[BUG] :AdvancedSecurity-Codeql-Init@1 enableAutomaticCodeQLInstall is not using latest version #21519
Description
New issue checklist
- I searched for existing GitHub issues
- I read pipeline troubleshooting guide
- I checked how to collect logs
Task name
AdvancedSecurity-Codeql-Init
Task version
1
Issue Description
In Azure DevOps we have set enableAutomaticCodeQLInstall and it started using CodeQl version 2.23.5, which meant .NET 10 was working, it has however, now it has reverted to using 2.23.2 even though enableAutomaticCodeQLInstall: true.
It is unclear why, but now it means it is not working again for .NET 10.
See Also: github/codeql-action#3207
Environment type (Please select at least one enviroment where you face this issue)
- Self-Hosted
- Microsoft Hosted
- VMSS Pool
- Container
Azure DevOps Server type
dev.azure.com (formerly visualstudio.com)
Azure DevOps Server Version (if applicable)
No response
Operation system
Windows
Relevant log output
Starting: AdvancedSecurityCodeqlInit
==============================================================================
Task : Advanced Security Initialize CodeQL
Description : Initializes the CodeQL database in preparation for building.
Version : 1.1.335
Author : Microsoft Corporation
Help : https://aka.ms/advancedsecurity/code-scanning/detection
==============================================================================
Session Id=45d5b85b-122a-4600-9cdf-0afb898fbb60
Starting CodeQL automatic detection and installation.
CodeQL Detection and Installation
Getting Latest Release Details
Release URL: https://github.com/github/codeql-action/releases/tag/codeql-bundle-v2.23.3
Install and Setup CodeQL tools
/azp/_work/_tool/CodeQL/0.0.0-v2.23.3/x64/codeql/codeql database init --db-cluster /azp/_work/_temp/advancedsecurity.codeql/d --source-root=/azp/_work/1/s --calculate-baseline --trace-process-mode=azure-pipelines --begin-tracing --language=csharp
Calculating baseline information in /azp/_work/1/s
Calculated baseline information for languages: (33ms).
Resolving extractor csharp.
Successfully loaded extractor C# (csharp) from /azp/_work/_tool/CodeQL/0.0.0-v2.23.3/x64/codeql/csharp.
Created skeleton CodeQL database at /azp/_work/_temp/advancedsecurity.codeql/d/csharp. This in-progress database is ready to be populated by an extractor.
The CodeQL database has been initialized.
====================================================================================================
Analyzing CodeQL execution results.
The Initialize task succeeded without any issues.
====================================================================================================
Learn more about the scan for the CodeQL build tasks:
https://aka.ms/advanced-security/code-scanning/detectionFull task logs with system.debug enabled
[REPLACE THIS WITH YOUR INFORMATION]