-script#653

Full Changelog: actions/github-script@v7.1.0...v8.0.0

v7.1.0

What's Changed

Upgrade husky to v9 by @benelan in actions/github-script#482

Add workflow file for publishing releases to immutable action package by @Jcambass in actions/github-script#485

Upgrade IA Publish by @Jcambass in actions/github-script#486

Fix workflow status badges by @joshmgross in actions/github-script#497

Update usage of actions/upload-artifact by @joshmgross in actions/github-script#512

Clear up package name confusion by @joshmgross in actions/github-script#514

Update dependencies with npm audit fix by @joshmgross in actions/github-script#515

Specify that the used script is JavaScript by @timotk in actions/github-script#478

chore: Add Dependabot for NPM and Actions by @nschonni in actions/github-script#472

Define permissions in workflows and update actions by @joshmgross in actions/github-script#531

chore: Add Dependabot for .github/actions/install-dependencies by @nschonni in actions/github-script#532

chore: Remove .vscode settings by @nschonni in actions/github-script#533

ci: Use github/setup-licensed by @nschonni in actions/github-script#473

make octokit instance available as octokit on top of github, to make it easier to seamlessly copy examples from GitHub rest api or octokit documentations by @iamstarkov in actions/github-script#508

Remove octokit README updates for v7 by @joshmgross in actions/github-script#557

docs: add "exec" usage examples by @neilime in actions/github-script#546

Bump ruby/setup-ruby from 1.213.0 to 1.222.0 by @dependabot[bot] in actions/github-script#563

Bump ruby/setup-ruby from 1.222.0 to 1.229.0 by @dependabot[bot] in actions/github-script#575

Clearly document passing inputs to the script by @joshmgross in actions/github-script#603

Update README.md by @nebuk89 in actions/github-script#610

New Contributors

@benelan made their first contribution in actions/github-script#482

@Jcambass made their first contribution in actions/github-script#485

@timotk made their first contribution in actions/github-script#478

@iamstarkov made their first contribution in actions/github-script#508

@neilime made their first contribution in actions/github-script#546

@nebuk89 made their first contribution in actions/github-script#610

Full Changelog: actions/github-script@v7...v7.1.0

Commits

ed59741 Merge pull request #653 from actions/sneha-krip/readme-for-v8
2dc352e Bold minimum Actions Runner version in README
01e118c Update README for Node 24 runtime requirements
8b222ac Apply suggestion from @salmanmkc
adc0eea README for updating actions/github-script from v7 to v8
20fe497 Merge pull request #637 from actions/node24
e7b7f22 update licenses
2c81ba0 Update Node.js version support to 24.x
f28e40c Merge pull request #610 from actions/nebuk89-patch-1
1ae9958 Update README.md
Additional commits viewable in compare view

Updates github/codeql-action from 3.30.0 to 3.30.3

Release notes

Sourced from github/codeql-action's releases.

v3.30.3

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.3 - 10 Sep 2025

No user facing changes.

See the full CHANGELOG.md for more information.

v3.30.2

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.2 - 09 Sep 2025

Fixed a bug which could cause language autodetection to fail. #3084

Experimental: The quality-queries input that was added in 3.29.2 as part of an internal experiment is now deprecated and will be removed in an upcoming version of the CodeQL Action. It has been superseded by a new analysis-kinds input, which is part of the same internal experiment. Do not use this in production as it is subject to change at any time. #3064

See the full CHANGELOG.md for more information.

v3.30.1

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.30.1 - 05 Sep 2025

Update default CodeQL bundle version to 2.23.0. #3077

See the full CHANGELOG.md for more information.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

We have improved the CodeQL Action's ability to validate that the workflow it is used in does not use different versions of the CodeQL Action for different workflow steps. Mixing different versions of the CodeQL Action in the same workflow is unsupported and can lead to unpredictable results. A warning will now be emitted from the codeql-action/init step if different versions of the CodeQL Action are detected in the workflow file. Additionally, an error will now be thrown by the other CodeQL Action steps if they load a configuration file that was generated by a different version of the codeql-action/init step. #3099 and #3100

We added support for reducing the size of dependency caches for Java analyses, which will reduce cache usage and speed up workflows. This will be enabled automatically at a later time. #3107

3.30.3 - 10 Sep 2025

No user facing changes.

3.30.2 - 09 Sep 2025

Fixed a bug which could cause language autodetection to fail. #3084

Experimental: The quality-queries input that was added in 3.29.2 as part of an internal experiment is now deprecated and will be removed in an upcoming version of the CodeQL Action. It has been superseded by a new analysis-kinds input, which is part of the same internal experiment. Do not use this in production as it is subject to change at any time. #3064

3.30.1 - 05 Sep 2025

Update default CodeQL bundle version to 2.23.0. #3077

3.30.0 - 01 Sep 2025

Reduce the size of the CodeQL Action, speeding up workflows by approximately 4 seconds. #3054

3.29.11 - 21 Aug 2025

Update default CodeQL bundle version to 2.22.4. #3044

3.29.10 - 18 Aug 2025

No user facing changes.

3.29.9 - 12 Aug 2025

No user facing changes.

3.29.8 - 08 Aug 2025

Fix an issue where the Action would autodetect unsupported languages such as HTML. #3015

3.29.7 - 07 Aug 2025

This release rolls back 3.29.6 to address issues with language autodetection. It is identical to 3.29.5.

3.29.6 - 07 Aug 2025

The cleanup-level input to the analyze Action is now deprecated. The CodeQL Action has written a limited amount of intermediate results to the database since version 2.2.5, and now automatically manages cleanup. #2999

Update default CodeQL bundle version to 2.22.3. #3000

... (truncated)

Commits

192325c Merge pull request #3104 from github/update-v3.30.3-b660efdcf
e68956d Update changelog for v3.30.3
b660efd Merge pull request #3103 from github/mbg/fix/category-check
e49458b Fix runInterpretResultsFor using the wrong AnalysisConfig for category fix
f374a62 Merge pull request #3098 from github/kaspersv/increase-overlay-base-size-limit
5efa438 Merge pull request #3101 from github/mbg/public-repo-notice-in-pr-template
8a84a62 Overlay: Increase size limit for cached overlay base database
eb50a88 Merge pull request #3097 from github/redsun82/only-dump-sarif
4c53461 Tweak sarif dump log
dae3742 Dump soon to be uploaded SARIF on request
Additional commits viewable in compare view

Updates aquasecurity/trivy-action from 0.33.0 to 0.33.1

Release notes

Sourced from aquasecurity/trivy-action's releases.

v0.33.1

What's Changed

Update setup-trivy action to version v0.2.4 by @martincostello in aquasecurity/trivy-action#486

Full Changelog: aquasecurity/trivy-action@0.33.0...0.33.1

Commits

b6643a2 Update setup-trivy action to version v0.2.4 (#486)
See full diff in compare view

Updates actions/stale from 9.1.0 to 10.0.0

Release notes

Sourced from actions/stale's releases.

v10.0.0

What's Changed

Breaking Changes

Upgrade to node 24 by @salmanmkc in actions/stale#1279 Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. Release Notes

Enhancement

Introducing sort-by option by @suyashgaonkar in actions/stale#1254

Dependency Upgrades

Upgrade actions/publish-immutable-action from 0.0.3 to 0.0.4 by @dependabot[bot] in actions/stale#1186

Upgrade undici from 5.28.4 to 5.28.5 by @dependabot[bot] in actions/stale#1201

Upgrade @action/cache from 4.0.0 to 4.0.2 by @aparnajyothi-y in actions/stale#1226

Upgrade @action/cache from 4.0.2 to 4.0.3 by @suyashgaonkar in actions/stale#1233

Upgrade undici from 5.28.5 to 5.29.0 by @dependabot[bot] in actions/stale#1251

Upgrade form-data to bring in fix for critical vulnerability by @gowridurgad in actions/stale#1277

Documentation changes

Changelog update for recent releases by @suyashgaonkar in actions/stale#1224

Permissions update in Readme by @ghadimir in actions/stale#1248

New Contributors

@suyashgaonkar made their first contribution in actions/stale#1224

@GhadimiR made their first contribution in actions/stale#1248

@gowridurgad made their first contribution in actions/stale#1277

@salmanmkc made their first contribution in actions/stale#1279

Full Changelog: actions/stale@v9...v10.0.0

Commits

3a9db7e Upgrade to node 24 (#1279)
8f717f0 Bumps form-data (#1277)
a92fd57 build(deps): bump undici from 5.28.5 to 5.29.0 (#1251)
128b2c8 Introducing sort-by option (#1254)
f78de97 Update README.md (#1248)
816d9db Upgrade @action/cache from 4.0.2 to 4.0.3 (#1233)
ba23c1c upgrade actions/cache from 4.0.0 to 4.0.2 (#1226)
a65e88a build(deps): bump undici from 5.28.4 to 5.28.5 (#1201)
d4df79c Updates to CHANGELOG.MD for recent releases (#1224)
ee7ef89 build(deps): bump actions/publish-immutable-action from 0.0.3 to 0.0.4 (#1186)
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the gh-actions-packages group with 4 updates: [actions/github-script](https://github.com/actions/github-script), [github/codeql-action](https://github.com/github/codeql-action), [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) and [actions/stale](https://github.com/actions/stale). Updates `actions/github-script` from 7.0.1 to 8.0.0 - [Release notes](https://github.com/actions/github-script/releases) - [Commits](actions/github-script@60a0d83...ed59741) Updates `github/codeql-action` from 3.30.0 to 3.30.3 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@2d92b76...192325c) Updates `aquasecurity/trivy-action` from 0.33.0 to 0.33.1 - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](aquasecurity/trivy-action@f9424c1...b6643a2) Updates `actions/stale` from 9.1.0 to 10.0.0 - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](actions/stale@5bef64f...3a9db7e) --- updated-dependencies: - dependency-name: actions/github-script dependency-version: 8.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gh-actions-packages - dependency-name: github/codeql-action dependency-version: 3.30.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gh-actions-packages - dependency-name: aquasecurity/trivy-action dependency-version: 0.33.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gh-actions-packages - dependency-name: actions/stale dependency-version: 10.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: gh-actions-packages ... Signed-off-by: dependabot[bot] <support@github.com>

datadog-datadog-prod-us1 · 2025-09-15T18:16:05Z

🎯 Code Coverage
• Patch Coverage: 100.00%
• Total Coverage: 60.16% (+0.01%)

View detailed report

_{This comment will be updated automatically if new data arrives.

🔗 Commit SHA: 68b88d8 | Docs | Was this helpful? Give us feedback!}

pr-commenter · 2025-09-15T18:28:49Z

Benchmarks

Startup

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	dependabot/github_actions/gh-actions-packages-9b8dba51b8
git_commit_date	1757953159	1757958760
git_commit_sha	`8d08c36`	`68b88d8`
release_version	1.54.0-SNAPSHOT~8d08c362b5	1.54.0-SNAPSHOT~68b88d8194

See matching parameters

	Baseline	Candidate
application	insecure-bank	insecure-bank
ci_job_date	1757960568	1757960568
ci_job_id	1129770338	1129770338
ci_pipeline_id	76516426	76516426
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version	Linux runner-zfyrx7zua-project-304-concurrent-0-stpqxe7h 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux	Linux runner-zfyrx7zua-project-304-concurrent-0-stpqxe7h 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
module	Agent	Agent
parent	None	None

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 49 metrics, 10 unstable metrics.

Startup time reports for insecure-bank

gantt
    title insecure-bank - global startup overhead: candidate=1.54.0-SNAPSHOT~68b88d8194, baseline=1.54.0-SNAPSHOT~8d08c362b5

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.063 s) : 0, 1063237
Total [baseline] (8.665 s) : 0, 8664570
Agent [candidate] (1.061 s) : 0, 1061232
Total [candidate] (8.625 s) : 0, 8624567
section iast
Agent [baseline] (1.19 s) : 0, 1189928
Total [baseline] (9.31 s) : 0, 9309708
Agent [candidate] (1.188 s) : 0, 1187900
Total [candidate] (9.324 s) : 0, 9324014

baseline results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.063 s	-
Agent	iast	1.19 s	126.691 ms (11.9%)
Total	tracing	8.665 s	-
Total	iast	9.31 s	645.137 ms (7.4%)

candidate results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.061 s	-
Agent	iast	1.188 s	126.668 ms (11.9%)
Total	tracing	8.625 s	-
Total	iast	9.324 s	699.448 ms (8.1%)

gantt
    title insecure-bank - break down per module: candidate=1.54.0-SNAPSHOT~68b88d8194, baseline=1.54.0-SNAPSHOT~8d08c362b5

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.466 ms) : 0, 1466
crashtracking [candidate] (1.439 ms) : 0, 1439
BytebuddyAgent [baseline] (735.198 ms) : 0, 735198
BytebuddyAgent [candidate] (732.622 ms) : 0, 732622
GlobalTracer [baseline] (252.033 ms) : 0, 252033
GlobalTracer [candidate] (252.296 ms) : 0, 252296
AppSec [baseline] (30.624 ms) : 0, 30624
AppSec [candidate] (30.666 ms) : 0, 30666
Debugger [baseline] (6.384 ms) : 0, 6384
Debugger [candidate] (6.365 ms) : 0, 6365
Remote Config [baseline] (695.304 µs) : 0, 695
Remote Config [candidate] (688.788 µs) : 0, 689
Telemetry [baseline] (15.744 ms) : 0, 15744
Telemetry [candidate] (16.118 ms) : 0, 16118
section iast
crashtracking [baseline] (1.457 ms) : 0, 1457
crashtracking [candidate] (1.454 ms) : 0, 1454
BytebuddyAgent [baseline] (851.721 ms) : 0, 851721
BytebuddyAgent [candidate] (850.037 ms) : 0, 850037
GlobalTracer [baseline] (249.928 ms) : 0, 249928
GlobalTracer [candidate] (246.705 ms) : 0, 246705
IAST [baseline] (24.692 ms) : 0, 24692
IAST [candidate] (25.663 ms) : 0, 25663
AppSec [baseline] (26.412 ms) : 0, 26412
AppSec [candidate] (28.06 ms) : 0, 28060
Debugger [baseline] (5.989 ms) : 0, 5989
Debugger [candidate] (6.067 ms) : 0, 6067
Remote Config [baseline] (615.545 µs) : 0, 616
Remote Config [candidate] (595.301 µs) : 0, 595
Telemetry [baseline] (8.105 ms) : 0, 8105
Telemetry [candidate] (8.299 ms) : 0, 8299

Startup time reports for petclinic

gantt
    title petclinic - global startup overhead: candidate=1.54.0-SNAPSHOT~68b88d8194, baseline=1.54.0-SNAPSHOT~8d08c362b5

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.08 s) : 0, 1079851
Total [baseline] (10.996 s) : 0, 10996269
Agent [candidate] (1.063 s) : 0, 1062985
Total [candidate] (10.746 s) : 0, 10746334
section appsec
Agent [baseline] (1.242 s) : 0, 1242260
Total [baseline] (11.132 s) : 0, 11132152
Agent [candidate] (1.247 s) : 0, 1247263
Total [candidate] (11.087 s) : 0, 11086946
section iast
Agent [baseline] (1.194 s) : 0, 1194224
Total [baseline] (11.037 s) : 0, 11036909
Agent [candidate] (1.19 s) : 0, 1189892
Total [candidate] (11.043 s) : 0, 11043368
section profiling
Agent [baseline] (1.215 s) : 0, 1214886
Total [baseline] (11.01 s) : 0, 11010294
Agent [candidate] (1.211 s) : 0, 1211147
Total [candidate] (11.004 s) : 0, 11003750

baseline results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.08 s	-
Agent	appsec	1.242 s	162.41 ms (15.0%)
Agent	iast	1.194 s	114.374 ms (10.6%)
Agent	profiling	1.215 s	135.035 ms (12.5%)
Total	tracing	10.996 s	-
Total	appsec	11.132 s	135.883 ms (1.2%)
Total	iast	11.037 s	40.64 ms (0.4%)
Total	profiling	11.01 s	14.025 ms (0.1%)

candidate results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.063 s	-
Agent	appsec	1.247 s	184.279 ms (17.3%)
Agent	iast	1.19 s	126.907 ms (11.9%)
Agent	profiling	1.211 s	148.162 ms (13.9%)
Total	tracing	10.746 s	-
Total	appsec	11.087 s	340.612 ms (3.2%)
Total	iast	11.043 s	297.035 ms (2.8%)
Total	profiling	11.004 s	257.416 ms (2.4%)

gantt
    title petclinic - break down per module: candidate=1.54.0-SNAPSHOT~68b88d8194, baseline=1.54.0-SNAPSHOT~8d08c362b5

    dateFormat X
    axisFormat %s
section tracing
crashtracking [baseline] (1.474 ms) : 0, 1474
crashtracking [candidate] (1.453 ms) : 0, 1453
BytebuddyAgent [baseline] (746.065 ms) : 0, 746065
BytebuddyAgent [candidate] (733.862 ms) : 0, 733862
GlobalTracer [baseline] (256.382 ms) : 0, 256382
GlobalTracer [candidate] (252.634 ms) : 0, 252634
AppSec [baseline] (31.101 ms) : 0, 31101
AppSec [candidate] (30.55 ms) : 0, 30550
Debugger [baseline] (6.426 ms) : 0, 6426
Debugger [candidate] (6.354 ms) : 0, 6354
Remote Config [baseline] (702.958 µs) : 0, 703
Remote Config [candidate] (687.331 µs) : 0, 687
Telemetry [baseline] (16.353 ms) : 0, 16353
Telemetry [candidate] (16.349 ms) : 0, 16349
section appsec
crashtracking [baseline] (1.463 ms) : 0, 1463
crashtracking [candidate] (1.468 ms) : 0, 1468
BytebuddyAgent [baseline] (760.936 ms) : 0, 760936
BytebuddyAgent [candidate] (763.094 ms) : 0, 763094
GlobalTracer [baseline] (247.185 ms) : 0, 247185
GlobalTracer [candidate] (249.146 ms) : 0, 249146
IAST [baseline] (23.931 ms) : 0, 23931
IAST [candidate] (24.392 ms) : 0, 24392
AppSec [baseline] (172.17 ms) : 0, 172170
AppSec [candidate] (172.515 ms) : 0, 172515
Debugger [baseline] (6.063 ms) : 0, 6063
Debugger [candidate] (6.053 ms) : 0, 6053
Remote Config [baseline] (630.158 µs) : 0, 630
Remote Config [candidate] (633.352 µs) : 0, 633
Telemetry [baseline] (8.533 ms) : 0, 8533
Telemetry [candidate] (8.619 ms) : 0, 8619
section iast
crashtracking [baseline] (1.458 ms) : 0, 1458
crashtracking [candidate] (1.463 ms) : 0, 1463
BytebuddyAgent [baseline] (855.07 ms) : 0, 855070
BytebuddyAgent [candidate] (851.992 ms) : 0, 851992
GlobalTracer [baseline] (246.572 ms) : 0, 246572
GlobalTracer [candidate] (247.316 ms) : 0, 247316
IAST [baseline] (29.739 ms) : 0, 29739
IAST [candidate] (27.106 ms) : 0, 27106
AppSec [baseline] (25.522 ms) : 0, 25522
AppSec [candidate] (26.349 ms) : 0, 26349
Debugger [baseline] (6.027 ms) : 0, 6027
Debugger [candidate] (6.036 ms) : 0, 6036
Remote Config [baseline] (616.494 µs) : 0, 616
Remote Config [candidate] (595.881 µs) : 0, 596
Telemetry [baseline] (8.109 ms) : 0, 8109
Telemetry [candidate] (8.043 ms) : 0, 8043
section profiling
crashtracking [baseline] (1.442 ms) : 0, 1442
crashtracking [candidate] (1.433 ms) : 0, 1433
BytebuddyAgent [baseline] (765.598 ms) : 0, 765598
BytebuddyAgent [candidate] (762.707 ms) : 0, 762707
GlobalTracer [baseline] (234.309 ms) : 0, 234309
GlobalTracer [candidate] (233.392 ms) : 0, 233392
AppSec [baseline] (30.697 ms) : 0, 30697
AppSec [candidate] (31.038 ms) : 0, 31038
Debugger [baseline] (10.613 ms) : 0, 10613
Debugger [candidate] (11.244 ms) : 0, 11244
Remote Config [baseline] (829.422 µs) : 0, 829
Remote Config [candidate] (1.485 ms) : 0, 1485
Telemetry [baseline] (12.464 ms) : 0, 12464
Telemetry [candidate] (10.327 ms) : 0, 10327
ProfilingAgent [baseline] (107.676 ms) : 0, 107676
ProfilingAgent [candidate] (108.469 ms) : 0, 108469
Profiling [baseline] (108.313 ms) : 0, 108313
Profiling [candidate] (109.121 ms) : 0, 109121

Load

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	dependabot/github_actions/gh-actions-packages-9b8dba51b8
git_commit_date	1757953159	1757958760
git_commit_sha	`8d08c36`	`68b88d8`
release_version	1.54.0-SNAPSHOT~8d08c362b5	1.54.0-SNAPSHOT~68b88d8194

See matching parameters

	Baseline	Candidate
application	insecure-bank	insecure-bank
ci_job_date	1757960313	1757960313
ci_job_id	1129770339	1129770339
ci_pipeline_id	76516426	76516426
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version	Linux runner-zfyrx7zua-project-304-concurrent-0-a869big7 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux	Linux runner-zfyrx7zua-project-304-concurrent-0-a869big7 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 0 performance improvements and 1 performance regressions! Performance is the same for 11 metrics, 12 unstable metrics.

scenario	Δ mean http_req_duration	Δ mean throughput	candidate mean http_req_duration	candidate mean throughput	baseline mean http_req_duration	baseline mean throughput
scenario:load:petclinic:appsec:high_load	worse [+1.018ms; +1.936ms] or [+2.137%; +4.064%]	unstable [-9.408op/s; +3.508op/s] or [-9.578%; +3.571%]	49.130ms	95.275op/s	47.653ms	98.225op/s

Request duration reports for petclinic

gantt
    title petclinic - request duration [CI 0.99] : candidate=1.54.0-SNAPSHOT~68b88d8194, baseline=1.54.0-SNAPSHOT~8d08c362b5
    dateFormat X
    axisFormat %s
section baseline
no_agent (37.487 ms) : 37184, 37790
.   : milestone, 37487,
appsec (47.653 ms) : 47230, 48076
.   : milestone, 47653,
code_origins (45.115 ms) : 44742, 45489
.   : milestone, 45115,
iast (44.913 ms) : 44530, 45296
.   : milestone, 44913,
profiling (47.936 ms) : 47464, 48408
.   : milestone, 47936,
tracing (44.091 ms) : 43721, 44460
.   : milestone, 44091,
section candidate
no_agent (37.166 ms) : 36872, 37460
.   : milestone, 37166,
appsec (49.13 ms) : 48700, 49560
.   : milestone, 49130,
code_origins (45.308 ms) : 44904, 45712
.   : milestone, 45308,
iast (44.191 ms) : 43801, 44581
.   : milestone, 44191,
profiling (48.1 ms) : 47667, 48534
.   : milestone, 48100,
tracing (43.251 ms) : 42879, 43624
.   : milestone, 43251,

baseline results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	37.487 ms [37.184 ms, 37.79 ms]	-
appsec	47.653 ms [47.23 ms, 48.076 ms]	10.165 ms (27.1%)
code_origins	45.115 ms [44.742 ms, 45.489 ms]	7.628 ms (20.3%)
iast	44.913 ms [44.53 ms, 45.296 ms]	7.426 ms (19.8%)
profiling	47.936 ms [47.464 ms, 48.408 ms]	10.449 ms (27.9%)
tracing	44.091 ms [43.721 ms, 44.46 ms]	6.603 ms (17.6%)

candidate results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	37.166 ms [36.872 ms, 37.46 ms]	-
appsec	49.13 ms [48.7 ms, 49.56 ms]	11.964 ms (32.2%)
code_origins	45.308 ms [44.904 ms, 45.712 ms]	8.142 ms (21.9%)
iast	44.191 ms [43.801 ms, 44.581 ms]	7.025 ms (18.9%)
profiling	48.1 ms [47.667 ms, 48.534 ms]	10.935 ms (29.4%)
tracing	43.251 ms [42.879 ms, 43.624 ms]	6.086 ms (16.4%)

Request duration reports for insecure-bank

gantt
    title insecure-bank - request duration [CI 0.99] : candidate=1.54.0-SNAPSHOT~68b88d8194, baseline=1.54.0-SNAPSHOT~8d08c362b5
    dateFormat X
    axisFormat %s
section baseline
no_agent (4.249 ms) : 4198, 4299
.   : milestone, 4249,
iast (9.592 ms) : 9426, 9758
.   : milestone, 9592,
iast_FULL (14.104 ms) : 13820, 14388
.   : milestone, 14104,
iast_GLOBAL (10.523 ms) : 10336, 10710
.   : milestone, 10523,
profiling (9.23 ms) : 9082, 9377
.   : milestone, 9230,
tracing (7.644 ms) : 7529, 7760
.   : milestone, 7644,
section candidate
no_agent (4.251 ms) : 4203, 4298
.   : milestone, 4251,
iast (9.506 ms) : 9339, 9673
.   : milestone, 9506,
iast_FULL (13.96 ms) : 13684, 14236
.   : milestone, 13960,
iast_GLOBAL (10.541 ms) : 10357, 10725
.   : milestone, 10541,
profiling (9.261 ms) : 9110, 9412
.   : milestone, 9261,
tracing (7.627 ms) : 7519, 7735
.   : milestone, 7627,

baseline results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	4.249 ms [4.198 ms, 4.299 ms]	-
iast	9.592 ms [9.426 ms, 9.758 ms]	5.343 ms (125.8%)
iast_FULL	14.104 ms [13.82 ms, 14.388 ms]	9.855 ms (232.0%)
iast_GLOBAL	10.523 ms [10.336 ms, 10.71 ms]	6.274 ms (147.7%)
profiling	9.23 ms [9.082 ms, 9.377 ms]	4.981 ms (117.2%)
tracing	7.644 ms [7.529 ms, 7.76 ms]	3.396 ms (79.9%)

candidate results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	4.251 ms [4.203 ms, 4.298 ms]	-
iast	9.506 ms [9.339 ms, 9.673 ms]	5.255 ms (123.6%)
iast_FULL	13.96 ms [13.684 ms, 14.236 ms]	9.709 ms (228.4%)
iast_GLOBAL	10.541 ms [10.357 ms, 10.725 ms]	6.291 ms (148.0%)
profiling	9.261 ms [9.11 ms, 9.412 ms]	5.011 ms (117.9%)
tracing	7.627 ms [7.519 ms, 7.735 ms]	3.376 ms (79.4%)

Dacapo

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	dependabot/github_actions/gh-actions-packages-9b8dba51b8
git_commit_date	1757953159	1757958760
git_commit_sha	`8d08c36`	`68b88d8`
release_version	1.54.0-SNAPSHOT~8d08c362b5	1.54.0-SNAPSHOT~68b88d8194

See matching parameters

	Baseline	Candidate
application	biojava	biojava
ci_job_date	1757960814	1757960814
ci_job_id	1129770340	1129770340
ci_pipeline_id	76516426	76516426
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version	Linux runner-zfyrx7zua-project-304-concurrent-1-r9d43sfj 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux	Linux runner-zfyrx7zua-project-304-concurrent-1-r9d43sfj 6.8.0-1031-aws #33~22.04.1-Ubuntu SMP Thu Jun 26 14:22:30 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux

Summary

Found 1 performance improvements and 0 performance regressions! Performance is the same for 10 metrics, 1 unstable metrics.

scenario	Δ mean execution_time	candidate mean execution_time	baseline mean execution_time
scenario:dacapo:tomcat:appsec	better [-1.404ms; -1.064ms] or [-38.028%; -28.820%]	2.458ms	3.692ms

Execution time for biojava

gantt
    title biojava - execution time [CI 0.99] : candidate=1.54.0-SNAPSHOT~68b88d8194, baseline=1.54.0-SNAPSHOT~8d08c362b5
    dateFormat X
    axisFormat %s
section baseline
no_agent (15.523 s) : 15523000, 15523000
.   : milestone, 15523000,
appsec (15.039 s) : 15039000, 15039000
.   : milestone, 15039000,
iast (18.419 s) : 18419000, 18419000
.   : milestone, 18419000,
iast_GLOBAL (18.035 s) : 18035000, 18035000
.   : milestone, 18035000,
profiling (15.916 s) : 15916000, 15916000
.   : milestone, 15916000,
tracing (15.108 s) : 15108000, 15108000
.   : milestone, 15108000,
section candidate
no_agent (15.273 s) : 15273000, 15273000
.   : milestone, 15273000,
appsec (14.999 s) : 14999000, 14999000
.   : milestone, 14999000,
iast (18.246 s) : 18246000, 18246000
.   : milestone, 18246000,
iast_GLOBAL (18.143 s) : 18143000, 18143000
.   : milestone, 18143000,
profiling (15.924 s) : 15924000, 15924000
.   : milestone, 15924000,
tracing (14.957 s) : 14957000, 14957000
.   : milestone, 14957000,

baseline results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	15.523 s [15.523 s, 15.523 s]	-
appsec	15.039 s [15.039 s, 15.039 s]	-484.0 ms (-3.1%)
iast	18.419 s [18.419 s, 18.419 s]	2.896 s (18.7%)
iast_GLOBAL	18.035 s [18.035 s, 18.035 s]	2.512 s (16.2%)
profiling	15.916 s [15.916 s, 15.916 s]	393.0 ms (2.5%)
tracing	15.108 s [15.108 s, 15.108 s]	-415.0 ms (-2.7%)

candidate results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	15.273 s [15.273 s, 15.273 s]	-
appsec	14.999 s [14.999 s, 14.999 s]	-274.0 ms (-1.8%)
iast	18.246 s [18.246 s, 18.246 s]	2.973 s (19.5%)
iast_GLOBAL	18.143 s [18.143 s, 18.143 s]	2.87 s (18.8%)
profiling	15.924 s [15.924 s, 15.924 s]	651.0 ms (4.3%)
tracing	14.957 s [14.957 s, 14.957 s]	-316.0 ms (-2.1%)

Execution time for tomcat

gantt
    title tomcat - execution time [CI 0.99] : candidate=1.54.0-SNAPSHOT~68b88d8194, baseline=1.54.0-SNAPSHOT~8d08c362b5
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.477 ms) : 1465, 1489
.   : milestone, 1477,
appsec (3.692 ms) : 3474, 3909
.   : milestone, 3692,
iast (2.202 ms) : 2140, 2264
.   : milestone, 2202,
iast_GLOBAL (2.245 ms) : 2182, 2308
.   : milestone, 2245,
profiling (2.472 ms) : 2251, 2692
.   : milestone, 2472,
tracing (2.016 ms) : 1968, 2064
.   : milestone, 2016,
section candidate
no_agent (1.475 ms) : 1464, 1487
.   : milestone, 1475,
appsec (2.458 ms) : 2408, 2508
.   : milestone, 2458,
iast (2.204 ms) : 2142, 2266
.   : milestone, 2204,
iast_GLOBAL (2.242 ms) : 2179, 2305
.   : milestone, 2242,
profiling (2.036 ms) : 1986, 2086
.   : milestone, 2036,
tracing (2.027 ms) : 1978, 2076
.   : milestone, 2027,

baseline results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	1.477 ms [1.465 ms, 1.489 ms]	-
appsec	3.692 ms [3.474 ms, 3.909 ms]	2.215 ms (149.9%)
iast	2.202 ms [2.14 ms, 2.264 ms]	724.938 µs (49.1%)
iast_GLOBAL	2.245 ms [2.182 ms, 2.308 ms]	767.706 µs (52.0%)
profiling	2.472 ms [2.251 ms, 2.692 ms]	994.616 µs (67.3%)
tracing	2.016 ms [1.968 ms, 2.064 ms]	539.121 µs (36.5%)

candidate results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	1.475 ms [1.464 ms, 1.487 ms]	-
appsec	2.458 ms [2.408 ms, 2.508 ms]	982.509 µs (66.6%)
iast	2.204 ms [2.142 ms, 2.266 ms]	728.756 µs (49.4%)
iast_GLOBAL	2.242 ms [2.179 ms, 2.305 ms]	766.765 µs (52.0%)
profiling	2.036 ms [1.986 ms, 2.086 ms]	560.813 µs (38.0%)
tracing	2.027 ms [1.978 ms, 2.076 ms]	551.777 µs (37.4%)

dependabot bot added comp: tooling Build & Tooling tag: dependencies Dependencies related changes tag: no release notes Changes to exclude from release notes labels Sep 15, 2025

dependabot bot requested a review from a team as a code owner September 15, 2025 17:52

dependabot bot requested review from bric3 and removed request for a team September 15, 2025 17:52

PerfectSlayer approved these changes Sep 16, 2025

View reviewed changes

PerfectSlayer enabled auto-merge (squash) September 16, 2025 12:18

bric3 approved these changes Sep 16, 2025

View reviewed changes

PerfectSlayer merged commit 9fc16bb into master Sep 16, 2025
501 of 502 checks passed

PerfectSlayer deleted the dependabot/github_actions/gh-actions-packages-9b8dba51b8 branch September 16, 2025 12:42

github-actions bot added this to the 1.54.0 milestone Sep 16, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(ci): bump the gh-actions-packages group with 4 updates #9535

chore(ci): bump the gh-actions-packages group with 4 updates #9535

Uh oh!

dependabot bot commented on behalf of github Sep 15, 2025

Uh oh!

datadog-datadog-prod-us1 bot commented Sep 15, 2025 •

edited by datadog-official bot

Loading

Uh oh!

pr-commenter bot commented Sep 15, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

chore(ci): bump the gh-actions-packages group with 4 updates #9535

chore(ci): bump the gh-actions-packages group with 4 updates #9535

Uh oh!

Conversation

dependabot bot commented on behalf of github Sep 15, 2025

v8.0.0

What's Changed

⚠️ Minimum Compatible Runner Version

New Contributors

v7.1.0

What's Changed

New Contributors

v3.30.3

CodeQL Action Changelog

3.30.3 - 10 Sep 2025

v3.30.2

CodeQL Action Changelog

3.30.2 - 09 Sep 2025

v3.30.1

CodeQL Action Changelog

3.30.1 - 05 Sep 2025

CodeQL Action Changelog

[UNRELEASED]

3.30.3 - 10 Sep 2025

3.30.2 - 09 Sep 2025

3.30.1 - 05 Sep 2025

3.30.0 - 01 Sep 2025

3.29.11 - 21 Aug 2025

3.29.10 - 18 Aug 2025

3.29.9 - 12 Aug 2025

3.29.8 - 08 Aug 2025

3.29.7 - 07 Aug 2025

3.29.6 - 07 Aug 2025

v0.33.1

What's Changed

v10.0.0

What's Changed

Breaking Changes

Enhancement

Dependency Upgrades

Documentation changes

New Contributors

Uh oh!

datadog-datadog-prod-us1 bot commented Sep 15, 2025 • edited by datadog-official bot Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

pr-commenter bot commented Sep 15, 2025

Benchmarks

Startup

Parameters

Summary

Load

Parameters

Summary

Dacapo

Parameters

Summary

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

datadog-datadog-prod-us1 bot commented Sep 15, 2025 •

edited by datadog-official bot

Loading