Find strategy for keeping CodeQL packs up-to-date

Caused by #1831

## Summary

In order to ensure consistent code scanning results - i.e. avoid findings without code changes - the CodeQL packs used by this project are pinned to a specific version:

https://github.com/ericcornelissen/shescape/blob/bcc35927d7c5af4103ade504ffabfb9743a8b56f/.github/codeql.yml#L5-L7

However, this introduces the problem of keeping these packs[^1][^2] up-to-date as update are released for them. This issue exists to find an automated solution for this. While it is open, we'll have to depend on polling instead.

If this issue is open and you find that any CodeQL pack used by this project is outdated, feel free to open a Pull Request to upgrade to the most recent (stable) release.

[^1]: [`githubsecuritylab/codeql-javascript-queries`](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs/pkgs/container/codeql-javascript-queries)
[^2]: [`githubsecuritylab/codeql-javascript-libs`](https://github.com/GitHubSecurityLab/CodeQL-Community-Packs/pkgs/container/codeql-javascript-libs)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Find strategy for keeping CodeQL packs up-to-date #1833

Summary

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

	packs:
	- githubsecuritylab/[email protected]
	- githubsecuritylab/[email protected]

Find strategy for keeping CodeQL packs up-to-date #1833

Description

Summary

Footnotes

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions