A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Use hard-coded list of quality queries, rather than `quality-queries` input

7f8f88e2272344fd4c1a6329f5fc2d467cf4bb92 authored 10 months ago
Handle different permutations of analysis kinds in `analyze` action

ff57bbf22c32f59014565cd404e2262b1279a2de authored 10 months ago
Only specify queries for `run-queries` if both analysis kinds are enabled

e4ffe6f3e5fd5e3777b08846347a9c2c184734a3 authored 10 months ago
Add `kind` property to `AnalysisConfig` and documentation

cb8f28fbf763a6383f1515a57aea66a4331b2416 authored 10 months ago
Rename `UploadTarget` to `AnalysisConfig`

01627081ffd3fbffe8f62eb8f9c0f683aa6d28e4 authored 10 months ago
Move `UploadTarget` definitions to `analyses.ts`

ca7dd4ad38a24686d92482cf29370bd6ec1fb3b3 authored 10 months ago
Add utility function to check if code scanning is enabled

85a4853504727c23e00dda24d21fe1d791a57d11 authored 10 months ago
Update checks to use `analysis-kinds` instead of `quality-queries`

434df8e95c159402af7f3c50877a30d53e715837 authored 10 months ago
Mark `quality-queries` input as deprecated

15403aac29bd91419968e066cded66bde56b0283 authored 10 months ago
Merge pull request #3061 from github/mbg/cq/analysis-kinds-input

Add `analysis-kinds` input

a880e53ace196b47e0797a3df224607ff5a52f96 authored 10 months ago
Merge branch 'main' into mbg/cq/analysis-kinds-input

d61a10ac5b7ee17d1c02eada2b212ad9b80e765c authored 10 months ago
Merge pull request #3063 from github/mbg/ci/pin-xcode16

Pin Xcode 16

046c593fb602b29b0f2c8c39a8f3c61ddb522517 authored 10 months ago
Don't pin Xcode for nightly tests

c0abce94a0f0ccb14abff138099416ba73405541 authored 10 months ago
Select Xcode 16 in workflows that analyse Swift

caeeaa1fe821494071a103413ef46cf59fa6f50f authored 10 months ago
Remove `setup-swift` action from repo

5dc3d776334a8b6b144cc39cb2261535f0cc3339 authored 10 months ago
Remove `setup-swift` steps

5896c12c39418cd7ae6339c4f9121b3642d0dc5d authored 10 months ago
Merge pull request #3055 from github/mbg/cq/telemetry

Report which analysis kinds are enabled in status reports

57b2c02524f43a30aa2313446e8a1a170af45c6f authored 10 months ago
Fix import order in `testing-utils.ts`

270f7ad1da430013734b6769bb1dc2657d30a4c3 authored 10 months ago
Use `analysisKinds` from `config` in `createStatusReportBase`

Replaces the synthetic value for `analysisKinds`

d72c7f186ac4a46424ca4eba3c41eeeca56f036e authored 10 months ago
Fix missing `analysisKinds` in `createTestConfig`

c1efb64b839bf1230f0218e7ca71c129d79f6dc1 authored 10 months ago
Use `analysisKinds` to decide if Code Quality is enabled

f96201c4af68fb855bedfea94861623a233e9f7e authored 10 months ago
Add Code Quality to enabled analysis kinds if there is an input to `quality-queries`

For backwards compatibility. We should remove this once `quality-queries` is no longer in use.

06c39b6b6fab41d49f8ef916fddc6c7b7160aca7 authored 10 months ago
Add `analysis-kinds` input and parse it

e0104a269f6bae94bd8ab2e58f3dcbc0bdfb02cf authored 10 months ago
Move updated changelog into place before creating mergeback PR

15ed54f81f7dd36e696e0832291ca9f61bf04c02 authored 10 months ago
Ensure `NEW_BRANCH` is checked out in `prepare-mergeback-branch`

25c4fcc317a0a9d99b4a73c78aab79a6a7cabba4 authored 10 months ago
Check in precompiled `upload-lib.ts` for testing environments

d2dfa8cd83fc44af547d237270f7976662fd8ffd authored 10 months ago
Update checked-in dependencies

2b18179b02833af8b9ad091dfcd1e2467bde99cb authored 10 months ago
Bump the npm group with 4 updates

Bumps the npm group with 4 updates: [@types/node-forge](https://github.com/DefinitelyTyped/Defin...

88b121290c320050842db65aff8d65446028fb13 authored 10 months ago
Bump the actions group with 2 updates

Bumps the actions group with 2 updates: [actions/setup-java](https://github.com/actions/setup-ja...

88e5287228086dfc32844e6dce4c652cbe6c0525 authored 10 months ago
Avoid automatic semicolon insertion

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.nore...

d7c164044bf44785b76b529e700f3386486cad42 authored 10 months ago
Specify esbuild target

ca5a69b7021c93241f4df90aeb3aa89df5fff14e authored 10 months ago
Implement clean and copy as custom plugins

e274fb816f93b7a1a1756493d64c7bd091641aa3 authored 10 months ago
Transpile separately in both build and test steps

This means we avoid doing a type checking pass twice

8a3bfe665b5e6df50279309f222650b5f7b5600d authored 10 months ago
Change `analyses` to `analysis_kinds`

d062f2b4215b0a7c7b30e87f890af764d72dc838 authored 10 months ago
Use `npm ci` in CI

4da503e0f5cad80e455bb807beafd79e32ba3073 authored 10 months ago
Remove unused import in build script

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.nore...

786d3aa2192842a84c7f446665274d98a289d492 authored 10 months ago
Delete expected queries runs check

This doesn't give us much net new test coverage

36468ba4b0c556d7bf5d5e285691da7521719d64 authored 10 months ago
Install dependencies in query filters tests

88f7d3d64098a2fceabba65b76a12f391cc96091 authored 10 months ago
Install npm dependencies where necessary in generated workflows

879c788b45863af6a129890081e863681b123349 authored 10 months ago
Install dependencies in code scanning config test

f8c0d73f71099e756da9ac567a1b9ab0d847f577 authored 10 months ago
Add `analyses` field with comma-separated list of analysis kinds to status reports

c208f33c5508954a2c9f09d306b535ed25775fea authored 10 months ago
Refactor check whether CQ is enabled

This will make it easier to replace in the future

d6621b9f4e4826c2f3e85d27ddad99a4231d3281 authored 10 months ago
Copy `defaults.json` to `lib`

3e725de0bbee4ca490cb232b27efb5a43dd6e531 authored 10 months ago
Merge branch 'main' into henrymercer/bundle

f04e228d363541b59e16a9cf9674fd4444a118de authored 10 months ago
Merge pull request #3053 from github/mergeback/v3.29.11-to-main-3c3833e0

Mergeback v3.29.11 refs/heads/releases/v3 into main

5b49155c7f37b5ec074ffd26b428e6b64b1bf412 authored 10 months ago
Don't run linter in CI on Windows

It isn't working, and this PR didn't break it. Let's fix it in a separate PR.

d8905c209053a9fefcee30b1441aaee0d6b23213 authored 10 months ago
Update checked-in dependencies

951c17cfcb434e1ba9ad32d5ae617378dce7c87a authored 10 months ago
Cache npm dependencies

a2df83b4787a6a3400a1681d84f0bfbf2a26b800 authored 10 months ago
Combine basic jobs to reduce Actions usage

3edad3eebd6f0cc8ec9eeae4051e359fe42f9639 authored 10 months ago
Run more checks on `push`

06f83b7cc8675cb58717587e29de76a9dd93f7af authored 10 months ago
Install dependencies in PR checks

31ee7f54d3f4ce47a5dcd216249b21ea1c4f8cbb authored 10 months ago
Update changelog and version after v3.29.11

88e0162232c0de646b2eca76cd424a3dd840a5ef authored 10 months ago
Merge pull request #3052 from github/update-v3.29.11-14148a433

Merge main into releases/v3

3c3833e0f8c1c83d449a7478aa59c036a9165498 authored 10 months ago
Check in compiled files

88d8b86edd139c89607fbb49252dea7541a0c612 authored 10 months ago
Remove `node_modules` directory

8b7a4ec0686115ac1e45b605eac543b95ce29481 authored 10 months ago
Compile sources to separate directory for tests

67d4718952d362d1fc6b75fd1029b3ed6fe02dbf authored 10 months ago
Bundle Actions using esbuild

fee3663b1852585a2790f9e3ef8cd3c713e29873 authored 10 months ago
Update changelog for v3.29.11

8c4bfbd99ba6ef652eca12461ad7618142e00679 authored 10 months ago
Merge pull request #3044 from github/update-bundle/codeql-bundle-v2.22.4

Update default bundle to 2.22.4

14148a433d789d9b6c7dadb56d8e3f8ad1e59605 authored 10 months ago
Merge pull request #3049 from github/update-supported-enterprise-server-versions

Update supported GitHub Enterprise Server versions

db69a5182d331d562e511302ae3c9aafd5fada6c authored 11 months ago
Use "Rebuild" workflow instead of "Update dependencies"

6d34e4e857cbd9a64324391806ad154549948a01 authored 11 months ago
Merge pull request #3050 from github/henrymercer/init-not-called-config-error

Make "init not called" a configuration error

a68d47bfa574c69f3de7d6484cf28a9c55ff7287 authored 11 months ago
Make "init not called" a configuration error

e496ff959372e828f30b1518fd22cb76170cf5db authored 11 months ago
Update supported GitHub Enterprise Server versions

fd2ea72d34cdf8157d85d93decf87671705166a3 authored 11 months ago
Merge pull request #3045 from github/dependabot/npm_and_yarn/npm-5b4171dd16

Bump the npm group with 3 updates

6dee5bc9c165ca206a70f4e3d18271971cf6ff26 authored 11 months ago
Merge pull request #3046 from github/dependabot/github_actions/actions-332f575eae

Bump ruby/setup-ruby from 1.254.0 to 1.255.0 in the actions group

228755aea10779df94eb71c7c58d36d333f6ceec authored 11 months ago
Update checked-in dependencies

867924a2b1efaa018f42bdb7ba3abf40f6bfed85 authored 11 months ago
Bump `@typescript-eslint/parser` version in `package.json`

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

11ba428a28c4719830bc2e34e83339e26e8ad076 authored 11 months ago
Merge pull request #3048 from github/copilot/fix-0144fa49-d795-4e78-9d19-a527837da980

Update ruby/setup-ruby version to v1.255.0 in pr-checks template

46ec4d066551998571b0e4d368d4e7dd221d2d0b authored 11 months ago
Update ruby/setup-ruby version to v1.255.0 in pr-checks template

Co-authored-by: henrymercer <14129055+henrymercer@users.noreply.github.com>

7056ffb95036e10b44c83e18b47188e1e65fbbea authored 11 months ago
Initial plan

e686d4e01eb572aa367a477593013e2d01ea8ba0 authored 11 months ago
Bump ruby/setup-ruby from 1.254.0 to 1.255.0 in the actions group

Bumps the actions group with 1 update: [ruby/setup-ruby](https://github.com/ruby/setup-ruby).

...

624817a691648bc5ed1f5f501c0c86b381ec19b1 authored 11 months ago
Update checked-in dependencies

0def3109410240a7780ce9d70b69cb52c27bdcf2 authored 11 months ago
Bump the npm group with 3 updates

Bumps the npm group with 3 updates: [@typescript-eslint/eslint-plugin](https://github.com/typesc...

8327659a5236522dd370d26cd65944002d7c2c16 authored 11 months ago
Add changelog note

71b2cb38a1e682cb9b2453a5f1400eef870a37df authored 11 months ago
Update default bundle to codeql-bundle-v2.22.4

2bf78254cceec27aab20b1623ba68c63c6eb85c6 authored 11 months ago
Merge pull request #3043 from github/mergeback/v3.29.10-to-main-96f518a3

Mergeback v3.29.10 refs/heads/releases/v3 into main

e96e340c1e95e91449de06aabfa9525b7b98113f authored 11 months ago
Update checked-in dependencies

c4a96d2338b63109d5a24c338b5dece13ebec944 authored 11 months ago
Update changelog and version after v3.29.10

e90680ed26e800cb0fc76c011acb2de94eaef364 authored 11 months ago
Merge pull request #3042 from github/update-v3.29.10-6ec994ecb

Merge main into releases/v3

96f518a34f7a870018057716cc4d7a5c014bd61c authored 11 months ago
Update changelog for v3.29.10

57a1c6b3e7be038f5eeeeb5323255e363f4b0100 authored 11 months ago
Merge pull request #3039 from github/mbg/remove-cpp-bmn-check

Remove unused C++ BMN FF

6ec994ecba29cf3cf0724e281b919d68714895ce authored 11 months ago
Remove unused C++ BMN FF

3f00c7c1e1cf5d62a6dcd81509929718baa53e5f authored 11 months ago
Remove C++ BMN FF check that is no longer used

141ee4abd8937999bf5108d222dd9f553490f3a8 authored 11 months ago
Merge pull request #3037 from github/henrymercer/failed-upload-logs

Bump log visibility for failed analysis upload

233052189b8c862bfaf875fb02c115f54d2b9286 authored 11 months ago
Merge pull request #3035 from github/henrymercer/fix-cleanup-info

Only display `cleanup-info` log when relevant

3966569d06c954a63fdb79944f148b2f8b4ceed8 authored 11 months ago
Merge branch 'main' into henrymercer/failed-upload-logs

f7bd70c7faab9b863a52c058f145ec121b391925 authored 11 months ago
Merge branch 'main' into henrymercer/fix-cleanup-info

75151c27826716b79222a4d1ddac714dc37eff65 authored 11 months ago
Merge pull request #3036 from github/mbg/ci/gradle9

Add workflow generator option for installing Java

4ff91f10807d53419e564e2484e7045e207584b9 authored 11 months ago
Fix redundant `True` / `False`

1dafc5cf4c28caaf5f9419a5930ba65e59c8a0be authored 11 months ago
Add template option for installing Java

3119b35eedcda944caf9e7b8519180ffe3710a51 authored 11 months ago
Bump log visibility for failed analysis upload

Make it more obvious that the SARIF file for the unsuccessful execution was successfully uploaded.

5848d111cdc3d0316d7ed2ba78adc7a2bd42213a authored 11 months ago
Only display `cleanup-info` log when relevant

537405376b048acff14d6f23a048f0fb071b392f authored 11 months ago
Use PR branch as `BASE_BRANCH` when testing, to make sure script changes are available

67e42fe257a7c468605bbd7bd8a6d4dcd9885393 authored 11 months ago
Ensure we check out the base branch, before creating the mergeback branch

1e21ce30216e625cfc338ec212d6d626e78367a9 authored 11 months ago
Create a new tag for test runs, to make sure we have changes from a PR

e22f34a40573d7ae48cd33ba40d710e1fa8a9936 authored 11 months ago
Fix `prepare_changelog.py` not using `changelog_file` consistently

e1654f12969dee1804281fc607358cadd5f26ac1 authored 11 months ago
Create mergeback branch/PR

420585611881ee7601310b8099781d18588e32f4 authored 11 months ago
Add `dry-run` input to `prepare-mergeback-branch`

c9665e6850d561fbc01d2fec427a577a0a675082 authored 11 months ago
Add script for creating a rollback changelog

c7002097434c100f919c7d23261c8b33aa7fcc2a authored 11 months ago