A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Merge pull request #3257 from github/henrymercer/ubuntu-slim

Run lightweight workflows on `ubuntu-slim`

cc8843728c8296d35175b82c7f1bb3748290764a authored 8 months ago
Make `isEnablementError` case-insensitive

f0e9bf07f44488f7e3adf5ff01d04e6392b60b3b authored 8 months ago
Run lightweight workflows on `ubuntu-slim`

2a3599c52055e7a5443d3fef8981a4d543586dde authored 8 months ago
Merge pull request #3256 from github/henrymercer/resolve-bad-merge

Remove unused `console-log-level` dependency

514ff4d116ef04d9ffc8adb3da5abb07961cb990 authored 8 months ago
Merge pull request #3253 from github/mergeback/v4.31.1-to-main-5fe9434c

Mergeback v4.31.1 refs/heads/releases/v4 into main

aab1c2f9318aa4b88e7532de10fe02ac860d5ab8 authored 8 months ago
Remove unused `console-log-level` dependency

This was added back by a bad merge.

b2bffa615da2c5ae026beb862b3ff730793c319f authored 8 months ago
Rebuild

e7811794d39c880497f5558166d3fe734ee53415 authored 8 months ago
Merge remote-tracking branch 'origin/main' into mergeback/v4.31.1-to-main-5fe9434c

c7a5b0937447947c87c20351ff597795da1f8cb9 authored 8 months ago
Update changelog and version after v4.31.1

cbcb06a3ae83559ce90331dbf8b09f234510f99d authored 8 months ago
Merge pull request #3252 from github/update-v4.31.1-777daa0c7

Merge main into releases/v4

5fe9434cd24fe243e33e7f3305f8a5b519b70280 authored 8 months ago
Merge pull request #3245 from github/dependabot/github_actions/dot-github/workflows/actions/download-artifact-6

Bump actions/download-artifact from 5 to 6 in /.github/workflows

8d50be301caa06f68d66a9108ed3fda480982399 authored 8 months ago
Update changelog for v4.31.1

237497c8f0de4216b7c46e08d1bcb86038b1fb86 authored 8 months ago
Merge pull request #3239 from github/mbg/remove/add-snippets

Remove `add-snippets` input

777daa0c71818e7f377c8adc5415f74544c87142 authored 8 months ago
Update analyze/action.yml

Co-authored-by: Esben Sparre Andreasen <esbena@github.com>

74c8748a6f2dada2c01b25ae170d7858ac90f4af authored 8 months ago
Merge pull request #3251 from github/mbg/user-error/enablement

Turn enablement errors into configuration errors

34c50c1d299d8a59b64a9dc6faf04dc0d9c33152 authored 8 months ago
Warn if the `add-snippets` input is used

4ae68afd845398aa4e0bd7fccf3a37d121b3ec88 authored 8 months ago
Check for 403 status

52a7bd7b6e714abd930eb15cde3c7c76c45d6c0f authored 8 months ago
Make error message tests less brittle

194ba0ee2dcf02e70ff941763c144ea06f58c485 authored 8 months ago
Turn enablement errors into configuration errors

53acf0b8aa0a8705134bb6153d859bc2817e1740 authored 8 months ago
Merge pull request #3249 from github/henrymercer/api-logging

Use Actions logger in API client

ac9aeee2261a2f9c74439210107de7657bd5ed42 authored 8 months ago
Merge branch 'main' into henrymercer/api-logging

d49e837b8cf6e8fd2c77703cc5189cfa79547ec0 authored 8 months ago
Pass minimal copy of `core`

3d988b275a8c578caa755c4aaccd900332aefe93 authored 8 months ago
Merge pull request #3250 from github/henrymercer/prefer-fs-delete

Use Node `fs` APIs instead of `del`

8cc18acfa4e60a22b3ed992afffc562f93c17030 authored 8 months ago
Merge branch 'main' into henrymercer/prefer-fs-delete

ea5cb4a01680e67a369e4c537665e8006e69ad97 authored 8 months ago
Merge pull request #3247 from github/henrymercer/disk-usage-node-api

Check disk usage using Node.js API

e1c8976a56ea047200079b0686b0aa6c3048784b authored 8 months ago
Merge branch 'main' into henrymercer/disk-usage-node-api

4256e2e2a0ecb183f3d731cc7bfffa4d11e84e89 authored 8 months ago
Apply suggestion

66459ea37c09de277a470efc04326258f48eeaae authored 8 months ago
Merge pull request #3244 from github/dependabot/github_actions/dot-github/workflows/actions-minor-b11285d543

Bump ruby/setup-ruby from 1.265.0 to 1.267.0 in /.github/workflows in the actions-minor group ac...

1af9394995ab7d0d395da72d72bf45840d111962 authored 8 months ago
Merge pull request #3242 from github/dependabot/npm_and_yarn/npm-minor-75b724c14c

Bump the npm-minor group with 4 updates

311fc42780c7c90803dab270e74389164d9c4270 authored 8 months ago
Merge pull request #3241 from github/dependabot/github_actions/dot-github/workflows/actions/upload-artifact-5

Bump actions/upload-artifact from 4 to 5 in /.github/workflows

284bf9b047f65e3a05ee51b79883cddc91aed9f4 authored 8 months ago
Merge pull request #3243 from github/dependabot/npm_and_yarn/actions/artifact-4.0.0

Bump @actions/artifact from 2.3.1 to 4.0.0

a53e78ee2a0caff5a51f117d6369822132dab6fb authored 8 months ago
Improve method naming

d84f470a9ab95e1bc53beef7405f73c48959c804 authored 8 months ago
Use Node `fs` APIs instead of `del`

41c0a262137e6d0fb07479869cf7c7ece9f5602f authored 8 months ago
Tweak assertions

d4ba404a20f9697e86bbd3175fdd2c9d445499bb authored 8 months ago
Stub `GITHUB_WORKSPACE` in test

55895ef678cf38ca6637f5da53a66f271a967954 authored 8 months ago
Add unit test for `checkDiskUsage`

fe16891f40875c7dfedef7c09370a00fd299cea8 authored 8 months ago
Move conversion of PR diff-range paths to absolute paths

4eb247591f3ebb27df9032f5a6d73fff582b5f8d authored 8 months ago
Merge branch 'main' into dependabot/github_actions/dot-github/workflows/actions/download-artifact-6

44aeac1a379f1841447a73f9606f418ccd48bf81 authored 8 months ago
Disable SIP disablement check

57c7b6afb607e1dad91a018dc9db3981903af0dc authored 8 months ago
Use Actions logger in API client

This allows us to remove the `console-log-level` dependency.

8b1e55d11ec9b1a618981a3908111d3220da21c4 authored 8 months ago
Add unit test for diffRangeExtensionPackContents

df4e1992c04acc62081ad2561c9e3bc375e8e6d8 authored 8 months ago
Move diff-range extension pack generation into testable function

d18f3acf743dcecd3ca5926b5dc22e4d2838a8b5 authored 8 months ago
Build: Run npm install when `package-lock.json` out of date

20900ee769aaf64e8af1ce6dc1a9940a855ed404 authored 8 months ago
Merge pull request #3240 from github/mbg/allow-skip-workflow-validation

Support skipping workflow validation

ad8ad9829e88b0781c92880e4ce595bf030a4bf2 authored 8 months ago
upload-lib: Unit test filterAlertsByDiffRange

035c1179afc00c56f6dc31b5a1c5b221a1a4fc5d authored 8 months ago
Check disk usage using Node.js API

This was introduced in Node.js 18

239e305d18b56c9fd3a17a3d58a2165457f4c18e authored 8 months ago
Bump actions/download-artifact from 5 to 6 in /.github/workflows

Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 5 to 6.
- [...

9c39f0afb0dccf4d000a85846771d81ecc2330a3 authored 8 months ago
Rebuild

fcc1377ac6e21a166e2359708775bb05f61fa2d9 authored 8 months ago
Bump ruby/setup-ruby

Bumps the actions-minor group with 1 update in the /.github/workflows directory: [ruby/setup-rub...

b5bbb5ab73589b2dc63b7158d981ec5faef0d4a2 authored 8 months ago
Rebuild

723a9469fd5b531fd60fa24a894f70dc56d77618 authored 8 months ago
Bump @actions/artifact from 2.3.1 to 4.0.0

Bumps [@actions/artifact](https://github.com/actions/toolkit/tree/HEAD/packages/artifact) from 2...

f9eed03ba205b9d588fca9f9ad428f303d7d3644 authored 8 months ago
Rebuild

df9e49e9e8df22d3ee213ed5a6f16eeb7d14f580 authored 8 months ago
Bump the npm-minor group with 4 updates

Bumps the npm-minor group with 4 updates: [@octokit/types](https://github.com/octokit/types.ts),...

c9d47e2ee95d81f7eef725f6b1bb6efcdeb935a2 authored 8 months ago
Rebuild

714962e17a1281cf8508f435b71eb8fbc03cb2dc authored 8 months ago
Bump actions/upload-artifact from 4 to 5 in /.github/workflows

Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4 to 5.
- [Rele...

42f957bb5124646b65ddad1239d8f299341bacdd authored 8 months ago
Downgrade log message from warning to debug level

52cec4178d4b99a6d36c9c50a6193baa64cb3962 authored 8 months ago
Move `checkWorkflow` to `workflow.ts`

55c083790a0c92eadbda8a97f2f7c12ac848ac9f authored 8 months ago
Also skip workflow validation for `dynamic` workflows

50601762ea63865e1852fdf110a64b4e23b6dcdc authored 8 months ago
Move workflow check to a function in `init.ts` and add tests

06fbd897c4b729f9b9042ad9189b05925934abc0 authored 8 months ago
Add environment variable for skipping workflow validation

127851b3990661ebf44282b5f297622c88ecac3f authored 8 months ago
Merge pull request #3238 from github/kaspersv/extract-diff-range-computation

Move diff-range computation into utils

8d77149e0c9e2199ac9cfc90c9e15116f5c69c48 authored 8 months ago
Remove `add-snippets` input

db47d17142535b3ce67f3c591f562a44f9e26dee authored 8 months ago
Move diff-range computation tests

cc17bed958d92a2496ae827d9874a3590c7e503c authored 8 months ago
Move diff-range computation into utils for reuse

91ec0ed58f7e8fc70bc04d3e58a0cc80c10e1a22 authored 8 months ago
Merge pull request #3232 from github/kaspersv/unique-overlay-base-keys

Ensure uniqueness of overlay-base database cache keys

4e0b2cd8144ac9869cf8b34acc9a106efea83a8c authored 8 months ago
Merge pull request #3236 from github/mergeback/v4.31.0-to-main-4e94bd11

Mergeback v4.31.0 refs/heads/releases/v4 into main

ae78991f558bb4195cb8a727cb6679c362b9cf24 authored 8 months ago
Rebuild

dd565f33326d1487d2b49b7449b0d13de7eec35c authored 8 months ago
Update changelog and version after v4.31.0

fa46f22b125b54b6f6a807a5c898aa183ac5fdd3 authored 8 months ago
Merge pull request #3235 from github/update-v4.31.0-1d36546c1

Merge main into releases/v4

4e94bd11f71e507f7f87df81788dff88d1dacbfb authored 8 months ago
Update changelog for v4.31.0

8f11182164f2181cc5608a575e3c7ef3bc4a9cd1 authored 8 months ago
Merge pull request #3234 from github/mbg/changelog/post-processing

Add changelog entry for post-processing change

1d36546c1419dc613cdb4b7fde46b1c81643ccbe authored 8 months ago
Add changelog entry for post-processing change

08ada26e6a4768939d6da6a5e23ae69052948fd7 authored 8 months ago
Merge pull request #3233 from github/mbg/getOptionalEnvVar

Add `getOptionalEnvVar` helper

b843cbeed03550ed4937992fa96258262e955178 authored 8 months ago
Merge pull request #3223 from github/henrymercer/bump-minimum

Bump minimum CodeQL Bundle version to 2.17.6

e57680792076a32e6f147ccf58374517ea645a31 authored 8 months ago
Use `getOptionalEnvVar` in `writePostProcessedFiles`

1ecd56391940567d00fd07e34b4ca7b75dadd92a authored 8 months ago
Merge pull request #3222 from github/mbg/upload-lib/post-process

Perform SARIF post-processing independently of upload

d75645b13f453e29a7f3c3f316babb725e644d0a authored 8 months ago
Add `getOptionalEnvVar` function

Also add tests for it and `getRequiredEnvParam`

ad3567666919ea4249d02a26c230ea8e0daef410 authored 8 months ago
Improve error handling for overlay-base cache key creation

66759e57b29d9322a4b80dadf4ab043a9531b4cd authored 8 months ago
Reorder components of overlay-base cache key postfix

cbcae45fffacea44eec0222c515b06a260497ab4 authored 8 months ago
Check that `outputPath` is non-empty

710606cc35e2444ba84bdf7702dcb481f7380ae7 authored 8 months ago
Consistently use "post-processing"

f0452d53667194f9f75d659eb44b683248333ef9 authored 8 months ago
Merge pull request #3231 from github/kaspersv/lower-overlay-base-size-limit

Overlay: Lower size limit for overlay base databases

956c56734d31557279f2769a3368010c321bb452 authored 8 months ago
Merge remote-tracking branch 'origin/main' into mbg/upload-lib/post-process

b9cd36824e7734ba76bc3b2122b140c72afb330c authored 8 months ago
Ensure uniqueness of overlay-base database cache keys

b4ce3352864e24176b5a5926124bb6adfc45b003 authored 8 months ago
Merge pull request #3227 from github/mbg/permission-warning

Update wording in some log messages

9625890712c7f078b834b0cb549f00b374edb8ec authored 8 months ago
Merge branch 'main' into mbg/permission-warning

690d276755d0c6f5dce55f40e8792c5431e0414d authored 8 months ago
Merge pull request #3228 from github/mbg/test/timeout

Bump timeout for `analyze-action-env` test

1c3c8066c373822d87b021bcbdd80b6c6a6b382f authored 8 months ago
Bump timeout for `analyze-action-input` test

da64a41e374f4d2a129f6affe1dc317bbc715b8b authored 8 months ago
Bump timeout for `analyze-action-env` test

8376af204af4753eb3c37e971874c653a95786c9 authored 8 months ago
Fix fallback not being guarded by `uploadKind` check

f48b54af10d7d404c3163cb0d58bd6f7f2e2dfcb authored 8 months ago
Update status report messages

40b4cdd21fa7e43516cf56e07aa86237a1c6eab9 authored 8 months ago
Update debug message

e849c567ec05201c767007005b2a0eb820411a90 authored 8 months ago
Update API permissions warning

d1b51f05c9feafc343d1b8975c78492225be8aa0 authored 8 months ago
Fix linter issue

aed27f72313127fc271ae8f79794ab198d73f146 authored 8 months ago
Rename new input to `processed-sarif-path`

8ff870a6c2a5dce88896ad8d662b355981101585 authored 8 months ago
Rename `uploadSarif`

6f0fcbeea7bcf5fa25efa506a9eda9d1ee938488 authored 8 months ago
Improve test name

89d33590177af96a27f710c2772a5a479bce8b7c authored 8 months ago
Fix incomplete comment

d79c0a133909f49f2c15c1a46b1462d18ef775f1 authored 8 months ago
Merge pull request #3206 from github/mbg/analyze/use-upload-sarif

Use `uploadSarif` rather than `uploadFiles` in `analyze` action

42642085de2a94da10d5b87c0c7b9f51e147aa1f authored 8 months ago
Merge pull request #3226 from github/henrymercer/prefer-optional-chaining

Linting: Prefer optional chaining

4bd7dfe989a22a4296bf244a0679410d4999608e authored 8 months ago