Data

Tools

Indexes

Applications

Experiments

Dashboards

A web application to visualize and manage open source project data from the Ecosyste.ms API.

Last sync

1 day ago

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Merge branch 'main' into henrymercer/sha256

e8d3fa290ef251c32e0f3ea0b36ef0fe50197ac2 authored about 2 months ago
Auto-generate entry points

14085a675cb6d8cddc805b946cc1d51e3232a204 authored about 2 months ago
Merge pull request #3791 from github/sam-robson/overlay-fallback

Fall back to non-overlay analysis when diff-informed analysis is unavailable

eb17ca4f4dc0a9ba739750831df9e4f6f6462520 authored about 2 months ago
Merge branch 'main' into sam-robson/overlay-fallback

a41c444cd9a7dd7a56d33291d2c7d1cf7a87c147 authored about 2 months ago
Fix linter errors

d7e50c23fe004845837bc31b10cac9f2dc660ee9 authored about 2 months ago
Avoid top-level promise in `analyze-action`

bb30f3132dc9e68cc16b2df0cee3f9f6954ce7ca authored about 2 months ago
Merge pull request #3901 from github/henrymercer/minify-test-debug-artifacts

Minify test debug artifacts

336884853e35a0743f0ec3a966de7b32d8db7de6 authored about 2 months ago
Add remaining new entry points

2f137c9dc6711130af7199ee0583b9b8a3154f7f authored about 2 months ago
Remove now unnecessary test skipping

4795ef8153a9fbf9e9ff283721e728f492c993b0 authored about 2 months ago
Update action specs for new entry points

f0489abddd4e5e9dff53ed28a45b1d6f88978a1b authored about 2 months ago
Reduce size of test debug artifacts

2e202367c7bbd85a25fb79031bfff36e761de0ea authored about 2 months ago
Merge remote-tracking branch 'origin/main' into sam-robson/overlay-fallback

* origin/main: (40 commits)
Bump the npm-minor group across 1 directory with 3 updates
Bump ...

9d7243005bf153701700ed0770988737aa77e07c authored about 2 months ago
WIP: Reduce bundle duplication

237b03b3c39378f30030532d92d4c6aae2c965d8 authored about 2 months ago
Bump sinon from 21.1.2 to 22.0.0

Bumps [sinon](https://github.com/sinonjs/sinon) from 21.1.2 to 22.0.0.
- [Release notes](https:/...

d4eab006fabe61a323150f46499699238f871c0a authored about 2 months ago
Merge pull request #3897 from github/dependabot/npm_and_yarn/npm-minor-afb85bbff8

Bump the npm-minor group across 1 directory with 3 updates

ea37b337cdd7576e8e3d6f87f0bb13713c82b69f authored about 2 months ago
Merge pull request #3896 from github/dependabot/github_actions/dot-github/workflows/actions-minor-9f1c31c749

Bump actions/create-github-app-token from 3.1.1 to 3.2.0 in /.github/workflows in the actions-mi...

ba0a2f91b7bafdb247a2b24e480f75f0dd49e60d authored about 2 months ago
Bump the npm-minor group across 1 directory with 3 updates

Bumps the npm-minor group with 3 updates in the / directory: [globals](https://github.com/sindre...

4041a11865997c316ce6a07449512369a0e809be authored about 2 months ago
Bump actions/create-github-app-token

Bumps the actions-minor group with 1 update in the /.github/workflows directory: [actions/create...

2a6fe1608c7d5b1e0cb3d8e19d51c4ff1ca47a0d authored about 2 months ago
Remove unnecessary sinon `restore` calls

3c8c0ae6cbd8b9d1bef5080de3d0a45c03e50d5f authored about 2 months ago
Merge branch 'main' into henrymercer/sha256

93d215d87431e6b90fb14613f4ce86afc8c4deef authored about 2 months ago
Log error for non-default `analysis-kinds` input outside of managed workflows

4235601f6fe7436b6ea2e8c05bbf10e53a2c279c authored about 2 months ago
Merge pull request #3891 from github/navntoft/dep/remove-brace-expansion-override

Bump brace-expansion and 4 dev dependencies

3d6ea97f262502cf014e0c1a0e525230c8f6ead6 authored about 2 months ago
Merge pull request #3892 from github/mbg/analysis-kinds/warn-on-multiple

Log error and only enable `code-scanning` if multiple analysis kinds are specified

7d25a3e59006641f5f41cc0630404bcbce51230b authored about 2 months ago
Merge remote-tracking branch 'origin/main' into mbg/analysis-kinds/warn-on-multiple

4dc72761a61590d9ee9c33ec107d040a1069f7af authored about 2 months ago
Update PR check testing matrix

9c3aedb4cd14530e690be6645ab03e2963baa26b authored about 2 months ago
Merge branch 'main' into henrymercer/sha256

a66f7bbb5a303194153db41a5f77a5890e28dd59 authored about 2 months ago
Add note about `CODEQL_VERSION_ZSTD_BUNDLE`

b9866406721016af3b5eb6c578e8a6ae24c573a9 authored about 2 months ago
Remove `DatabaseInterpretResultsSupportsSarifRunProperty` tools feature

This feature has been supported since CodeQL CLI v2.19.0

a333d64ec40a2bda9381f84504aec106e2d76676 authored about 2 months ago
Improve regex clarity

de3e561d12fdde6ed1656f01f50fc6bfe4034cd0 authored about 2 months ago
Remove `ForceOverwrite` tools feature

This feature has been supported since CodeQL CLI v2.18.0, which is below the new minimum version.

97fb30df6b52b2496f70c126f190f464b23075ca authored about 2 months ago
Merge pull request #3880 from github/henrymercer/overlay-match-codeql-version

Overlay: Use overlay-aware CLI version when analyzing PRs

c559992c9e1f26532debd2f8e64b7b5d6ebfc0ec authored about 2 months ago
Bump minimum CodeQL CLI version to 2.19.4

d122da3c9fbc0d874b28239bedb62a1592abd2cf authored about 2 months ago
Add support for SHA-256 Git object IDs

6a4e35fad9b003e6da9a9318e6b1b6993c483ebe authored about 2 months ago
Nit: Tweak JSDoc for `getRawLanguagesNoAutodetect`

8d217609b05d7a35904ca7475a82f7bbb1a2b64d authored about 2 months ago
Enable only `code-scanning`

257b3d3fc8c43360913681efccc21bc2f00429bc authored about 2 months ago
Use overlay-aware version for code scanning exclusively

201a96b5417bdc74abe78e0fb1d28b23088af75f authored about 2 months ago
Add changelog entry

312a2fee968d17552828b941776d9a3185adf6c8 authored about 2 months ago
Throw error if multiple analysis kinds are specified

70419e32737de18f4a5e3e1fc15a56c19e953814 authored about 2 months ago
Rebuild

2ca0fbdca8acc748377789ee1d0ae1b4af4b8d9a authored about 2 months ago
Bump five transitive dependencies

Bumps the following to their latest patched versions:

brace-expansion (under readdir-glob): 2.0...

12c1d88854f69bb8872b08e1f9e976d083e204f2 authored about 2 months ago
Merge pull request #3889 from github/dependabot/npm_and_yarn/fast-xml-builder-1.2.0

Bump fast-xml-builder from 1.1.5 to 1.2.0

b62aaa99a566b376e9c7086e9e5e951f17f53488 authored about 2 months ago
Bump fast-xml-builder from 1.1.5 to 1.2.0

Bumps [fast-xml-builder](https://github.com/NaturalIntelligence/fast-xml-builder) from 1.1.5 to ...

2f2dbd2e78fdfcbfe2a8484e3a9c6125af375a0c authored about 2 months ago
Merge branch 'main' into henrymercer/overlay-match-codeql-version

0aedbb71d82ea7cc4489a8d479bf17b0de7762ff authored about 2 months ago
Improve tests

b4ea7aa65a1433818f16580fd800a1877403b196 authored about 2 months ago
Improve error message

87ac48dae6f9d9e77e639a7ec90fd51f8efb985c authored about 2 months ago
Remove dead code

42d7f625793307414a4622f105d5a0c3a736fa01 authored about 2 months ago
Remove `makeOverlayMatchFeatures` indirection

540699dccac493fc29e2fa3914b7d408d147991a authored about 2 months ago
Add JSDoc for `getRawLanguagesNoAutodetect`

9a8523487521a38598130492b67894c80d257d22 authored about 2 months ago
Enable overlay-aware version selection in `setup-codeql`

2a950b930c5bd4cb160f0c4f451a3910fb6da99f authored about 2 months ago
Merge pull request #3886 from github/mergeback/v4.35.4-to-main-68bde559

Mergeback v4.35.4 refs/heads/releases/v4 into main

868e2ea5641bfa2e2af1f144664178b4c5575fab authored about 2 months ago
Merge pull request #3875 from github/dependabot/npm_and_yarn/npm-minor-c8e071f5f8

Bump the npm-minor group across 1 directory with 4 updates

792c223bc1170a096b0a99eb16f21f4e70122b19 authored about 2 months ago
Minor: Introduce constant to avoid duplication

4f815a68d336d164041499068d5944c9edb80fff authored about 2 months ago
Improve changelog note

Co-authored-by: Michael B. Gale <mbg@github.com>

efc9b0a9e31d53e02f313d87cefb11699d45a3bd authored about 2 months ago
Rebuild

272ada693fa1ea75875a3eab499446c881ac9125 authored about 2 months ago
Merge remote-tracking branch 'origin/main' into mergeback/v4.35.4-to-main-68bde559

610a6682b65ca3db09e3299a255a460c9d843ad6 authored about 2 months ago
Update changelog and version after v4.35.4

162709656926887731e0f28af95d7c95f7d76f3b authored about 2 months ago
Merge pull request #3885 from github/update-v4.35.4-803d9e8c3

Merge main into releases/v4

68bde559dea0fdcac2102bfdf6230c5f70eb485e authored about 2 months ago
Update changelog for v4.35.4

9739ad2d182c072da0d01a6887f7f39620f71b1e authored about 2 months ago
Merge pull request #3874 from github/henrymercer/slow-tests-ci-only

Tests: Run slow `scanArtifactsForTokens` test in CI only by default

b81d0d250f2533fa65eb9ccf3e9e80ce3b4724f5 authored about 2 months ago
Merge pull request #3884 from github/mbg/dev/no-build-metadata

Do not run `bundle-metadata.ts` as part of `npm run build`

a16cb53dd85e7c20eea25e699528ff06cd6d3143 authored about 2 months ago
Merge pull request #3883 from github/mbg/test/macro-wrapper

Add more strongly typed wrapper around `test.macro`

803d9e8c3ca8b0dd2029a1da3b541a18b6bfb076 authored about 2 months ago
Add explicit error on Windows

0c80cee8061e24785c6ad1b079c5f4314b827b75 authored about 2 months ago
Merge pull request #3882 from github/dependabot/github_actions/dot-github/workflows/actions-minor-4a0b9de8bd

Bump ruby/setup-ruby from 1.305.0 to 1.306.0 in /.github/workflows in the actions-minor group ac...

0fd9c7d1358a7404e46ed8165f12262f56bd1434 authored about 2 months ago
Use `makeMacro` instead of `test.macro`

922d6fb888d665134eb982b150b8912dbd48e21a authored about 2 months ago
Merge pull request #3881 from github/update-bundle/codeql-bundle-v2.25.4

Update default bundle to 2.25.4

e7a347dfb1bfb7a858347623fcb4f650effca6b5 authored about 2 months ago
Update test macro snippet

df77e87896689b5c736433984c5df14d86c63d56 authored about 2 months ago
Add wrapper for `test.macro`

6e3f985e4fc409a188c7701b68c4dec158c9ced3 authored about 2 months ago
Rebuild

17eabb2500031486a71e00ecbcb72c73804a6c9f authored about 2 months ago
Bump ruby/setup-ruby

Bumps the actions-minor group with 1 update in the /.github/workflows directory: [ruby/setup-rub...

aaef09c48db2dd7f0100363de1785963a34cd706 authored about 2 months ago
Add changelog note

ae1b9155d331333bd3a526ae3fa105fbcf73ab36 authored about 2 months ago
Update default bundle to codeql-bundle-v2.25.4

9f82f88f07f7e4effe8006b9354a8ae7ce7263a8 authored about 2 months ago
Nit: Dedupe languages

7525c68ea1b9c447eeb392cade7ee92837c299b1 authored about 2 months ago
Filter to code scanning only

01bc9be56a239c5044ac4528461d0d2387904c14 authored about 2 months ago
Merge branch 'main' into sam-robson/overlay-fallback

9d6b456c595cea05947b5feecafa91073a6870a1 authored about 2 months ago
refactor: rename overlay-disabled reason and add changelog entry

e259d260550cf2a57e67114c1665ce88ea5f1091 authored about 2 months ago
Merge branch 'main' into henrymercer/overlay-match-codeql-version

817b68489e2171a0ccea4e5ddf8cb8150a443512 authored about 2 months ago
Rebuild

1848b73afaca43060a19cef9ded4a6c751c536ad authored about 2 months ago
Bump the npm-minor group across 1 directory with 4 updates

Bumps the npm-minor group with 4 updates in the / directory: [@types/node](https://github.com/De...

d1e9792bc8c60efe49036cad07d04ac6597e88fa authored about 2 months ago
Tests: Run slow `scanArtifactsForTokens` test in CI only by default

2c9cd778370535d5d5cb8eb04a4ba7d34890717a authored about 2 months ago
Add changelog note

1b5632783cc2c3a7cbe006c984f5584851ab9484 authored about 2 months ago
Add dry run mode so we can dark ship

b967fdfbdcb34cdf41bdd304aec7e2c548eff473 authored about 2 months ago
Match CLI version to cached overlay-base database

55d6319f962eaad44a2f20b6bacf0ed4cac7d20a authored about 2 months ago
Merge pull request #3785 from github/mbg/dep/update-undici

Bump `undici` to at least `6.24.0`

bc0b696b4103f5fe60f15749af68a046868d511a authored about 2 months ago
Expose all enabled default CLI versions

b0942116d7fb70909c0153ccfe7e4a54dd932def authored about 2 months ago
Add OverlayAnalysisMatchCodeqlVersion feature flag

a796e3e4ed79ee0f1517ab0535d1fb7196eb5ac9 authored about 2 months ago
Merge branch 'main' into mbg/dep/update-undici

f9bb0e001c5b75c6345335949685758a27fb3399 authored about 2 months ago
Merge pull request #3809 from github/henrymercer/determine-overlay-version

Overlay: Determine which versions of CodeQL are compatible with cached base DBs

4b7faf0b3d11f905756f4cd88312280713612b03 authored about 2 months ago
Add note about cache eviction

09a1d9ec2ad055a28abb3a54e8f8eebe88581660 authored about 2 months ago
Add links to API docs

f64a4491cf3dec11924189e93a28cd5c41b3c514 authored about 2 months ago
Update type import syntax

7fc86e0c371d82b4a6e8d805bafde4d9be0bfd83 authored about 2 months ago
Update `listActionsCaches` doc

5997e25ad9b4bb8bf9d221889e85b99b2d930f3d authored about 2 months ago
Revert "Mitigate caches being evicted before they can be downloaded"

This reverts commit 1279e8d41c608bda4cf183c22c4860d3bfb99cb5.

7587714d0aadbeca5a7dca63b57dbb40ef2787ab authored about 2 months ago
Merge branch 'main' into sam-robson/overlay-fallback

8ab64a211dbd55450136ddae7e993f2f54a8057d authored about 2 months ago
Merge pull request #3868 from github/mergeback/v4.35.3-to-main-e46ed2cb

Mergeback v4.35.3 refs/heads/releases/v4 into main

a723e99345b89ee0bbcbd68ee4e63f9a56b42a25 authored about 2 months ago
Rebuild

fbba1e03bea01cccd74fe1a695ca782c63fc32b6 authored about 2 months ago
Update changelog and version after v4.35.3

933238e8d5b5a4261b99698f08ba877048ad2b60 authored about 2 months ago
Merge pull request #3867 from github/update-v4.35.3-8c6e48dbe

Merge main into releases/v4

e46ed2cbd01164d986452f91f178727624ae40d7 authored about 2 months ago
Add changelog entry for #3853

b73d1d163446ca5e62b96698027210ab41df6a4a authored about 2 months ago
Reorder changelog entries

24e0bb00a931e2a5edb703ce3b22a70f3a3e800b authored about 2 months ago
Update changelog for v4.35.3

ec298daba71cf7592feacbd1c0887cddc0659f62 authored about 2 months ago