Data

Tools

Indexes

Applications

Experiments

Dashboards

A web application to visualize and manage open source project data from the Ecosyste.ms API.

Last sync

1 day ago

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Merge pull request #3977 from github/dependabot/github_actions/dot-github/workflows/actions/checkout-7.0.0

Bump actions/checkout from 6.0.3 to 7.0.0 in /.github/workflows

9cea5827c668a1fe7165dbce6e80c3f9cf3f83ac authored 4 days ago
Merge pull request #3976 from github/dependabot/github_actions/dot-github/workflows/actions-minor-149d5843f4

Bump the actions-minor group across 1 directory with 3 updates

4d3359631e1a3753c4dd6567e37b29f7245fd071 authored 4 days ago
Merge pull request #3975 from github/dependabot/npm_and_yarn/npm-minor-82bd637a11

Bump the npm-minor group across 1 directory with 3 updates

bc9b48e7782ed337bd67a08e61373b78832120c5 authored 4 days ago
Rebuild

d56b7d789e0b64b7d2ea94405ad7a296abce7347 authored 4 days ago
Rebuild

dca26a3927c5f2a09e79a9aa9f02b37c3adfc236 authored 4 days ago
Bump actions/checkout from 6.0.3 to 7.0.0 in /.github/workflows

Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.3 to 7.0.0.
- [Release no...

490a5f655cbf861cbe0c4f395fdfa16b2d9a7727 authored 4 days ago
Bump the actions-minor group across 1 directory with 3 updates

Bumps the actions-minor group with 3 updates in the /.github/workflows directory: [actions/setup...

1582c0ec80a103998f62bee99a0be313479d2479 authored 4 days ago
Rebuild

d8d3457a33576b05837d28ea2b1202c629f290e4 authored 4 days ago
Bump the npm-minor group across 1 directory with 3 updates

Bumps the npm-minor group with 3 updates in the / directory: [@actions/cache](https://github.com...

98470ab04f91cc900521685d788a6d42a84bbe57 authored 4 days ago
Merge pull request #3974 from github/mbg/deps/glob

Update `glob` to at least `13.0.6`

a16f4a497336b68eeff8ef72868ea4bab1c672bb authored 5 days ago
Merge pull request #3972 from github/henrymercer/code-quality-user-error-categorization

Categorize Code Quality "not enabled" upload failure as user-error

a9f40c6340a0bdb8f8543134c9cf0f4b0f3ce2fb authored 5 days ago
Update `glob` to at least `13.0.6`

423f7de04213cc572ac8dd02eb61deb2258863d6 authored 5 days ago
Merge pull request #3969 from github/mbg/ci/no-more-draft-prs

Remove `ready_for_review` triggers from workflows

dd3c803c553af18a4664b832f4aff9560be1eb0b authored 5 days ago
Merge branch 'main' into henrymercer/code-quality-user-error-categorization

d990aa1c2a4af3faf05c76005f14ec3eb89f9ab3 authored 5 days ago
Merge branch 'main' into mbg/ci/no-more-draft-prs

c9d4e1d902ccc3d2f38467d428be055cecc4f039 authored 5 days ago
Merge pull request #3971 from github/henrymercer/macos-runner-migration

Pin Swift macOS PR checks to macOS 15 for Xcode 16

ade8366b4d57f106992facae595a8437d93f1b5a authored 6 days ago
Default macOS PR checks to latest runner, pin only old CLIs to macOS 15

Redesign the per-entry codeql-versions filter so an OS entry without a
version list catches all ...

cdcf50882b8559fbd061ffb6170b070a1d2e34bf authored 6 days ago
Address review: split macOS Swift checks by CodeQL version

Rather than pinning every macOS job to macOS 15, only run the older CodeQL CLI
versions (which n...

e054b4b84862b154147f7b1f94e655296834a5c6 authored 6 days ago
Categorize Code Quality "not enabled" upload failure as user-error

When a repository requests Code Quality analysis but it is not enabled,
the SARIF upload to `PUT...

6feed5452f778bbb41eb90c8d921ab6b56715987 authored 6 days ago
Pin Swift macOS checks to macOS 15 for Xcode 16

`macos-latest-xlarge` now resolves to macOS 26, which ships only Xcode 26
(Swift 6.2) and no lon...

b9c90effa0914d8dc2603169bce18c9bc52ad055 authored 6 days ago
Restore `edited` trigger for `label-pr-size` workflow

85bb4c647667cf4dd8f2b9df4f596794281f4478 authored 6 days ago
Merge pull request #3968 from github/dependabot/npm_and_yarn/js-yaml-5.0.0

Bump js-yaml from 4.2.0 to 5.0.0

09dec6cc8c147fd5737df267d90a7d19cd5ff9ea authored 7 days ago
Use `quoteStyle`

ba61470b11afbc92a6a6cb7cac5736ae8e273c4a authored 7 days ago
Bump js-yaml from 4.2.0 to 5.0.0

Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.2.0 to 5.0.0.
- [Changelog](https://gi...

31d88dd791de031d4001359db9efdf1ece32e0a3 authored 7 days ago
Do not create draft PRs where we did so to trigger workflows with `ready_for_review` before

aa12ef06b4cbafe1cce4024d8dc15a9c51c5d89f authored 7 days ago
Remove `ready_for_review` triggers

e3a04b74731b3690c40ec0d95b2197d1d9137d8f authored 7 days ago
Merge pull request #3966 from github/dependabot/npm_and_yarn/multi-dd1c4363d0

Bump archiver and @types/archiver

2f90a82ab7eece7aa899ce5d384db49efd7337ea authored 10 days ago
Merge pull request #3916 from github/mbg/ts/update-ghes-versions

Convert `update-supported-enterprise-server-versions` script to TypeScript

ee70cd5210be4f326974d7381701e5b148c6a6a3 authored 11 days ago
Merge pull request #3909 from github/mbg/ff/remove/StartProxyRemoveUnusedRegistries

Default to `StartProxyRemoveUnusedRegistries` behaviour

516447a1109f8e78bec341504c91ed16d6fc44a9 authored 11 days ago
Merge branch 'main' into mbg/ts/update-ghes-versions

839edd2b070ff761a9ad23d9fe3d3ef4ab79181e authored 11 days ago
Merge branch 'main' into mbg/ff/remove/StartProxyRemoveUnusedRegistries

b3b14d667155069c7ac783a7c0bf131cebadd606 authored 11 days ago
Use `ZipArchive` instead of `archive("zip")`

711c19c2dc56f250ec324d69b35d19b60a89d018 authored 11 days ago
Bump archiver and @types/archiver

Bumps [archiver](https://github.com/archiverjs/node-archiver) and [@types/archiver](https://gith...

4138e5a7fec3bc0641f4c6944efdd90e0afa9f0c authored 11 days ago
Merge pull request #3964 from github/dependabot/npm_and_yarn/npm-minor-dc44a34bad

Bump the npm-minor group across 1 directory with 3 updates

0bae987e7d8ac4794f4382e5cb826c65ff8683f6 authored 11 days ago
Merge pull request #3965 from github/dependabot/github_actions/dot-github/workflows/actions-minor-ea9362b8e5

Bump the actions-minor group across 1 directory with 2 updates

3b64eeeb9feaa94c912e93267a89e0f18d5d00d6 authored 11 days ago
Merge pull request #3963 from github/mbg/repo-prop/config-file

Add repository property for configuration files

49e524587f166ba10f4f4e4e42a31cba094e614f authored 11 days ago
Rebuild

18e8398a57edca5e0466acd146d100df89b6e97a authored 11 days ago
Rebuild

80de83798400c09f7841812054ec42073a8d0301 authored 11 days ago
Bump the actions-minor group across 1 directory with 2 updates

Bumps the actions-minor group with 2 updates in the /.github/workflows directory: [actions/setup...

03dfa6fb025078a1c948e03b6d5a1c819501e1a1 authored 11 days ago
Bump the npm-minor group across 1 directory with 3 updates

Bumps the npm-minor group with 3 updates in the / directory: [semver](https://github.com/npm/nod...

3187067e937deadc34a9b177004e7714fc0979ea authored 11 days ago
Ignore empty repository property

52077a03d9fb464e28a406fb151daff30a4cbd33 authored 12 days ago
Merge pull request #3961 from github/dependabot/npm_and_yarn/tar-7.5.16

Bump tar from 7.5.15 to 7.5.16

0337b99474cc604cc1c4737c1b419e6fb618172e authored 12 days ago
Log input choice

b2cc23e25db2c17285003ae9591cf57f7c276006 authored 13 days ago
Accept repository property as fallback

82036913c81488b4794375fe22fab316133e88fa authored 13 days ago
Add `getConfigFileInput` function

ae7c3ea645c88403e950046a7f5ba9f8475e6209 authored 13 days ago
Add initial `ActionsEnv` abstraction

a0276b7dc4ed407d422fc7c7d896a1f1515d7f8f authored 13 days ago
Add `github-codeql-config-file` property

f57d3726c35cbd0f451b5f330eee2571def792b0 authored 13 days ago
Bump tar from 7.5.15 to 7.5.16

Bumps [tar](https://github.com/isaacs/node-tar) from 7.5.15 to 7.5.16.
- [Release notes](https:/...

6f850b502237bf5898f4e43952b251686572768a authored 13 days ago
Merge pull request #3958 from github/dependabot/npm_and_yarn/esbuild-0.28.1

Bump esbuild from 0.28.0 to 0.28.1

c73f0fa0f11186f652ae89bf78d969cf8af9f729 authored 14 days ago
Rebuild

98dfd09d4a8e8a3215b817a5f71efaf55929f1b6 authored 16 days ago
Bump esbuild from 0.28.0 to 0.28.1

Bumps [esbuild](https://github.com/evanw/esbuild) from 0.28.0 to 0.28.1.
- [Release notes](https...

c8f0aa4c67ebce6e4661bf6067d76ce7e95c817e authored 16 days ago
Merge pull request #3957 from github/dependabot/npm_and_yarn/npm-minor-94506b9a28

Bump the npm-minor group across 1 directory with 4 updates

f3f1edbedfb4a1d188d344570834df2996d45d39 authored 16 days ago
Rebuild

9f2d709a33e07d1680d0f5a50b698fb9aba8f7e0 authored 18 days ago
Bump the npm-minor group across 1 directory with 4 updates

Bumps the npm-minor group with 4 updates in the / directory: [js-yaml](https://github.com/nodeca...

5f5ed8735c8fc7edf8fa54acef2b630625ec9e06 authored 18 days ago
Merge pull request #3955 from github/henrymercer/fix-nested-log-group

Fix broken log grouping due to nested log group

eda5730a8bfb740e03a28087a958444c646e5842 authored 24 days ago
Merge pull request #3954 from github/henrymercer/tidy-resolve-languages

Clean up `codeql.resolveLanguages`

e263f3a83a1386910849537cc8c42f360d91208d authored 24 days ago
Remove one extractor per language assumption

ddef2892897e23d4bd7719648360a88a39af7605 authored 24 days ago
Fix broken log grouping due to nested log group

99576d59b9fc0a52007dd1903d940c4066d3d4ec authored 24 days ago
Clean up `codeql.resolveLanguages`

Only the betterjson option is now used, so remove the old version.

72b0f9fed48324fc5411e08a2f04d0e38a47d7c9 authored 24 days ago
Merge pull request #3953 from github/henrymercer/local-action

Use local `upload-sarif` Action in PR checks job

9fc351a8ac7432cff4cf6b2e45db91873bec9bf9 authored 24 days ago
Use local `upload-sarif` Action in PR checks job

72f4abcfcc0dc467c2ed6c419408955d3bd40c4e authored 25 days ago
Merge pull request #3951 from github/mergeback/v4.36.2-to-main-8aad20d1

Mergeback v4.36.2 refs/heads/releases/v4 into main

0630e39f3f7cb718c552f6c8711786b07960b612 authored 25 days ago
Fix CHANGELOG indentation

Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>

2b0250fe46c8527ef4816168dc57ba9db8d003d6 authored 25 days ago
Rebuild

446948f50b59b0bcf9fb9f281aa712747509ff5b authored 25 days ago
Update changelog and version after v4.36.2

d24f3022a89758a938831dfa2adf689894d0ca1c authored 25 days ago
Merge pull request #3949 from github/update-v4.36.2-dcb947ce1

Merge main into releases/v4

8aad20d150bbac5944a9f9d289da16a4b0d87c1e authored 25 days ago
Add additional changelog notes

f521b08cd8f468ab193ea950a589cb2e9c869c6a authored 25 days ago
Update changelog for v4.36.2

8aeff0ffb7b78582ee0d0e6eebb8140684400d08 authored 25 days ago
Merge pull request #3948 from github/update-bundle/codeql-bundle-v2.25.6

Update default bundle to 2.25.6

dcb947ce15976d40ea82935510b2db4872ec124c authored 25 days ago
Add changelog note

c251bcefa178f7780f62f150002acffe3d07fde9 authored 25 days ago
Update default bundle to codeql-bundle-v2.25.6

62953c18b35f59e28351d2f1e806925aef8b1e3c authored 25 days ago
Merge pull request #3946 from github/dependabot/npm_and_yarn/npm-minor-5d507a028b

Bump the npm-minor group across 1 directory with 2 updates

423b570baf1976cd7a3daeba5d6e9f9b76432f37 authored 25 days ago
Merge pull request #3947 from github/dependabot/github_actions/dot-github/workflows/actions-minor-3d0b6ad432

Bump ruby/setup-ruby from 1.307.0 to 1.310.0 in /.github/workflows in the actions-minor group ac...

c35d1b164463ee62a100735382aaaa525c5d3496 authored 25 days ago
Merge pull request #3937 from github/robertbrignull/waitForProcessing_backoff

Change waitForProcessing to use exponential backoff

cb1a588b02755b176e7b9d033ed4b69312f0e1bd authored 25 days ago
Merge pull request #3943 from github/henrymercer/cache-cli-version-info

Cache CLI version information across Actions steps

ba47406412c54532b5b4fcfbaf877c9e2382b206 authored 25 days ago
Merge pull request #3938 from github/henrymercer/git-client-feature-flag

Add FF to force JGit-based Git backend

5be81197673a226f07eb6f44e6180482c1782f1e authored 25 days ago
Merge branch 'main' into robertbrignull/waitForProcessing_backoff

6047ac775f0802883d499a84ecf9e9207a37c67e authored 25 days ago
Rebuild

af7b8f37eab968d30b728d79bf51102393b7012a authored 25 days ago
Bump ruby/setup-ruby

Bumps the actions-minor group with 1 update in the /.github/workflows directory: [ruby/setup-rub...

3569f75599df6e63d2b0060a3f9e0eb840b8bc70 authored 25 days ago
Rebuild

acb38f72652acef3e808cdfb107649fbb883828e authored 25 days ago
Bump the npm-minor group across 1 directory with 2 updates

Bumps the npm-minor group with 2 updates in the / directory: [semver](https://github.com/npm/nod...

dd9e36c0d3a4bfa29e64add03d67961ec3c36c1a authored 25 days ago
Address review comments

5ccef822447dad3d567a5d4908ba25494ca08714 authored 26 days ago
Merge pull request #3945 from github/henrymercer/pin-actions-to-shas

Pin first-party Actions to SHAs

2ceebd64c474b9e68028c6bf6585fca7cdbb8ad6 authored 26 days ago
Update sync-back script

This is intended as a workaround until https://github.com/github/codeql-action/pull/3556 is merged.

fd3f10809d17ee45d1526bbf47fed6d1d87602bb authored 26 days ago
Pin first-party Actions

87f4948cb05b8fc27fbcaa1c7da28c28bb2ca1ec authored 26 days ago
Cache CLI version information across Actions steps

bab673d0e076c181a206e9adeace53d359f9df0e authored 27 days ago
Merge pull request #3941 from github/mergeback/v4.36.1-to-main-87557b9c

Mergeback v4.36.1 refs/heads/releases/v4 into main

8ed7f7c384ef65d96d422e33fe592d3572522558 authored 27 days ago
Rebuild

0ad7c1f95ec5c574792a6371d0ac313f2c260188 authored 27 days ago
Update changelog and version after v4.36.1

25c25b5e09a2b7b21407dae4d901fa0e4778858a authored 27 days ago
Merge pull request #3940 from github/update-v4.36.1-2a1689ed4

Merge main into releases/v4

87557b9c84dde89fdd9b10e88954ac2f4248e463 authored 27 days ago
Update changelog for v4.36.1

94310119648b77e2153bf970fd244062806781de authored 27 days ago
Merge pull request #3939 from github/henrymercer/skip-overlay-revert-when-explicit

Disable missing diff-ranges fallback when overlay enabled manually

2a1689ed43ccdf7eea07e03a75371ce6801d28e6 authored 28 days ago
Only do initial wait when not running tests

d40e417f3c43e66dec164393f3b2b94722865c6f authored 28 days ago
Disable missing diff-ranges fallback when overlay enabled manually

524532393a46071bdfc81527a811ffa69e16723a authored 28 days ago
Add FF to force JGit-based Git backend

948a63aed1cfd5c69e66d4c5c9b60ad2b5b23d64 authored 28 days ago
Merge pull request #3933 from github/update-supported-enterprise-server-versions

Update supported GitHub Enterprise Server versions

d1eb1207b45130d2edf64a0aa1c93be23510592f authored about 1 month ago
Merge pull request #3934 from github/dependabot/npm_and_yarn/npm-minor-86fb5ccea6

Bump the npm-minor group across 1 directory with 2 updates

115001ba8d0198846992657731666b08686c8ded authored about 1 month ago
Merge pull request #3925 from github/dependabot/github_actions/dot-github/workflows/actions-minor-da8be134b1

Bump ruby/setup-ruby from 1.306.0 to 1.307.0 in /.github/workflows in the actions-minor group ac...

cef2e7a910879f4626a24b251504bde16bfe4e76 authored about 1 month ago
Merge pull request #3936 from github/dependabot/npm_and_yarn/tmp-0.2.7

Bump tmp from 0.2.4 to 0.2.7

5e6adf70ed0299cdf20f90e4e37ac5dd30ab7501 authored about 1 month ago
Merge branch 'main' into dependabot/github_actions/dot-github/workflows/actions-minor-da8be134b1

ad170e6c4eaf671895978420267d6cb49b66b706 authored about 1 month ago