A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Address review comments

ebd514f490bfee9d50a494d05d60bb8c3187ac91 authored 8 months ago
Clean up `resolve_supported_languages_using_cli` FF

a691497d407ae4ec974f80dd7618c31e33cd908a authored 8 months ago
Linting: Prefer optional chaining

e5f165b8f5070dc6274c74fc930bde0079259bf4 authored 8 months ago
Use `checkoutPath` and `category` constants consistently

c98d5a9a4f6e756fbe4fee86b9f0fdc85af54848 authored 8 months ago
Gate `uploadSarif` behind FF, use old implementation otherwise

b7c814cb39ce0679aa19ce812fa4a39c8d874424 authored 8 months ago
Add `AnalyzeUseNewUpload` feature

f88cb016944c4d6271a3dd6dbcd0ca2e4128be8f authored 8 months ago
Bump minor version number

3cd3374657a08e9f7f9a976be737460517e34526 authored 8 months ago
Remove `analysisSummaryV2Default` FF

39345938628b2ae586a273a22e20909aafc5a193 authored 8 months ago
Remove `sarifMergeRunsFromEqualCategory` FF

bab3f2b5f56cc57b8b8d89d645b18c5653ffce55 authored 8 months ago
Add changelog note

9924f476bafa62d74dd9baef869265aa9d99f930 authored 8 months ago
Bump minimum version to 2.17.6

bd5f49c7ca84addc0e53319c70d364f442a98837 authored 8 months ago
Fix style inconsistency

02b2c3aafc6fe1a20f6fd866dc171995265ebf93 authored 8 months ago
Overlay: Lower size limit for overlay base databases

22d29ca74d9005d5c255089a3d6c6d975bfb6a43 authored 8 months ago
Use `post-process-output` in PR check

5e37670026ac622fd0320cc3943d1d101d1e5a65 authored 8 months ago
Merge branch 'main' into mbg/analyze/use-upload-sarif

aa048acb056a2860f13af6b0376fa958572f5249 authored 8 months ago
Add test for `uploadSarif` with output directory

def04c1c0ec9589b3a2943faa40a555c80a7a1a7 authored 8 months ago
Write processed SARIF files if `post-process-output` input is provided

12f3cfef092149eeb578ebc6fe6aa2f203884505 authored 8 months ago
Add `post-process-output` input to `analyze` action

c2bec36917d1974b9f0efdc8d1047453900f6a0a authored 8 months ago
Add test for `uploadSarif` with `upload: never`

14139c9f7766ce3519131b717ad9df0ba9d9254f authored 8 months ago
Move `UploadKind` check into `uploadSarif`

596de7f1bc1027a9856c6855d3b8ef29fd4820c7 authored 8 months ago
Use `postProcessSarifFiles` and `uploadProcessedFiles` in `uploadSarif`

899bf2fd1e2a8cdc62e04f8c35ae6c710522f072 authored 8 months ago
Split SARIF uploading steps from `uploadSpecifiedFiles` into a function

6fbdd5f4e99309683ecfa95bfee3fad77736d152 authored 8 months ago
Merge pull request #3221 from github/mbg/code-quality/skip-db-upload

Always skip database upload if `AnalysisKind.CodeScanning` is not enabled

0c5185d061ea8cb82b9c5cd84d2c51a7fc2d9d6b authored 8 months ago
Always skip database upload if `AnalysisKind.CodeScanning` is not enabled

79ed9569a3b91e7a2cdc049be7fff34a6d296323 authored 8 months ago
Merge pull request #3217 from github/henrymercer/http-error-handling

Wrap API configuration errors when setting up CodeQL

8e53c48f94f27ac3668139d71020f7c36502dbad authored 8 months ago
Merge branch 'main' into henrymercer/http-error-handling

804fc665f97c778f1919f958e2c68682a0fb0d7e authored 8 months ago
Simplify API error checks

e6e649a8f3e307c455a870397021773b0ee562d6 authored 8 months ago
Require message field too

40e26468f39d72b7c432eaf3234b82f589914004 authored 8 months ago
Merge pull request #3203 from github/mbg/errors/more-user-errors

Handle user errors for invalid `UserConfig`s and missing query files

9b0ac1cc3b2985145e276933b2b96f423f56e68b authored 8 months ago
Merge pull request #3219 from github/dependabot/npm_and_yarn/npm-minor-5ed6ededba

Bump the npm-minor group with 5 updates

ffed63adb8c4f7c2e7da1c6ce950ed5285efc8be authored 8 months ago
Merge pull request #3220 from github/dependabot/github_actions/dot-github/workflows/actions/setup-node-6

Bump actions/setup-node from 5 to 6 in /.github/workflows

bee06ec042c69d47c2e56a1275713a53e52b0d56 authored 8 months ago
Rebuild

06f31ec7892311403b52e22ae05e7020484e1bae authored 8 months ago
Bump actions/setup-node from 5 to 6 in /.github/workflows

Bumps [actions/setup-node](https://github.com/actions/setup-node) from 5 to 6.
- [Release notes]...

53588c5ad26df30797f8c0a70e864e5bde7354ec authored 8 months ago
Rebuild

2357c43caddbcd729c14581b162fe0afc8888eca authored 8 months ago
Bump the npm-minor group with 5 updates

Bumps the npm-minor group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [octoki...

a3ff966dbf7d1ec7c4139eeec351433cfcbc8eda authored 8 months ago
Merge pull request #3218 from github/henrymercer/pr-sizes

Add experimental functionality for labelling PRs by their size

6562050a4ef58294589cc913940b979a04523ea7 authored 8 months ago
Comment version that is pinned

Co-authored-by: Michael B. Gale <mbg@github.com>

e9daf5bcd9b6c0949e9448eb7400f39e3ef5fd32 authored 8 months ago
Bump sizes a bit

c13672ee32e8f930617210dc49ce1b4a4eb13714 authored 8 months ago
Add score for XL

f2f52d0d47aaeb9a12162b69a36afe98723405cc authored 8 months ago
Update .github/sizeup.yml

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

08e53bec853a1b11cf76a32c6cb6d9a2707aaf8c authored 8 months ago
Update workflow name

519594fe940f084a653e442906e601170afd69d9 authored 8 months ago
Add experimental functionality for labelling PRs by their size

8c324fe2880b78d5e8af44a3bc8ed33f6be15ddd authored 8 months ago
Wrap API configuration errors when setting up CodeQL

a6b9514fab65c1c421348e6e4e67ab0dd1665422 authored 8 months ago
Handle HTTP errors with `httpStatusCode` property

c64c4070cc62cef890e2cc4dd6c1c65df672b56e authored 8 months ago
Merge pull request #3215 from github/mergeback/v4.30.9-to-main-16140ae1

Mergeback v4.30.9 refs/heads/releases/v4 into main

d88a5540c3fd916f4e15b7744d287a124278e065 authored 9 months ago
Rebuild

aa0f6ea898638a9fdc1b6125ad23850a78ab3a70 authored 9 months ago
Update changelog and version after v4.30.9

b03dcd5d9d3966442d238a349a32631fb001bd78 authored 9 months ago
Merge pull request #3213 from github/update-v4.30.9-70205d3d1

Merge main into releases/v4

16140ae1a102900babc80a33c44059580f687047 authored 9 months ago
Update changelog for v4.30.9

30db5fee08fa0be23eee96b4496f7352d9f29f86 authored 9 months ago
Merge pull request #3211 from github/mbg/init/starting-partial-config

Make analysis kinds available for `starting` status report

70205d3d123f562983bd79625547bda0f3ac0e49 authored 9 months ago
Merge remote-tracking branch 'origin/main' into mbg/init/starting-partial-config

697c209bfca8233b036e2484d56dd6d373055e17 authored 9 months ago
Make schema for `QueryFilter` less strict

9ce56a247fca2f95a08ee87b697de53bf214b417 authored 9 months ago
Merge pull request #3205 from github/update-bundle/codeql-bundle-v2.23.3

Update default bundle to 2.23.3

1bd53ba38c522699e557edfba608ac9423db9a48 authored 9 months ago
Add FF for config validation

2c8f4891d1426b1de4462c60988527757e56673e authored 9 months ago
Rebuild

cac4df0c798faa8010a1a06712c7d1e8449e9150 authored 9 months ago
Merge branch 'main' into update-bundle/codeql-bundle-v2.23.3

77e5c0d0a22917bff475a451f4bfaaf2beac0a64 authored 9 months ago
Merge pull request #3204 from github/mbg/setup-codeql

Add `setup-codeql` action

97a4f751be6792e7470adaf5465d9dbb26b9a3d1 authored 9 months ago
Merge remote-tracking branch 'origin/main' into mbg/init/starting-partial-config

2d5512b361168357c4197bb366d28d625c8bf747 authored 9 months ago
Call `getAnalysisKinds` a second time, and ignore exceptions thrown during the first call

fa7bdf055936bea552da9c58f425daa8bb13d51d authored 9 months ago
Rename `initAnalysisKinds` to `getAnalysisKinds` and cache results

57c7b0a8846ea6a4249e9adbb4c082c1eccf3233 authored 9 months ago
Merge branch 'main' into mbg/setup-codeql

4874f90a8dc6c5745c78b0a20fc38c7ad0cd383f authored 9 months ago
Merge pull request #3212 from github/mbg/ci/pin-python

Install Python 3.13 to fix failing PR checks with older CLI versions

5a9e92afcadafe03af5ce5d633a9c9f7af012809 authored 9 months ago
Remove now unused `qualityQueriesInput` from `InitConfigInputs`

9bd9b03572e2bfc4559977c0c611a0bfab3f2708 authored 9 months ago
Install Python 3.13, except for `nightly-latest`

3569065d7e4c16500d262bfcc3df7355dbccea04 authored 9 months ago
Initialise analysis kinds before `starting` status report

3c8d00aea0cc4dafc9d4d6f3e12d0f5b165bd4a9 authored 9 months ago
Add `initAnalysisKinds` for `analysis-kinds` enablement logic

bc93b04b0ca361d2da9e6dece7b00c0bf4d93eb2 authored 9 months ago
Add function for `starting` status report

adf39dd33fc2c348e314b2fee8b62ef59bc7ba42 authored 9 months ago
Throw a `ConfigurationError` if `setup-codeql` has run before `init`

c0e8887d5a9cec04772d252b454d925dbdc4184f authored 9 months ago
Use `failure` instead of `aborted`

000295122d4bdb7ac7760cac67e9eea21245997d authored 9 months ago
De-duplicate `InitToolsDownloadFIelds` definition

2611d033d7f9036c50c560e39c5e329e507b8dd9 authored 9 months ago
Merge pull request #3209 from github/mbg/code-quality/skip-failed-upload

Skip failed SARIF upload if Code Quality is the only analysis kind

ee753b4724a8022c6235aff6a88efbfd82155923 authored 9 months ago
Change check to be restrictive by default

db6938a4d09a8af2acb1b29fe4cfa5592984e870 authored 9 months ago
Update changelog for `setup-codeql`

d02f50ee622857aa5b6b14b1f01cb38fc0a136e0 authored 9 months ago
Add `setup-codeql` to README

f4237b7e769862831f12bfb95191147b4b111722 authored 9 months ago
Update docs

302fc5e00d885cc26a37a6d8d5d44e22a2df8a36 authored 9 months ago
Skip failed SARIF upload if `analysis-kinds: code-quality`

c77b3fb96eca63bcd857805326e1ee12b342aeea authored 9 months ago
Fix `init-action-post-helper` tests using broken `Config`s

2a54ab50161a0e386fc920d02984dcd42f0df06f authored 9 months ago
Use `uploadSarif` rather than `uploadFiles` in `analyze` action

2ade8a09a34039864bb092e1cbdd0d0aebd218a0 authored 9 months ago
Include first 10 errors in exception message

d7a8ae5fdd719fdf7b4227be8e703634e6e4e698 authored 9 months ago
Log validation errors

0822fb12e77607bc748add5d2ae108bc5f058ded authored 9 months ago
Add changelog note

a60e5ce8ec873643cd055796b011de6fa9ba3d73 authored 9 months ago
Update default bundle to codeql-bundle-v2.23.3

8d0251c1f7e6f12675b11bce27594cfaa395800d authored 9 months ago
Add `checkExpectedLogMessages` function to `testing-utils`

913cd47984b1bd4d121259f5b17a60ede84128a6 authored 9 months ago
Split SARIF post-processing steps from `uploadSpecifiedFiles` into a function

489ed914f154e96069affe17911bae8aa378fabc authored 9 months ago
Use `setup-codeql` action in `bundle-from-toolcache` check

80220dcd466d9868518ee9f1a1d2eac8726c81cf authored 9 months ago
Add initial `setup-codeql` action

e72fd9acb1380db2c6c9254e1d34dd315ba18fee authored 9 months ago
Add additional regex to `CliConfigErrorCategory.PackCannotBeFound`

4f14649ced8f66194bb99aec11a934df5eea5af8 authored 9 months ago
Add and validate `UserConfig` schema

ac922ab562d6e9dab0ddddc8f8f748a23a752c23 authored 9 months ago
Add and use `parseUserConfig`

- Throws a `ConfigurationError` if parsing the YAML fails
- Add a couple of tests for it

66df0bc5157a830ee83d20282aab0bdb47a8edc3 authored 9 months ago
Merge pull request #3199 from github/mergeback/v4.30.8-to-main-f443b600

Mergeback v4.30.8 refs/heads/releases/v4 into main

17783bfb99b07f70fae080b654aed0c514057477 authored 9 months ago
Only create GitHub release if it doesn't already exist

3c764cd93a00798d8e0735f1ba06bfff2550a843 authored 9 months ago
Merge branch 'releases/v4' into mergeback/v4.30.8-to-main-f443b600

e1968324ffa31ec01b35acd8a8eb0cea9a87b4f5 authored 9 months ago
Merge pull request #3200 from github/henrymercer/backport-hotfix

Revert "Rebuild" commit rather than "Update dependencies"

2a6736cca7e2a3ffefd4b4cdb1bbc7e23f8c43f0 authored 9 months ago
Revert "Rebuild" commit rather than "Update dependencies"

c8765c966b096c7deefc1635026f91854dcc2fb1 authored 9 months ago
Rebuild

61789e2fdbeee3b82f919119bf9c37370cf909c0 authored 9 months ago
Update changelog and version after v4.30.8

5cd2d139cb8d98fb951dc84cb48cd5b55f7fc44a authored 9 months ago
Merge pull request #3198 from github/update-v4.30.8-527f0f324

Merge main into releases/v4

f443b600d91635bebf5b0d9ebc620189c0d6fba5 authored 9 months ago
Update changelog for v4.30.8

7a2cb623ed691b64b58c7fa6bd6d90f62b322c65 authored 9 months ago
Merge pull request #3195 from github/dependabot/npm_and_yarn/npm-minor-37415c9066

Bump the npm-minor group with 3 updates

527f0f324a3fe984f808ba090b51cbe5a6c0118b authored 9 months ago
Merge pull request #3196 from github/dependabot/github_actions/dot-github/workflows/actions-minor-945aab589d

Bump ruby/setup-ruby from 1.263.0 to 1.265.0 in /.github/workflows in the actions-minor group ac...

f402506f0fedd565aafbfc892e40a5b1c10814af authored 9 months ago