chore(release): 1.1.12 [skip ci]

## [1.1.12](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.11...v1.1.12) (2026-03-12)
chore(deps): bump tar from 7.5.10 to 7.5.11 (#137 )
2026-03-13 08:58:58 +00:00 · 2026-03-12 09:08:57 +00:00 · 2026-03-12 11:06:37 +02:00 · 2026-03-10 23:03:07 +00:00 · 2026-03-07 17:52:39 +02:00 · 2026-03-07 02:47:30 +00:00
10 changed files with 830 additions and 999 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -8,39 +8,27 @@ on:
  pull_request:
    branches: ["main"]
  schedule:
-    - cron: "30 1 * * 0" # Run at 1:30 AM UTC every Sunday
+    - cron: "30 1 * * 0"
  merge_group:

-permissions:
-  actions: read
-  contents: read
+permissions: {}

 jobs:
  analyze:
    name: Analyze
    runs-on: ubuntu-latest
    permissions:
+      actions: read
+      contents: read
+      packages: read
      security-events: write
-
    strategy:
      fail-fast: false
      matrix:
-        language: ["javascript"] # Add languages used in your actions
-
+        language: ["actions", "javascript"]
    steps:
-      - name: Checkout repository
-        uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
-
-      - name: Initialize CodeQL
-        uses: github/codeql-action/init@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 # v4.32.0
+      - name: CodeQL Analysis
+        uses: ivuorinen/actions/codeql-analysis@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10
        with:
-          languages: ${{ matrix.language }}
+          language: ${{ matrix.language }}
          queries: security-and-quality
-
-      - name: Autobuild
-        uses: github/codeql-action/autobuild@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 # v4.32.0
-
-      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 # v4.32.0
-        with:
-          category: "/language:${{matrix.language}}"
--- a/.github/workflows/pr-lint.yml
+++ b/.github/workflows/pr-lint.yml
@@ -27,4 +27,4 @@ jobs:
    steps:
      - name: Run PR Lint
        # https://github.com/ivuorinen/actions
-        uses: ivuorinen/actions/pr-lint@f98ae7cd7d0feb1f9d6b01de0addbb11414cfc73 # v2026.01.21
+        uses: ivuorinen/actions/pr-lint@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -26,7 +26,7 @@ jobs:
    steps:
      - name: Run PR Lint
        # https://github.com/ivuorinen/actions
-        uses: ivuorinen/actions/pr-lint@f98ae7cd7d0feb1f9d6b01de0addbb11414cfc73 # v2026.01.21
+        uses: ivuorinen/actions/pr-lint@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10

  publish:
    name: Publish
@@ -46,7 +46,7 @@ jobs:
          fetch-depth: 0

      - name: Setup Node.js Environment
-        uses: actions/setup-node@6044e13b5dc448c55e2357c09f80417699197238 # v6.2.0
+        uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
        with:
          always-auth: true
          node-version-file: ".nvmrc"
@@ -58,7 +58,7 @@ jobs:
        run: npm install -g corepack --force && corepack enable

      - name: Cache Node Modules
-        uses: actions/cache@8b402f58fbc84540c8b491a91e594a4576fec3d7 # v5.0.2
+        uses: actions/cache@cdf6c1fa76f9f475f3d7449005a359c84ca0f306 # v5.0.3
        id: cache
        with:
          path: node_modules
--- a/.github/workflows/stale.yml
+++ b/.github/workflows/stale.yml
@@ -23,4 +23,4 @@ jobs:
      issues: write
      pull-requests: write
    steps:
-      - uses: ivuorinen/actions/stale@f98ae7cd7d0feb1f9d6b01de0addbb11414cfc73 # v2026.01.21
+      - uses: ivuorinen/actions/stale@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10
--- a/.github/workflows/sync-labels.yml
+++ b/.github/workflows/sync-labels.yml
@@ -38,4 +38,4 @@ jobs:
        with:
          token: ${{ secrets.GITHUB_TOKEN }}
      - name: ⤵️ Sync Latest Labels Definitions
-        uses: ivuorinen/actions/sync-labels@f98ae7cd7d0feb1f9d6b01de0addbb11414cfc73 # v2026.01.21
+        uses: ivuorinen/actions/sync-labels@9b5ae9da1b4cb135aee0ca52403e3924fba6e84f # v2026.03.10
--- a/.pre-commit-config.yaml
+++ b/.pre-commit-config.yaml
@@ -17,7 +17,7 @@ repos:
        args: [--autofix, --no-sort-keys]

  - repo: https://github.com/igorshubovych/markdownlint-cli
-    rev: v0.47.0
+    rev: v0.48.0
    hooks:
      - id: markdownlint
        args: [-c, .markdownlint.json, --fix]
@@ -29,7 +29,7 @@ repos:
      - id: yamllint

  - repo: https://github.com/rhysd/actionlint
-    rev: v1.7.10
+    rev: v1.7.11
    hooks:
      - id: actionlint
        args: ["-shellcheck="]
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -3,6 +3,30 @@
 All notable changes to this project will be documented in this file. See
 [Conventional Commits](https://conventionalcommits.org) for commit guidelines.

+## [1.1.12](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.11...v1.1.12) (2026-03-12)
+
+## [1.1.11](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.10...v1.1.11) (2026-03-07)
+
+## [1.1.10](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.9...v1.1.10) (2026-03-05)
+
+## [1.1.9](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.8...v1.1.9) (2026-03-05)
+
+## [1.1.8](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.7...v1.1.8) (2026-03-05)
+
+## [1.1.7](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.6...v1.1.7) (2026-03-05)
+
+## [1.1.6](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.5...v1.1.6) (2026-03-05)
+
+## [1.1.5](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.4...v1.1.5) (2026-03-04)
+
+## [1.1.4](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.3...v1.1.4) (2026-03-02)
+
+## [1.1.3](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.2...v1.1.3) (2026-02-26)
+
+## [1.1.2](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.1...v1.1.2) (2026-02-26)
+
+## [1.1.1](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.0...v1.1.1) (2026-02-25)
+
 # [1.1.0](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.0.0...v1.1.0) (2026-01-27)


--- a/index.cjs
+++ b/index.cjs
@@ -3,7 +3,14 @@
 module.exports = {
  branches: ["main"],
  plugins: [
-    "@semantic-release/commit-analyzer",
+    [
+      "@semantic-release/commit-analyzer",
+      {
+        releaseRules: [
+          { type: "chore", scope: "deps", release: "patch" },
+        ],
+      },
+    ],
    "@semantic-release/release-notes-generator",
    [
      "@semantic-release/changelog",
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "@ivuorinen/semantic-release-config",
-  "version": "1.1.0",
+  "version": "1.1.12",
  "description": "ivuorinen's shareable configuration for semantic-release.",
  "author": {
    "name": "Ismo Vuorinen",
--- a/yarn.lock
+++ b/yarn.lock
Author	SHA1	Message	Date
semantic-release-bot	1ec1389448	chore(release): 1.1.12 [skip ci] ## [1.1.12](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.11...v1.1.12) (2026-03-12)	2026-03-12 09:08:57 +00:00
dependabot[bot]	ecaca02251	chore(deps): bump tar from 7.5.10 to 7.5.11 (#137 ) Bumps [tar](https://github.com/isaacs/node-tar) from 7.5.10 to 7.5.11. - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](https://github.com/isaacs/node-tar/compare/v7.5.10...v7.5.11) --- updated-dependencies: - dependency-name: tar dependency-version: 7.5.11 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-03-12 11:06:37 +02:00
renovate[bot]	4bc6306b61	chore(actions): update ivuorinen/actions action to v2026.03.10 (#136 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-03-10 23:03:07 +00:00
Ismo Vuorinen	114284910a	ci: migrate CodeQL to ivuorinen/actions/codeql-analysis (#135 ) * ci: migrate codeql to composable workflow * fix: correct codeql workflow language, queries, permissions, and action ref - Use 'javascript' instead of 'javascript-typescript' for CodeQL language - Add queries: security-and-quality parameter - Set root-level permissions to {} - Add job-level permissions (actions, contents, packages, security-events) - Pin action ref to commit hash with version comment - Fix mangled cron schedule	2026-03-07 17:52:39 +02:00
semantic-release-bot	3c167fd3e3	chore(release): 1.1.11 [skip ci] ## [1.1.11](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.10...v1.1.11) (2026-03-07)	2026-03-07 02:47:30 +00:00
renovate[bot]	c6ec8a5c0a	chore(deps): update github/codeql-action action (v4.32.5 → v4.32.6) (#134 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-03-07 02:45:04 +00:00
semantic-release-bot	e791e42cb6	chore(release): 1.1.10 [skip ci] ## [1.1.10](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.9...v1.1.10) (2026-03-05)	2026-03-05 20:27:23 +00:00
renovate[bot]	1fa6a32d88	chore(deps): lock file maintenance (#133 )	2026-03-05 22:24:39 +02:00
semantic-release-bot	211b7cfff8	chore(release): 1.1.9 [skip ci] ## [1.1.9](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.8...v1.1.9) (2026-03-05)	2026-03-05 19:59:02 +00:00
renovate[bot]	993aab6da6	chore(deps): update actions/setup-node action (v6.2.0 → v6.3.0) (#132 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-03-05 19:56:24 +00:00
semantic-release-bot	0675e1cd21	chore(release): 1.1.8 [skip ci] ## [1.1.8](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.7...v1.1.8) (2026-03-05)	2026-03-05 10:23:24 +00:00
dependabot[bot]	80ebd88e85	chore(deps): bump tar from 7.5.9 to 7.5.10 (#131 ) Bumps [tar](https://github.com/isaacs/node-tar) from 7.5.9 to 7.5.10. - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](https://github.com/isaacs/node-tar/compare/v7.5.9...v7.5.10) --- updated-dependencies: - dependency-name: tar dependency-version: 7.5.10 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-03-05 12:21:01 +02:00
semantic-release-bot	60e6cd4df9	chore(release): 1.1.7 [skip ci] ## [1.1.7](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.6...v1.1.7) (2026-03-05)	2026-03-05 10:15:58 +00:00
renovate[bot]	b6ac1135fb	chore(deps): update ivuorinen/actions action (v2026.02.28 → v2026.03.02) (#129 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-03-05 12:13:03 +02:00
semantic-release-bot	de9a212e12	chore(release): 1.1.6 [skip ci] ## [1.1.6](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.5...v1.1.6) (2026-03-05)	2026-03-05 10:08:51 +00:00
renovate[bot]	706cd0487c	chore(deps): update pre-commit hook igorshubovych/markdownlint-cli (v0.47.0 → v0.48.0) (#130 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-03-05 12:06:27 +02:00
semantic-release-bot	2a727729bc	chore(release): 1.1.5 [skip ci] ## [1.1.5](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.4...v1.1.5) (2026-03-04)	2026-03-04 01:20:44 +00:00
renovate[bot]	c9eebc9479	chore(deps): update github/codeql-action action (v4.32.4 → v4.32.5) (#128 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-03-04 01:17:47 +00:00
semantic-release-bot	b7a5e90457	chore(release): 1.1.4 [skip ci] ## [1.1.4](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.3...v1.1.4) (2026-03-02)	2026-03-02 01:06:18 +00:00
renovate[bot]	21eb4a84d2	chore(deps): lock file maintenance (#127 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-03-02 03:03:54 +02:00
renovate[bot]	018cdc01bf	chore(deps): update ivuorinen/actions action (v2026.02.24 → v2026.02.28) (#126 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-03-02 03:03:18 +02:00
semantic-release-bot	498e7d8e79	chore(release): 1.1.3 [skip ci] ## [1.1.3](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.2...v1.1.3) (2026-02-26)	2026-02-26 23:26:23 +00:00
dependabot[bot]	a923692a3f	chore(deps): bump minimatch from 10.2.2 to 10.2.4 (#125 ) Bumps [minimatch](https://github.com/isaacs/minimatch) from 10.2.2 to 10.2.4. - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](https://github.com/isaacs/minimatch/compare/v10.2.2...v10.2.4) --- updated-dependencies: - dependency-name: minimatch dependency-version: 10.2.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-02-27 01:24:00 +02:00
semantic-release-bot	debca4a983	chore(release): 1.1.2 [skip ci] ## [1.1.2](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.1...v1.1.2) (2026-02-26)	2026-02-26 23:16:43 +00:00
renovate[bot]	40c6735077	chore(deps): update ivuorinen/actions action (v2026.02.18 → v2026.02.24) (#124 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-02-27 01:14:25 +02:00
semantic-release-bot	b638f5bd26	chore(release): 1.1.1 [skip ci] ## [1.1.1](https://github.com/ivuorinen/base-configs-semantic-release/compare/v1.1.0...v1.1.1) (2026-02-25)	2026-02-25 19:28:35 +00:00
Ismo Vuorinen	b2e0bcef7c	chore: commit analyzer rule for dependency updates	2026-02-25 21:19:32 +02:00
renovate[bot]	11252f8951	chore(deps): lock file maintenance (#123 )	2026-02-23 21:38:26 +02:00
renovate[bot]	2015155e35	chore(deps): update github/codeql-action action (v4.32.3 → v4.32.4) (#122 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-02-22 04:36:24 +00:00
dependabot[bot]	2211f7fcf5	chore(deps): bump minimatch from 10.2.0 to 10.2.2 (#121 ) Bumps [minimatch](https://github.com/isaacs/minimatch) from 10.2.0 to 10.2.2. - [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md) - [Commits](https://github.com/isaacs/minimatch/compare/v10.2.0...v10.2.2) --- updated-dependencies: - dependency-name: minimatch dependency-version: 10.2.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-02-20 11:35:05 +02:00
dependabot[bot]	1971315e48	chore(deps): bump tar from 7.5.7 to 7.5.9 (#119 ) Bumps [tar](https://github.com/isaacs/node-tar) from 7.5.7 to 7.5.9. - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](https://github.com/isaacs/node-tar/compare/v7.5.7...v7.5.9) --- updated-dependencies: - dependency-name: tar dependency-version: 7.5.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-02-20 09:58:00 +02:00
renovate[bot]	585b2d5de2	chore(deps): update ivuorinen/actions action (v2026.02.10 → v2026.02.18) (#120 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-02-20 05:51:03 +00:00
renovate[bot]	301f286e29	chore(deps): lock file maintenance (#117 )	2026-02-17 22:04:50 +02:00
renovate[bot]	552ff40369	chore(deps): update pre-commit hook rhysd/actionlint (v1.7.10 → v1.7.11) (#118 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-02-16 13:35:45 +00:00
renovate[bot]	e734f535a6	chore(deps): update github/codeql-action action (v4.32.2 → v4.32.3) (#116 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-02-15 05:28:04 +00:00
renovate[bot]	f266fac92d	chore(deps): update ivuorinen/actions action (v2026.02.03 → v2026.02.10) (#115 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-02-12 08:46:45 +00:00
renovate[bot]	8329e9b5ca	chore(deps): update github/codeql-action action (v4.32.1 → v4.32.2) (#114 )	2026-02-07 02:15:05 +02:00
renovate[bot]	305442d37f	chore(deps): update ivuorinen/actions action (v2026.01.21 → v2026.02.03) (#113 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-02-05 19:43:57 +02:00
dependabot[bot]	a56f2b2d5a	chore(deps): bump @isaacs/brace-expansion from 5.0.0 to 5.0.1 (#111 ) Bumps @isaacs/brace-expansion from 5.0.0 to 5.0.1. --- updated-dependencies: - dependency-name: "@isaacs/brace-expansion" dependency-version: 5.0.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-02-04 11:49:20 +02:00
renovate[bot]	5eec6d0e01	chore(deps): update github/codeql-action action (v4.32.0 → v4.32.1) (#112 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-02-04 04:58:11 +00:00
renovate[bot]	7352944179	chore(deps): update actions/cache action (v5.0.2 → v5.0.3) (#110 ) Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>	2026-01-31 05:16:12 +00:00
dependabot[bot]	b50c1176d1	chore(deps): bump tar in the npm_and_yarn group across 1 directory (#109 ) Bumps the npm_and_yarn group with 1 update in the / directory: [tar](https://github.com/isaacs/node-tar). Updates `tar` from 7.5.6 to 7.5.7 - [Release notes](https://github.com/isaacs/node-tar/releases) - [Changelog](https://github.com/isaacs/node-tar/blob/main/CHANGELOG.md) - [Commits](https://github.com/isaacs/node-tar/compare/v7.5.6...v7.5.7) --- updated-dependencies: - dependency-name: tar dependency-version: 7.5.7 dependency-type: indirect dependency-group: npm_and_yarn ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-01-29 20:35:57 +02:00