chore(ci): bump github/codeql-action from 3.28.16 to 3.28.17 in the gh-actions-packages group

[dependabot]

Bumps the gh-actions-packages group with 1 update: github/codeql-action.

Updates github/codeql-action from 3.28.16 to 3.28.17

Release notes

Sourced from github/codeql-action's releases.

v3.28.17

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

3.28.17 - 02 May 2025

• Update default CodeQL bundle version to 2.21.2. #2872

See the full CHANGELOG.md for more information.

Changelog

Sourced from github/codeql-action's changelog.

CodeQL Action Changelog

See the releases page for the relevant changes to the CodeQL CLI and language packs.

[UNRELEASED]

No user facing changes.

3.28.17 - 02 May 2025

• Update default CodeQL bundle version to 2.21.2. #2872

3.28.16 - 23 Apr 2025

• Update default CodeQL bundle version to 2.21.1. #2863

3.28.15 - 07 Apr 2025

• Fix bug where the action would fail if it tried to produce a debug artifact with more than 65535 files. #2842

3.28.14 - 07 Apr 2025

• Update default CodeQL bundle version to 2.21.0. #2838

3.28.13 - 24 Mar 2025

No user facing changes.

3.28.12 - 19 Mar 2025

• Dependency caching should now cache more dependencies for Java build-mode: none extractions. This should speed up workflows and avoid inconsistent alerts in some cases.
• Update default CodeQL bundle version to 2.20.7. #2810

3.28.11 - 07 Mar 2025

• Update default CodeQL bundle version to 2.20.6. #2793

3.28.10 - 21 Feb 2025

• Update default CodeQL bundle version to 2.20.5. #2772
• Address an issue where the CodeQL Bundle would occasionally fail to decompress on macOS. #2768

3.28.9 - 07 Feb 2025

• Update default CodeQL bundle version to 2.20.4. #2753

3.28.8 - 29 Jan 2025

• Enable support for Kotlin 2.1.10 when running with CodeQL CLI v2.20.3. #2744

... (truncated)

Commits

• 60168ef Merge pull request #2886 from github/update-v3.28.17-97a2bfd2a
• 0d5a311 Update changelog for v3.28.17
• 97a2bfd Merge pull request #2872 from github/update-bundle/codeql-bundle-v2.21.2
• 9aba20e Merge branch 'main' into update-bundle/codeql-bundle-v2.21.2
• 81a9508 Merge pull request #2876 from github/henrymercer/fix-diff-informed-multiple-a...
• 1569f4c Disable diff-informed queries in code scanning config tests
• 62fbeb6 Merge branch 'main' into henrymercer/fix-diff-informed-multiple-analyze
• f122d1d Address test failures from computing temporary directory too early
• 083772a Do not fail diff informed analyses when analyze is run twice in the same job
• 5db14d0 Merge branch 'main' into update-bundle/codeql-bundle-v2.21.2
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[pr-commenter]

Benchmarks

Startup

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	dependabot/github_actions/gh-actions-packages-970434cb35
git_commit_date	1747037529	1747037629
git_commit_sha	2e4323c	9a9f223
release_version	1.50.0-SNAPSHOT~2e4323c2d9	1.50.0-SNAPSHOT~9a9f223464

See matching parameters

	Baseline	Candidate
application	insecure-bank	insecure-bank
ci_job_date	1747039987	1747039987
ci_job_id	932914640	932914640
ci_pipeline_id	64750628	64750628
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version	Linux runner-psrqmy6d-project-304-concurrent-0-3i05re7r 6.8.0-1027-aws #29~22.04.1-Ubuntu SMP Sun Mar 30 07:45:38 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux	Linux runner-psrqmy6d-project-304-concurrent-0-3i05re7r 6.8.0-1027-aws #29~22.04.1-Ubuntu SMP Sun Mar 30 07:45:38 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
module	Agent	Agent
parent	None	None
variant	iast	iast

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 59 metrics, 12 unstable metrics.

Startup time reports for insecure-bank

gantt
    title insecure-bank - global startup overhead: candidate=1.50.0-SNAPSHOT~9a9f223464, baseline=1.50.0-SNAPSHOT~2e4323c2d9

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.02 s) : 0, 1019839
Total [baseline] (8.649 s) : 0, 8649063
Agent [candidate] (1.018 s) : 0, 1017832
Total [candidate] (8.628 s) : 0, 8628106
section iast
Agent [baseline] (1.147 s) : 0, 1147150
Total [baseline] (9.237 s) : 0, 9236985
Agent [candidate] (1.145 s) : 0, 1144649
Total [candidate] (9.239 s) : 0, 9238698
section iast_HARDCODED_SECRET_DISABLED
Agent [baseline] (1.155 s) : 0, 1155140
Total [baseline] (9.203 s) : 0, 9203230
Agent [candidate] (1.152 s) : 0, 1152083
Total [candidate] (9.192 s) : 0, 9192053
section iast_TELEMETRY_OFF
Agent [baseline] (1.152 s) : 0, 1151548
Total [baseline] (9.25 s) : 0, 9249871
Agent [candidate] (1.145 s) : 0, 1144979
Total [candidate] (9.253 s) : 0, 9253466

Loading

• baseline results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.02 s	-
Agent	iast	1.147 s	127.311 ms (12.5%)
Agent	iast_HARDCODED_SECRET_DISABLED	1.155 s	135.301 ms (13.3%)
Agent	iast_TELEMETRY_OFF	1.152 s	131.709 ms (12.9%)
Total	tracing	8.649 s	-
Total	iast	9.237 s	587.922 ms (6.8%)
Total	iast_HARDCODED_SECRET_DISABLED	9.203 s	554.167 ms (6.4%)
Total	iast_TELEMETRY_OFF	9.25 s	600.808 ms (6.9%)

• candidate results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.018 s	-
Agent	iast	1.145 s	126.816 ms (12.5%)
Agent	iast_HARDCODED_SECRET_DISABLED	1.152 s	134.25 ms (13.2%)
Agent	iast_TELEMETRY_OFF	1.145 s	127.147 ms (12.5%)
Total	tracing	8.628 s	-
Total	iast	9.239 s	610.591 ms (7.1%)
Total	iast_HARDCODED_SECRET_DISABLED	9.192 s	563.947 ms (6.5%)
Total	iast_TELEMETRY_OFF	9.253 s	625.36 ms (7.2%)

gantt
    title insecure-bank - break down per module: candidate=1.50.0-SNAPSHOT~9a9f223464, baseline=1.50.0-SNAPSHOT~2e4323c2d9

    dateFormat X
    axisFormat %s
section tracing
BytebuddyAgent [baseline] (681.833 ms) : 0, 681833
BytebuddyAgent [candidate] (680.177 ms) : 0, 680177
GlobalTracer [baseline] (239.694 ms) : 0, 239694
GlobalTracer [candidate] (239.557 ms) : 0, 239557
AppSec [baseline] (54.455 ms) : 0, 54455
AppSec [candidate] (55.029 ms) : 0, 55029
Debugger [baseline] (8.506 ms) : 0, 8506
Debugger [candidate] (9.052 ms) : 0, 9052
Remote Config [baseline] (701.986 µs) : 0, 702
Remote Config [candidate] (673.557 µs) : 0, 674
Telemetry [baseline] (11.094 ms) : 0, 11094
Telemetry [candidate] (9.795 ms) : 0, 9795
section iast
BytebuddyAgent [baseline] (800.528 ms) : 0, 800528
BytebuddyAgent [candidate] (799.237 ms) : 0, 799237
GlobalTracer [baseline] (230.295 ms) : 0, 230295
GlobalTracer [candidate] (229.419 ms) : 0, 229419
IAST [baseline] (27.445 ms) : 0, 27445
IAST [candidate] (28.318 ms) : 0, 28318
AppSec [baseline] (51.123 ms) : 0, 51123
AppSec [candidate] (50.028 ms) : 0, 50028
Debugger [baseline] (5.894 ms) : 0, 5894
Debugger [candidate] (5.903 ms) : 0, 5903
Remote Config [baseline] (596.339 µs) : 0, 596
Remote Config [candidate] (601.933 µs) : 0, 602
Telemetry [baseline] (7.846 ms) : 0, 7846
Telemetry [candidate] (7.798 ms) : 0, 7798
section iast_HARDCODED_SECRET_DISABLED
BytebuddyAgent [baseline] (806.78 ms) : 0, 806780
BytebuddyAgent [candidate] (805.799 ms) : 0, 805799
GlobalTracer [baseline] (231.362 ms) : 0, 231362
GlobalTracer [candidate] (230.045 ms) : 0, 230045
IAST [baseline] (28.37 ms) : 0, 28370
IAST [candidate] (29.104 ms) : 0, 29104
AppSec [baseline] (49.752 ms) : 0, 49752
AppSec [candidate] (49.188 ms) : 0, 49188
Debugger [baseline] (5.922 ms) : 0, 5922
Debugger [candidate] (5.921 ms) : 0, 5921
Remote Config [baseline] (585.966 µs) : 0, 586
Remote Config [candidate] (600.31 µs) : 0, 600
Telemetry [baseline] (7.927 ms) : 0, 7927
Telemetry [candidate] (7.906 ms) : 0, 7906
section iast_TELEMETRY_OFF
BytebuddyAgent [baseline] (803.408 ms) : 0, 803408
BytebuddyAgent [candidate] (799.89 ms) : 0, 799890
GlobalTracer [baseline] (231.55 ms) : 0, 231550
GlobalTracer [candidate] (229.363 ms) : 0, 229363
IAST [baseline] (22.55 ms) : 0, 22550
IAST [candidate] (22.932 ms) : 0, 22932
AppSec [baseline] (56.011 ms) : 0, 56011
AppSec [candidate] (55.013 ms) : 0, 55013
Debugger [baseline] (5.984 ms) : 0, 5984
Debugger [candidate] (5.9 ms) : 0, 5900
Remote Config [baseline] (600.48 µs) : 0, 600
Remote Config [candidate] (599.282 µs) : 0, 599
Telemetry [baseline] (7.769 ms) : 0, 7769
Telemetry [candidate] (7.742 ms) : 0, 7742

Loading

Startup time reports for petclinic

gantt
    title petclinic - global startup overhead: candidate=1.50.0-SNAPSHOT~9a9f223464, baseline=1.50.0-SNAPSHOT~2e4323c2d9

    dateFormat X
    axisFormat %s
section tracing
Agent [baseline] (1.028 s) : 0, 1028157
Total [baseline] (10.477 s) : 0, 10477364
Agent [candidate] (1.019 s) : 0, 1019129
Total [candidate] (10.567 s) : 0, 10567425
section appsec
Agent [baseline] (1.16 s) : 0, 1159707
Total [baseline] (10.656 s) : 0, 10656456
Agent [candidate] (1.162 s) : 0, 1162459
Total [candidate] (10.658 s) : 0, 10657642
section iast
Agent [baseline] (1.149 s) : 0, 1149459
Total [baseline] (10.888 s) : 0, 10888462
Agent [candidate] (1.15 s) : 0, 1149962
Total [candidate] (10.905 s) : 0, 10904976
section profiling
Agent [baseline] (1.286 s) : 0, 1286363
Total [baseline] (10.964 s) : 0, 10963680
Agent [candidate] (1.28 s) : 0, 1279921
Total [candidate] (10.896 s) : 0, 10896426

Loading

• baseline results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.028 s	-
Agent	appsec	1.16 s	131.55 ms (12.8%)
Agent	iast	1.149 s	121.301 ms (11.8%)
Agent	profiling	1.286 s	258.205 ms (25.1%)
Total	tracing	10.477 s	-
Total	appsec	10.656 s	179.092 ms (1.7%)
Total	iast	10.888 s	411.098 ms (3.9%)
Total	profiling	10.964 s	486.316 ms (4.6%)

• candidate results

Module	Variant	Duration	Δ tracing
Agent	tracing	1.019 s	-
Agent	appsec	1.162 s	143.33 ms (14.1%)
Agent	iast	1.15 s	130.833 ms (12.8%)
Agent	profiling	1.28 s	260.792 ms (25.6%)
Total	tracing	10.567 s	-
Total	appsec	10.658 s	90.217 ms (0.9%)
Total	iast	10.905 s	337.55 ms (3.2%)
Total	profiling	10.896 s	329.001 ms (3.1%)

gantt
    title petclinic - break down per module: candidate=1.50.0-SNAPSHOT~9a9f223464, baseline=1.50.0-SNAPSHOT~2e4323c2d9

    dateFormat X
    axisFormat %s
section tracing
BytebuddyAgent [baseline] (690.454 ms) : 0, 690454
BytebuddyAgent [candidate] (682.581 ms) : 0, 682581
GlobalTracer [baseline] (240.151 ms) : 0, 240151
GlobalTracer [candidate] (240.005 ms) : 0, 240005
AppSec [baseline] (55.174 ms) : 0, 55174
AppSec [candidate] (54.427 ms) : 0, 54427
Debugger [baseline] (8.945 ms) : 0, 8945
Debugger [candidate] (9.592 ms) : 0, 9592
Remote Config [baseline] (689.752 µs) : 0, 690
Remote Config [candidate] (691.329 µs) : 0, 691
Telemetry [baseline] (9.034 ms) : 0, 9034
Telemetry [candidate] (8.242 ms) : 0, 8242
section appsec
BytebuddyAgent [baseline] (699.339 ms) : 0, 699339
BytebuddyAgent [candidate] (701.798 ms) : 0, 701798
GlobalTracer [baseline] (236.302 ms) : 0, 236302
GlobalTracer [candidate] (236.787 ms) : 0, 236787
AppSec [baseline] (174.594 ms) : 0, 174594
AppSec [candidate] (175.67 ms) : 0, 175670
Debugger [baseline] (5.947 ms) : 0, 5947
Debugger [candidate] (5.88 ms) : 0, 5880
Remote Config [baseline] (629.712 µs) : 0, 630
Remote Config [candidate] (616.461 µs) : 0, 616
Telemetry [baseline] (8.55 ms) : 0, 8550
Telemetry [candidate] (7.327 ms) : 0, 7327
IAST [baseline] (21.779 ms) : 0, 21779
IAST [candidate] (21.648 ms) : 0, 21648
section iast
BytebuddyAgent [baseline] (802.052 ms) : 0, 802052
BytebuddyAgent [candidate] (802.997 ms) : 0, 802997
GlobalTracer [baseline] (230.7 ms) : 0, 230700
GlobalTracer [candidate] (230.615 ms) : 0, 230615
AppSec [baseline] (50.417 ms) : 0, 50417
AppSec [candidate] (49.455 ms) : 0, 49455
Debugger [baseline] (5.913 ms) : 0, 5913
Debugger [candidate] (5.893 ms) : 0, 5893
Remote Config [baseline] (582.29 µs) : 0, 582
Remote Config [candidate] (583.737 µs) : 0, 584
Telemetry [baseline] (7.902 ms) : 0, 7902
Telemetry [candidate] (7.885 ms) : 0, 7885
IAST [baseline] (26.002 ms) : 0, 26002
IAST [candidate] (25.901 ms) : 0, 25901
section profiling
ProfilingAgent [baseline] (109.543 ms) : 0, 109543
ProfilingAgent [candidate] (109.837 ms) : 0, 109837
BytebuddyAgent [baseline] (677.644 ms) : 0, 677644
BytebuddyAgent [candidate] (673.185 ms) : 0, 673185
GlobalTracer [baseline] (378.686 ms) : 0, 378686
GlobalTracer [candidate] (377.905 ms) : 0, 377905
AppSec [baseline] (54.808 ms) : 0, 54808
AppSec [candidate] (53.761 ms) : 0, 53761
Debugger [baseline] (6.141 ms) : 0, 6141
Debugger [candidate] (6.054 ms) : 0, 6054
Remote Config [baseline] (651.918 µs) : 0, 652
Remote Config [candidate] (639.464 µs) : 0, 639
Telemetry [baseline] (8.144 ms) : 0, 8144
Telemetry [candidate] (8.092 ms) : 0, 8092
Profiling [baseline] (109.568 ms) : 0, 109568
Profiling [candidate] (109.862 ms) : 0, 109862

Loading

Load

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
end_time	2025-05-12T08:23:27	2025-05-12T08:31:12
git_branch	master	dependabot/github_actions/gh-actions-packages-970434cb35
git_commit_date	1747037529	1747037629
git_commit_sha	2e4323c	9a9f223
release_version	1.50.0-SNAPSHOT~2e4323c2d9	1.50.0-SNAPSHOT~9a9f223464
start_time	2025-05-12T08:23:14	2025-05-12T08:30:58

See matching parameters

	Baseline	Candidate
application	insecure-bank	insecure-bank
ci_job_date	1747039070	1747039070
ci_job_id	932914641	932914641
ci_pipeline_id	64750628	64750628
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version	Linux runner-psrqmy6d-project-304-concurrent-1-m0bh3auv 6.8.0-1027-aws #29~22.04.1-Ubuntu SMP Sun Mar 30 07:45:38 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux	Linux runner-psrqmy6d-project-304-concurrent-1-m0bh3auv 6.8.0-1027-aws #29~22.04.1-Ubuntu SMP Sun Mar 30 07:45:38 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
variant	iast	iast

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 12 metrics, 18 unstable metrics.

Request duration reports for insecure-bank

gantt
    title insecure-bank - request duration [CI 0.99] : candidate=1.50.0-SNAPSHOT~9a9f223464, baseline=1.50.0-SNAPSHOT~2e4323c2d9
    dateFormat X
    axisFormat %s
section baseline
no_agent (377.803 µs) : 358, 397
.   : milestone, 378,
iast (509.547 µs) : 488, 531
.   : milestone, 510,
iast_FULL (733.551 µs) : 712, 755
.   : milestone, 734,
iast_GLOBAL (567.382 µs) : 544, 591
.   : milestone, 567,
iast_HARDCODED_SECRET_DISABLED (512.75 µs) : 491, 535
.   : milestone, 513,
iast_INACTIVE (464.815 µs) : 442, 488
.   : milestone, 465,
iast_TELEMETRY_OFF (510.768 µs) : 488, 534
.   : milestone, 511,
tracing (456.208 µs) : 434, 479
.   : milestone, 456,
section candidate
no_agent (383.467 µs) : 363, 404
.   : milestone, 383,
iast (514.615 µs) : 493, 536
.   : milestone, 515,
iast_FULL (727.714 µs) : 706, 750
.   : milestone, 728,
iast_GLOBAL (572.336 µs) : 550, 595
.   : milestone, 572,
iast_HARDCODED_SECRET_DISABLED (516.004 µs) : 494, 538
.   : milestone, 516,
iast_INACTIVE (459.143 µs) : 438, 480
.   : milestone, 459,
iast_TELEMETRY_OFF (511.197 µs) : 488, 535
.   : milestone, 511,
tracing (454.749 µs) : 433, 477
.   : milestone, 455,

Loading

• baseline results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	377.803 µs [358.249 µs, 397.357 µs]	-
iast	509.547 µs [488.055 µs, 531.039 µs]	131.744 µs (34.9%)
iast_FULL	733.551 µs [711.693 µs, 755.408 µs]	355.748 µs (94.2%)
iast_GLOBAL	567.382 µs [543.985 µs, 590.779 µs]	189.579 µs (50.2%)
iast_HARDCODED_SECRET_DISABLED	512.75 µs [490.585 µs, 534.914 µs]	134.947 µs (35.7%)
iast_INACTIVE	464.815 µs [442.113 µs, 487.516 µs]	87.012 µs (23.0%)
iast_TELEMETRY_OFF	510.768 µs [487.905 µs, 533.63 µs]	132.965 µs (35.2%)
tracing	456.208 µs [433.774 µs, 478.641 µs]	78.405 µs (20.8%)

• candidate results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	383.467 µs [363.406 µs, 403.527 µs]	-
iast	514.615 µs [492.972 µs, 536.258 µs]	131.148 µs (34.2%)
iast_FULL	727.714 µs [705.556 µs, 749.871 µs]	344.247 µs (89.8%)
iast_GLOBAL	572.336 µs [550.042 µs, 594.631 µs]	188.87 µs (49.3%)
iast_HARDCODED_SECRET_DISABLED	516.004 µs [494.132 µs, 537.877 µs]	132.538 µs (34.6%)
iast_INACTIVE	459.143 µs [437.82 µs, 480.466 µs]	75.676 µs (19.7%)
iast_TELEMETRY_OFF	511.197 µs [487.666 µs, 534.729 µs]	127.731 µs (33.3%)
tracing	454.749 µs [432.734 µs, 476.764 µs]	71.282 µs (18.6%)

Request duration reports for petclinic

gantt
    title petclinic - request duration [CI 0.99] : candidate=1.50.0-SNAPSHOT~9a9f223464, baseline=1.50.0-SNAPSHOT~2e4323c2d9
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.371 ms) : 1350, 1391
.   : milestone, 1371,
appsec (1.741 ms) : 1717, 1766
.   : milestone, 1741,
appsec_no_iast (1.73 ms) : 1707, 1753
.   : milestone, 1730,
code_origins (1.664 ms) : 1636, 1691
.   : milestone, 1664,
iast (1.507 ms) : 1483, 1531
.   : milestone, 1507,
profiling (1.539 ms) : 1514, 1564
.   : milestone, 1539,
tracing (1.487 ms) : 1463, 1512
.   : milestone, 1487,
section candidate
no_agent (1.355 ms) : 1336, 1375
.   : milestone, 1355,
appsec (1.734 ms) : 1710, 1758
.   : milestone, 1734,
appsec_no_iast (1.717 ms) : 1693, 1740
.   : milestone, 1717,
code_origins (1.656 ms) : 1629, 1684
.   : milestone, 1656,
iast (1.507 ms) : 1484, 1531
.   : milestone, 1507,
profiling (1.555 ms) : 1530, 1580
.   : milestone, 1555,
tracing (1.488 ms) : 1463, 1512
.   : milestone, 1488,

Loading

• baseline results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	1.371 ms [1.35 ms, 1.391 ms]	-
appsec	1.741 ms [1.717 ms, 1.766 ms]	370.831 µs (27.1%)
appsec_no_iast	1.73 ms [1.707 ms, 1.753 ms]	359.564 µs (26.2%)
code_origins	1.664 ms [1.636 ms, 1.691 ms]	293.25 µs (21.4%)
iast	1.507 ms [1.483 ms, 1.531 ms]	136.708 µs (10.0%)
profiling	1.539 ms [1.514 ms, 1.564 ms]	168.447 µs (12.3%)
tracing	1.487 ms [1.463 ms, 1.512 ms]	116.692 µs (8.5%)

• candidate results

Variant	Request duration [CI 0.99]	Δ no_agent
no_agent	1.355 ms [1.336 ms, 1.375 ms]	-
appsec	1.734 ms [1.71 ms, 1.758 ms]	378.511 µs (27.9%)
appsec_no_iast	1.717 ms [1.693 ms, 1.74 ms]	361.088 µs (26.6%)
code_origins	1.656 ms [1.629 ms, 1.684 ms]	301.046 µs (22.2%)
iast	1.507 ms [1.484 ms, 1.531 ms]	151.896 µs (11.2%)
profiling	1.555 ms [1.53 ms, 1.58 ms]	199.72 µs (14.7%)
tracing	1.488 ms [1.463 ms, 1.512 ms]	132.354 µs (9.8%)

Dacapo

Parameters

	Baseline	Candidate
baseline_or_candidate	baseline	candidate
git_branch	master	dependabot/github_actions/gh-actions-packages-970434cb35
git_commit_date	1747037529	1747037629
git_commit_sha	2e4323c	9a9f223
release_version	1.50.0-SNAPSHOT~2e4323c2d9	1.50.0-SNAPSHOT~9a9f223464

See matching parameters

	Baseline	Candidate
application	biojava	biojava
ci_job_date	1747039679	1747039679
ci_job_id	932914642	932914642
ci_pipeline_id	64750628	64750628
cpu_model	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz	Intel(R) Xeon(R) Platinum 8259CL CPU @ 2.50GHz
kernel_version	Linux runner-7pg-kqds-project-304-concurrent-1-34cxqjwx 6.8.0-1027-aws #29~22.04.1-Ubuntu SMP Sun Mar 30 07:45:38 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux	Linux runner-7pg-kqds-project-304-concurrent-1-34cxqjwx 6.8.0-1027-aws #29~22.04.1-Ubuntu SMP Sun Mar 30 07:45:38 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
variant	appsec	appsec

Summary

Found 0 performance improvements and 0 performance regressions! Performance is the same for 12 metrics, 0 unstable metrics.

Execution time for biojava

gantt
    title biojava - execution time [CI 0.99] : candidate=1.50.0-SNAPSHOT~9a9f223464, baseline=1.50.0-SNAPSHOT~2e4323c2d9
    dateFormat X
    axisFormat %s
section baseline
no_agent (14.992 s) : 14992000, 14992000
.   : milestone, 14992000,
appsec (14.942 s) : 14942000, 14942000
.   : milestone, 14942000,
iast (18.324 s) : 18324000, 18324000
.   : milestone, 18324000,
iast_GLOBAL (18.199 s) : 18199000, 18199000
.   : milestone, 18199000,
profiling (15.356 s) : 15356000, 15356000
.   : milestone, 15356000,
tracing (15.156 s) : 15156000, 15156000
.   : milestone, 15156000,
section candidate
no_agent (15.208 s) : 15208000, 15208000
.   : milestone, 15208000,
appsec (14.535 s) : 14535000, 14535000
.   : milestone, 14535000,
iast (18.544 s) : 18544000, 18544000
.   : milestone, 18544000,
iast_GLOBAL (18.032 s) : 18032000, 18032000
.   : milestone, 18032000,
profiling (15.709 s) : 15709000, 15709000
.   : milestone, 15709000,
tracing (15.151 s) : 15151000, 15151000
.   : milestone, 15151000,

Loading

• baseline results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	14.992 s [14.992 s, 14.992 s]	-
appsec	14.942 s [14.942 s, 14.942 s]	-50.0 ms (-0.3%)
iast	18.324 s [18.324 s, 18.324 s]	3.332 s (22.2%)
iast_GLOBAL	18.199 s [18.199 s, 18.199 s]	3.207 s (21.4%)
profiling	15.356 s [15.356 s, 15.356 s]	364.0 ms (2.4%)
tracing	15.156 s [15.156 s, 15.156 s]	164.0 ms (1.1%)

• candidate results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	15.208 s [15.208 s, 15.208 s]	-
appsec	14.535 s [14.535 s, 14.535 s]	-673.0 ms (-4.4%)
iast	18.544 s [18.544 s, 18.544 s]	3.336 s (21.9%)
iast_GLOBAL	18.032 s [18.032 s, 18.032 s]	2.824 s (18.6%)
profiling	15.709 s [15.709 s, 15.709 s]	501.0 ms (3.3%)
tracing	15.151 s [15.151 s, 15.151 s]	-57.0 ms (-0.4%)

Execution time for tomcat

gantt
    title tomcat - execution time [CI 0.99] : candidate=1.50.0-SNAPSHOT~9a9f223464, baseline=1.50.0-SNAPSHOT~2e4323c2d9
    dateFormat X
    axisFormat %s
section baseline
no_agent (1.472 ms) : 1461, 1484
.   : milestone, 1472,
appsec (2.401 ms) : 2352, 2450
.   : milestone, 2401,
iast (2.178 ms) : 2116, 2240
.   : milestone, 2178,
iast_GLOBAL (2.231 ms) : 2168, 2293
.   : milestone, 2231,
profiling (2.036 ms) : 1985, 2087
.   : milestone, 2036,
tracing (2.02 ms) : 1971, 2070
.   : milestone, 2020,
section candidate
no_agent (1.473 ms) : 1461, 1484
.   : milestone, 1473,
appsec (2.399 ms) : 2350, 2449
.   : milestone, 2399,
iast (2.184 ms) : 2122, 2245
.   : milestone, 2184,
iast_GLOBAL (2.219 ms) : 2157, 2281
.   : milestone, 2219,
profiling (2.015 ms) : 1966, 2064
.   : milestone, 2015,
tracing (2.007 ms) : 1959, 2055
.   : milestone, 2007,

Loading

• baseline results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	1.472 ms [1.461 ms, 1.484 ms]	-
appsec	2.401 ms [2.352 ms, 2.45 ms]	928.966 µs (63.1%)
iast	2.178 ms [2.116 ms, 2.24 ms]	705.89 µs (48.0%)
iast_GLOBAL	2.231 ms [2.168 ms, 2.293 ms]	758.547 µs (51.5%)
profiling	2.036 ms [1.985 ms, 2.087 ms]	563.806 µs (38.3%)
tracing	2.02 ms [1.971 ms, 2.07 ms]	548.4 µs (37.3%)

• candidate results

Variant	Execution Time [CI 0.99]	Δ no_agent
no_agent	1.473 ms [1.461 ms, 1.484 ms]	-
appsec	2.399 ms [2.35 ms, 2.449 ms]	926.242 µs (62.9%)
iast	2.184 ms [2.122 ms, 2.245 ms]	710.691 µs (48.2%)
iast_GLOBAL	2.219 ms [2.157 ms, 2.281 ms]	746.102 µs (50.7%)
profiling	2.015 ms [1.966 ms, 2.064 ms]	542.137 µs (36.8%)
tracing	2.007 ms [1.959 ms, 2.055 ms]	534.091 µs (36.3%)

[dependabot]

Looks like github/codeql-action is updatable in another way, so this is no longer needed.