A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Add changelog note

e8921f7effe5b69a3acc1781912db7c9fe1f3335 authored 10 months ago
Update default bundle to codeql-bundle-v2.23.1

2bbfe979c31de306d6424f250161ff168cc52f8f authored 10 months ago
Use additional files for C# key hashes if `Feature.CsharpNewCacheKey` is enabled

0324490286d5cc041f7ba6762f91ce1f6b1d18e7 authored 10 months ago
Move check whether there are files for hashing into `getHashPatterns`

6b4820790706215b5fb892fa241d5d1ea765d388 authored 10 months ago
Change `hash` to be a function that can use `Features`

ab1c84236a1357778c5741c52f065d31a9fc7fe9 authored 10 months ago
Change `getDefaultCacheConfig` to be a `const` by turning `paths` into a function

Changing `paths` to be a function is necessary to allow `getTemporaryDirectory` to be called

2a7680fca6e5ce382aeeca3577b5aa9cabc5daa6 authored 10 months ago
Propagate `features` into `cachePrefix` function

2aa1f55f3de4223926d2c91a55495bba67efc138 authored 10 months ago
Add `CsharpNewCacheKey` FF

1ca20ab026a9650c95dc057954cacac3678f1aa9 authored 10 months ago
Merge pull request #3115 from github/dependabot/npm_and_yarn/npm-75b7851ed5

Bump uuid from 12.0.0 to 13.0.0 in the npm group

573acd9552f33577783abde4acb66a1058e762e5 authored 10 months ago
Rebuild

668f0f00dacaaaa973768931d97138b175d97706 authored 10 months ago
Bump uuid from 12.0.0 to 13.0.0 in the npm group

Bumps the npm group with 1 update: [uuid](https://github.com/uuidjs/uuid).

Updates `uuid` from...

0b263ec52881b620240e2e4f791b688680c60738 authored 10 months ago
Merge pull request #3113 from github/nickrolfe/minimize-jars-followup

Only enable Java dependency minimisation when caching is enabled

9e5383b3b1ee4568de8af651d39f0785f22562a3 authored 10 months ago
Merge pull request #3114 from github/henrymercer/pr-checks-codeql-2.22

Run PR checks over CodeQL v2.22 release series

8279538f3d0d32d9661d0612f74f7fe46c833d44 authored 10 months ago
Run PR checks over CodeQL v2.22 release series

86f23c3336412a4856ce5d22b4ed5abae238510d authored 10 months ago
Merge pull request #3112 from github/henrymercer/scan-python

CI: Configure Python analysis

77c3d2533ddc7668f7136a749a55acba041879ac authored 10 months ago
Update .github/workflows/codeql.yml

1069ace04eae3b4885eca965ab5eacb008c260e9 authored 10 months ago
Only enable JAVA dependency minimisation when caching is enabled

4014b75309464286709699a0e40236d3512de355 authored 10 months ago
Remove build mode from matrix

bce0fa7b273f185f5908dbefca72edeec59f768a authored 10 months ago
Specify `paths-ignore` for other languages

8105843d425356f4bf019863275cffc4f1976a1b authored 10 months ago
Only upload a single matrix case for JS

61b8b636e3fca7a4bd53ce056f546dfa3f967b5d authored 10 months ago
Reorder strategy properties

73ead84d0a30b65725d5f87bcceb247b885b8db9 authored 10 months ago
CI: Configure Python analysis

793fe1783cf508d7a155d4745960a89abf4ce014 authored 10 months ago
Merge pull request #3091 from github/redsun82/fix-windows-ci

Set `shell: bash` by default on all workflows

aa90e97ad2ed17cde6a43e89f70138299e64f837 authored 10 months ago
Update .github/workflows/codeql.yml

Co-authored-by: Henry Mercer <henrymercer@github.com>

2b7d487cf808fed1bc295b05f30c8c0c2e5fd57b authored 10 months ago
Merge pull request #3065 from github/redsun82/update-brace-expansion

Use brace-expansion >2.0.1

f92cc3a0e75e884f437ff351dc49402820131c12 authored 10 months ago
Merge pull request #3107 from github/nickrolfe/minimize-jars

Add feature flag to roll out JAR minimization in the Java extractor

185266a022a3ca68f5acc9388d98af2a78932819 authored 10 months ago
Merge branch 'main' into redsun82/update-brace-expansion

a1244387b01b28ff9826877916d0e35a09e6dc4e authored 10 months ago
Merge pull request #3110 from github/mbg/proxy/fetch-from-release

Fetch proxy binaries from `defaults.json` release

dc9a47dcebf573f5c61db72085b64305342f0a5e authored 10 months ago
Change "current release" to "linked release"

e2636d2e4f6b1eb32a4bde1bbdb849c62c21436d authored 10 months ago
Merge pull request #3083 from github/henrymercer/resolve-languages-default-queries

Resolve supported languages using CodeQL CLI

df1fe231181aa5b3d26a72c2bd1573ec7a351db6 authored 10 months ago
Merge pull request #3109 from github/cklin/init-save-updated-config

init-action: save updated config

0d33fd9f263def169b43518224e68932ef8cc79a authored 10 months ago
Stop saving config in initConfig()

5c30ae46c128cd17cd9e481541d335b9e7bb4e68 authored 10 months ago
Search release pointed at by `defaults.json` for registry proxy artifact

9df23425dc732362852b94732912a2cef4f1cc55 authored 10 months ago
Fix accidental removal of `- shell: bash` lines

4e1dadc5b3263dc54c9d89416c1c3fa63a06937e authored 10 months ago
Address review

856e1e5c78245918f948679c3cc38aa1f1e220c7 authored 10 months ago
Merge branch 'main' into redsun82/fix-windows-ci

d797efbb26a6a1cd942fb0f757fc7fb6adb5fdf7 authored 10 months ago
init-action: save updated config

This commit updates the init action to save the config again at the end
of run(), so that config...

4e2e64a92a4b1f28841376f56459f1cf9390d39e authored 10 months ago
Move `UPDATEJOB_PROXY` constants to `start-proxy.ts`

ffcbb4c0c106f3f2c218ed4400e45ae5dd1ae3b7 authored 10 months ago
Merge pull request #3108 from github/mbg/changelog/workflow-validation

Add changelog entry for improved version consistency checks

148e76abb6f49e4dd9bf755fde127f30c252eee9 authored 10 months ago
Add changenote for improved version consistency checks

21a1feb3910bf337f889bae8727d0b68ddf6acea authored 10 months ago
Merge pull request #3100 from github/mbg/config-version

Store and check action version in `Config`

1479235f5dd2f33bc0070e257ffd9798f01bf4c0 authored 10 months ago
Merge pull request #3099 from github/mbg/validate-action-version-in-workflow

Validate workflow to check that all `codeql-action` versions are the same

0d058cdc59b764972707d5b90c7739f6300b4e1a authored 10 months ago
Add changelog entry for Java dependency minimization rollout

3ca9525ddd28c24631bc6548fb663112992d3ce8 authored 10 months ago
Merge pull request #3105 from github/mergeback/v3.30.3-to-main-192325c8

Mergeback v3.30.3 refs/heads/releases/v3 into main

25e54dffab02a993d587442040e4c1eae14f271e authored 10 months ago
Rebuild

25c32186df7d3d5425e71fd8d4ba5fbdee533492 authored 10 months ago
Update changelog and version after v3.30.3

191d3de659cf60f0adf000328219b573d31d755c authored 10 months ago
Merge pull request #3104 from github/update-v3.30.3-b660efdcf

Merge main into releases/v3

192325c86100d080feab897ff886c34abd4c83a3 authored 10 months ago
Use more generic regexp for `sync.py` changes

c9d2739db2a0060cb585dcc353ce91887ddfa0ec authored 10 months ago
Simplify import

d0f02ad6837ae6f14f131fba9795e124c5888675 authored 10 months ago
Remove unused imports

1343eba2d06f8e026a7bd25e9c4e15f1c0c44698 authored 10 months ago
Run sync back script separately

cde0d796a647ee8286d3f9afcfb752c9e3415c1a authored 10 months ago
Run test script in CI

d08f9295109931df92ba738efdd68362d92e9436 authored 10 months ago
Rename script for consistency

d9bc711b1c9fe8f539aa0d1ae7e5e82fd807cf63 authored 10 months ago
Add sync-back script execution to rebuild workflow

Co-authored-by: henrymercer <14129055+henrymercer@users.noreply.github.com>

f5371102858eb38af0cdfb146b6e204bfdfc15f7 authored 10 months ago
Remove regular workflow file updates from sync-back script

Co-authored-by: henrymercer <14129055+henrymercer@users.noreply.github.com>

5d79536231a53872a4b9a0de3411242a170997f2 authored 10 months ago
Add feature flag to roll out JAR minimization in the Java extractor

0abf548bb364e0852a4bf445eb1aa80755288fd4 authored 10 months ago
Improve sync-back automation with automatic action detection, comment preservation, and tests

Co-authored-by: henrymercer <14129055+henrymercer@users.noreply.github.com>

f77ed607fd888340dd3b035d106b102f5033d792 authored 10 months ago
Update changelog for v3.30.3

e68956d90b7fe2260904652cd8de5d73563e4944 authored 10 months ago
Merge pull request #3103 from github/mbg/fix/category-check

Fix `runInterpretResultsFor` using the wrong `AnalysisConfig` for Code Quality `category` fix

b660efdcfdfa893d74568cd884067ed18e8d6f88 authored 10 months ago
Fix `runInterpretResultsFor` using the wrong `AnalysisConfig` for `category` fix

e49458befe579c5a1088aacda9f2ae384da104ff authored 10 months ago
Merge pull request #3098 from github/kaspersv/increase-overlay-base-size-limit

Overlay: Increase size limit for cached overlay base database

f374a62c8bedef779582aeb425a68f7798f2078c authored 10 months ago
Update src/config-utils.test.ts

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

0487de31f2ad4c10b69c0828707cbb3cf0d43287 authored 10 months ago
Simplify `step.uses` condition

754f2e184f461607b45a1d55105127a48df3a7a9 authored 10 months ago
Merge pull request #3101 from github/mbg/public-repo-notice-in-pr-template

Add a reminder to the PR template that this is a public repo

5efa438e92992578d794ae4ceed960bf81011677 authored 10 months ago
Store and check action version in `Config`

4f56152a481f6d23f3db3b830b30dbb8ccb3e22e authored 10 months ago
Validate workflow to check that all `codeql-action` versions are the same

bb98ff4838ad0b291a318f58cf744d74ff43a391 authored 10 months ago
Merge pull request #3097 from github/redsun82/only-dump-sarif

Dump soon to be uploaded SARIF on request

eb50a881d87eb8488328fefe024ae2f6add8384f authored 10 months ago
Add sync-back automation for Dependabot action version updates

Co-authored-by: henrymercer <14129055+henrymercer@users.noreply.github.com>

8d31b533a271fcac59e4170c0f978ec15302d4e1 authored 10 months ago
Overlay: Increase size limit for cached overlay base database

8a84a62542ea24fd569eb5afdfb2507c25328ab9 authored 10 months ago
Tweak sarif dump log

4c534612bf77788909753a5602e96710156f5758 authored 10 months ago
Dump soon to be uploaded SARIF on request

This introduces a new internal environment variable flag
(`CODEQL_ACTION_SARIF_DUMP_DIR`) that, ...

dae3742b0a3b9e08acc580e15ef74bdc454d650a authored 10 months ago
Merge pull request #3095 from github/copilot/fix-9c4e2e82-c57a-4af0-8336-b8b24b72dba3

Remove --intra-layer-parallelism flag from CodeQL CLI commands

31d3ae847e3e655d6e31918ac1d8af398338a360 authored 10 months ago
Merge branch 'main' into redsun82/fix-windows-ci

3bf58bb047aff4ce071d994a8d2047cc1141c5a2 authored 10 months ago
Remove --intra-layer-parallelism flag from CodeQL CLI commands

Co-authored-by: henrymercer <14129055+henrymercer@users.noreply.github.com>

2a4630c7f1bf4065a8530f7b748d798b51c889f6 authored 10 months ago
Initial plan

4366c134578f29f483974573fe07c9f4a1f9b0e5 authored 10 months ago
Initial plan

436471d2fbcc14b0e324fcfa9cd20d5d897b1626 authored 10 months ago
Alphabetically order `ToolsFeature`

ed9d73bc6fbf9b187e0e4efd5976a43f3f22e968 authored 10 months ago
fix `codeql.yml` codeql invocation on windows

c778749ed4d635253df93ef39cd6dde74ffde3dd authored 10 months ago
Sort out windows CRLF mess

0c065fa4cf5dc6e4738b887f00d62650c38066ff authored 10 months ago
Merge pull request #3092 from github/mergeback/v3.30.2-to-main-d3678e23

Mergeback v3.30.2 refs/heads/releases/v3 into main

52ddbe1e52470867810e1223f76c0fc80936b725 authored 10 months ago
Rebuild

6c261ed0c737fcc2cee9da0f783a63f3c65c6639 authored 10 months ago
Update changelog and version after v3.30.2

deb055de7e8d179e2eef73371a7cb06cc2fd6904 authored 10 months ago
Merge pull request #3090 from github/update-v3.30.2-d7a501da0

Merge main into releases/v3

d3678e237b9c32a6c9bffb3315c335f976f3549f authored 10 months ago
Add changelog entries

14bbb6a806d8585d3ef2d8b4bfdf571e840a0d90 authored 10 months ago
Set `shell: bash` by default on all workflows

1b8f0ffedf8c1a1c3078c396bc478953ddb21565 authored 10 months ago
Update changelog for v3.30.2

a879d033687e011480e4d305b657b50d8f099ef1 authored 10 months ago
Merge pull request #3085 from github/mbg/multi-language-repo/gitignore

Add C# artifacts to `.gitignore` for `multi-language-repo`

d7a501da0195366a45a932783bb4b1817372bf20 authored 10 months ago
Bump the actions group with 4 updates

Bumps the actions group with 4 updates: [actions/setup-go](https://github.com/actions/setup-go),...

1a80c9b44e5e264432dae07ab446f24f05596f40 authored 10 months ago
Merge pull request #3087 from github/dependabot/npm_and_yarn/npm-1cf7fedfcf

Bump the npm group with 5 updates

c90f0747e2cb91ce3c0ea059dbaeddcb1e3fa3ab authored 10 months ago
Merge pull request #3086 from github/mbg/docs/required-checks

Clarify instructions for updating PR checks to avoid emphasis on `main`

d8df826a796178a1efe64989b0b6cbe80e4e5291 authored 10 months ago
Rebuild

23419de6bd3b79d4c9df2d3bab19a729d78c6901 authored 10 months ago
Bump the npm group with 5 updates

Bumps the npm group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [uuid](https:...

7d8e1e924fde76f1a52162cd5e4580a5aba0ce18 authored 10 months ago
Clarify instructions for updating PR checks for PRs

76a3cccaa42b7fc2d93f3357903e8ea1bc7d73f9 authored 10 months ago
Remove comment about `main` from `update-required-checks.sh`

01fd48d5b6f834e5d6914aff385ab88660dbbd20 authored 10 months ago
Add C# artifacts to `.gitignore` for `multi-language-repo`

ec4b36c0904ed3df6c6b6e56aab33b6a58d45826 authored 10 months ago
Merge pull request #3064 from github/mbg/cq/allow-cq-only-analysis

Allow Code Quality only analysis

0a56aada02f0749677c75e33eb260a9a304513c9 authored 10 months ago
Merge pull request #3080 from github/cklin/overlay-db-automation-id

Overlay: add automation ID to cache key

1c6bc389a1479de965860075fd8769ef447e825b authored 10 months ago
Build

d42097d387e7ead77b875f72f5229cd1c1b9d0fc authored 10 months ago
Merge branch 'main' into redsun82/update-brace-expansion

16f15bc9a7a0122db4a939eaf69f8ccb784fcaab authored 10 months ago
Merge pull request #3084 from github/mbg/fix/hasActionsWorkflows

Fix `hasActionsWorkflows` throwing an exception if the workflows folder doesn't exist

144880b6f0c9977178ab4000985a49023783178f authored 10 months ago