A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Diff-informed analysis: fix empty PR handling

b361a915088c90790a0c458a63a4b63108a9ab0a authored over 1 year ago
Merge pull request #2816 from github/cklin/overlay-file-list

Overlay databases: use --overlay-changes

bd1d9ab4eda903e1b5caa241368836575c6c476b authored over 1 year ago
Add overlay-database-utils tests

b98ae6ca52694a727f4a03c9bf7a52df66492f23 authored over 1 year ago
Add getFileOidsUnderPath() tests

9825184a0aec625d59c8e5bcc122734a77e38e7b authored over 1 year ago
Merge pull request #2817 from github/cklin/default-setup-diff-informed

Support diff-informed queries under Default Setup

ac67cffe5c20e84b598930c8453336a7404b2786 authored over 1 year ago
build: refresh js files

9c674ba4f548f8b6a6f1a7990756e80453894f56 authored over 1 year ago
Introduce PullRequestBranches

3e5446c3d2225ba48683a86f3f503a468a711005 authored over 1 year ago
Detect PR branches for Default Setup

d109dd5d333ab79c34032e0443e15643c347e966 authored over 1 year ago
Overlay databases: use --overlay-changes

This commit changes overlay database creation to use the
--overlay-changes flag. It also impleme...

6be6984cc174fc3fc24f53b483c29b15ec9a79c5 authored over 1 year ago
Merge pull request #2813 from github/NlightNFotis/enhance_justfile

build: sync some utility just instructions I had locally

c50c157cc388ea631f085f4e95e948f51cdc742a authored over 1 year ago
Update justfile

Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>

c74c378e297cb8a20ad5155e7dc40f97093f4b69 authored over 1 year ago
Update justfile

Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>

d271bde0ec328140a2d7d8ee692adba0a266a9a7 authored over 1 year ago
Merge pull request #2815 from github/mergeback/v3.28.12-to-main-5f8171a6

Mergeback v3.28.12 refs/heads/releases/v3 into main

df9f80e0f0fcc8711b6e26ef4cf69e553f271e88 authored over 1 year ago
Update checked-in dependencies

46371933a7e586e6662b67b167d677ed9aa7ccdb authored over 1 year ago
Update changelog and version after v3.28.12

ee6a063cbd19667c6426d84157dd6d734393877f authored over 1 year ago
Merge pull request #2814 from github/update-v3.28.12-6349095d1

Merge main into releases/v3

5f8171a638ada777af81d42b55959a643bb29017 authored over 1 year ago
Update changelog for v3.28.12

bb59f7707d836b040802dbdf2ad1a16482d319da authored over 1 year ago
build: sync some utility just instructions I had locally

8b0dccd066f0dfcd51bcb6b3c825af5aa7788de2 authored over 1 year ago
Merge pull request #2810 from github/update-bundle/codeql-bundle-v2.20.7

Update default bundle to 2.20.7

6349095d19ec30397ffb02a63b7aa4f867deb563 authored over 1 year ago
Merge pull request #2802 from github/mbg/dependency-caching/java-buildless

Set and cache dependency directory for Java `build-mode: none`

55f023701cfc1e7d11ef2ae0c5ec3193dae4fce4 authored over 1 year ago
Merge pull request #2811 from github/dependabot/github_actions/actions-c2c311daa1

build(deps): bump ruby/setup-ruby from 1.222.0 to 1.226.0 in the actions group

6a151cd77488e58567da1dcf953e7aeeaca4950c authored over 1 year ago
Manually bump workflow to match autogenerated file

7866bcdb1b15b5d5cba0021b87f36d9f6d977156 authored over 1 year ago
build(deps): bump ruby/setup-ruby in the actions group

Bumps the actions group with 1 update: [ruby/setup-ruby](https://github.com/ruby/setup-ruby).

...

611289e0b0ce1f6fc14820f1b72edaed2de4ba2c authored over 1 year ago
Add changelog note

d7d03fda1241f6b0b3fae460c9f19c6e887158ad authored over 1 year ago
Update default bundle to codeql-bundle-v2.20.7

4e3a5342c5e8e627915b9a29b363f49da8c4a32e authored over 1 year ago
Remove temporary dependency directory in `analyze` post action

4c409a5b664afa7d5b12cd8487e310f286487472 authored over 1 year ago
Merge pull request #2808 from github/aeisenberg/fix-dependabot

Fix dependabot errors

70df9def86d22bf0ea4e7f8b956e7b92e7c1ea22 authored over 1 year ago
Fix dependabot errors

I explicitly had to downgrade "@octokit/plugin-retry" to "^6.0.0". Other
dependencies were upgra...

5f98c40063ecb936a2e923338239bbccc31a59ec authored over 1 year ago
Move PR branch detection into setupDiffInformedQueryRun()

6adda7988854bc0aa899c444a745cef431aa57ae authored over 1 year ago
Merge pull request #2806 from github/cklin/delete-unused-git-utils

git-utils: deleted unused functions

f338ec87a39f9c5e2ec91decb5d7718c92875790 authored over 1 year ago
git-utils: deleted unused functions

c31f6c89e8c1eb940aff8833af9b2a2553a59c8a authored over 1 year ago
Update changelog

251c7fdf5d97c265e2696c8ac1bbf321ad97037d authored over 1 year ago
Add more documentation

afa3ed33bb15e43e4c2a97a54b0c866d7b9138e7 authored over 1 year ago
Merge pull request #2800 from github/aeisenberg/remove-minimatch

Minimally remove micromatch

dc49dcabdb86371d19197fcae2585f548bbbc395 authored over 1 year ago
Merge pull request #2804 from github/dependabot/github_actions/actions-96d25c356e

build(deps): bump ruby/setup-ruby from 1.221.0 to 1.222.0 in the actions group

7254660adc34cef611559b5423694b5266923899 authored over 1 year ago
Merge pull request #2801 from github/cklin/overlay-databases

Basic support for overlay databases

13f2f96cddfe4a5344926716ecf80e8327cc3200 authored over 1 year ago
build: refresh js files

0efe12d12cc0beacd5cae2cccaab14363449574c authored over 1 year ago
Update pr-check

d3762699d1faea11afcbcfb22f5c208d1b3b5eeb authored over 1 year ago
Merge pull request #2803 from github/dependabot/npm_and_yarn/npm-129f0c3752

build(deps-dev): bump the npm group with 3 updates

b46b37a8a348d1768fde58498025680784561136 authored over 1 year ago
build(deps): bump ruby/setup-ruby in the actions group

Bumps the actions group with 1 update: [ruby/setup-ruby](https://github.com/ruby/setup-ruby).

...

aecf01557df1aae051d963a87c63578335cb0819 authored over 1 year ago
Update checked-in dependencies

053e2184a0993f9dc132925a1af5206512027c44 authored over 1 year ago
build(deps-dev): bump the npm group with 3 updates

Bumps the npm group with 3 updates: [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/pack...

248ab9b81116908a728dc3bb28b65728c8f746ec authored over 1 year ago
Support overlay database creation

This commit adds support for creating overlay-base and overlay
databases, controlled via the COD...

ff5f0b9efdde997429172d6cec95233686451b0e authored over 1 year ago
Do not set --expect-discarded-cache on "cleanup-level: overlay"

When a user specifies "cleanup-level: overlay", it suggests that the
user wishes to preserve the...

d76f3937132862641c400298844fc6b170c86fff authored over 1 year ago
Pass overlay mode into databaseInitCluster()

This commit adds a OverlayDatabaseMode parameter to
databaseInitCluster(). The parameter control...

270886f805308bd0a5b185a33539905aca625820 authored over 1 year ago
Set and cache dependency directory for Java `build-mode: none`

f8367fb0632ad49566c00128a7ed86aff914dc74 authored over 1 year ago
Minimally remove micromatch

88676f2b14f8d7135aab1aa605f9f737c940d3b7 authored over 1 year ago
Merge pull request #2799 from github/mergeback/v3.28.11-to-main-6bb031af

Mergeback v3.28.11 refs/heads/releases/v3 into main

b2e6519679e446e7bb7c3466d70f13a6b5461fcd authored over 1 year ago
Update checked-in dependencies

ff91c9db256ab6d14e1268b9c834482e28e9cfdf authored over 1 year ago
Update changelog and version after v3.28.11

d1b3f740d80d5403e0cec80c3aa78d109c4f5f89 authored over 1 year ago
Merge pull request #2798 from github/update-v3.28.11-56b25d5d5

Merge main into releases/v3

6bb031afdd8eb862ea3fc1848194185e076637e5 authored over 1 year ago
Update changelog for v3.28.11

6bca7dd940f38115b5e3696bd79bbb020563bb1f authored over 1 year ago
Merge pull request #2793 from github/update-bundle/codeql-bundle-v2.20.6

Update default bundle to 2.20.6

56b25d5d5251df651f82070735778784aa383094 authored over 1 year ago
Merge branch 'main' into update-bundle/codeql-bundle-v2.20.6

256aa1658211f7bf42a0ee5b18a106fe81baa524 authored over 1 year ago
Merge pull request #2796 from github/nickfyson/adjust-rate-error-string

adjust string for handling rate limit error

911d845ab60270de25813c5a148ec9501e857340 authored over 1 year ago
adjust string for handling rate limit error

7b7ed635033f63c6f84ab377f726dc0b933bd593 authored over 1 year ago
Merge pull request #2794 from github/update-supported-enterprise-server-versions

Update supported GitHub Enterprise Server versions

608ccd6cd915d2c43d3059c3da518f36f07a56b0 authored over 1 year ago
Update supported GitHub Enterprise Server versions

35d04d3627f40144b1b19daa99f2449297367ec9 authored over 1 year ago
Update supported GitHub Enterprise Server versions

ec3b22164b6b09c9b3d63ff4e9d41084895602b0 authored over 1 year ago
Add changelog note

8dc01f6342a3f934d1a339917531a4d8beda41bc authored over 1 year ago
Update default bundle to codeql-bundle-v2.20.6

b378daf0bca41dc51cee6a7f0b9ef19e3154d6ca authored over 1 year ago
Merge pull request #2788 from github/dbartol/use-real-actions-extractor

Use embedded `actions` extractor only for old CLI versions

80f993039571a6de66594ecaa432875a6942e8e0 authored over 1 year ago
Merge pull request #2791 from github/dependabot/npm_and_yarn/npm-24c237cb71

build(deps): bump the npm group with 9 updates

f544ec5e4a2caf416b7e91e5f82ef6bcec574c5c authored over 1 year ago
Merge remote-tracking branch 'origin/main' into dbartol/use-real-actions-extractor

d37931ae651d1f2b6d8ae89ea4fe14c7eb2320e6 authored over 1 year ago
Merge pull request #2792 from github/dependabot/github_actions/actions-f0e7f3112e

build(deps): bump actions/create-github-app-token from 1.11.5 to 1.11.6 in the actions group

4b35b0466171d1d508ed77baf073721b483f55ef authored over 1 year ago
build(deps): bump actions/create-github-app-token in the actions group

Bumps the actions group with 1 update: [actions/create-github-app-token](https://github.com/acti...

1a69221aebfdd009d31b7e8dee9ac88dfbe9931c authored over 1 year ago
Update checked-in dependencies

452ffd6e8e215bb5e5ea49802977ca92fc7c3da1 authored over 1 year ago
build(deps): bump the npm group with 9 updates

Bumps the npm group with 9 updates:

| Package | From | To |
| --- | --- | --- |
| [@actions/cac...

a8ade63a2f1770dd0e93e9c718c5af2fcb145c12 authored over 1 year ago
Merge pull request #2786 from github/henrymercer/more-config-errors

Add some more configuration errors

2db5b5a35fd4e7188cc2c5d443139786cac9815b authored over 1 year ago
Use embedded `actions` extractor only for old CLI versions

85e30fe57aecf2d5e83394baaf311397ffb2e0d5 authored over 1 year ago
Add changelog entry

c7c9a57be6beba1ef2a268b08d0af1d63cf2620e authored over 1 year ago
Remove bundled copy of `actions` extractor

c29cab9aac67018e1c4b9832c64e2fa396d4c575 authored over 1 year ago
Merge pull request #2776 from github/redsun82/just

Do some just+pre-commit tweaking

83923549f688e42b34d0b90ee94725f7c30532fc authored over 1 year ago
Merge pull request #2785 from github/igfoo/mb

Warn about small amounts of MB, not GB

97aac9bb5668e73a3626129e9abc4164b2de3a7a authored over 1 year ago
npm run build

146dd5cfb0234a4dd67c926dd5cbc743ce022cc8 authored over 1 year ago
Warn about small amounts of MB, not GB

The number of GB is at most 2, and can be tiny. MB gives a more
comprehensible range of values.

32505c6f2d13a8bd49bdd27b57e64da6a69319c3 authored over 1 year ago
Merge pull request #2782 from github/angelapwen/fix-unversioned-immutable-action

PR Checks: use semantic versioning for `create-github-app-token`

8c69433c34fe91b0644d83e6f14bb77eb3e46812 authored over 1 year ago
PR Checks: use semantic versioning for `create-github-app-token`

c4f2a076e53258a785b93d663745ca0d6d9b989b authored over 1 year ago
Merge pull request #2781 from github/angelapwen/fix-code-injection-warning

Fix code injection warnings in `check-codescanning-config` internal Action

a8849fbe6341625acb2e18f7f32e53b734d6e1e3 authored over 1 year ago
Remove print debugging

628c1e669a7443dbda7065e75f489bb50d4b764a authored over 1 year ago
Set environment variable in the correct step

e12eb8d7c155758360f0eac96e76d523c148e044 authored over 1 year ago
Debug only: print environment variable

3b348d9a548445f0f8528a5d94614dd6df264b57 authored over 1 year ago
Fail when expected config does not exist

7567eab606146703f30b3f80cf5b7168cbbc49d8 authored over 1 year ago
Quote `expected-config-file-contents` input

a9f7529f4781cad09e7b091a3caf41bc69a2a992 authored over 1 year ago
Update .github/actions/check-codescanning-config/action.yml

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

5e88a178fe8322a6948f81b2d1a1c5b9ce12bb65 authored over 1 year ago
Use `$RUNNER_TEMP` for good measure

`runner.temp` is not user-controlled but we replace it with `$RUNNER_TEMP` in any case.

c0a8eb9a67638fadc0cd95fc3ffc7c6750160d13 authored over 1 year ago
Use env var for `EXPECTED_CONFIG_FILE_CONTENTS`

286fd68a67cf94b9f0f0f3e23535942cc5a8f57d authored over 1 year ago
Merge pull request #2780 from github/angelapwen/fix-inconsistent-action-input

Unify `token` description for `resolve-environment`, `start-proxy`, and `upload-sarif`

d3c7d03197962375439bf1e163f8aac323856214 authored over 1 year ago
Unify `token` description for `resolve-environment`, start-proxy`, and `upload-sarif`

03c921eac566e56409c312965f9401dd93b12ca5 authored over 1 year ago
Merge pull request #2779 from github/mergeback/v3.28.10-to-main-b56ba49b

Mergeback v3.28.10 refs/heads/releases/v3 into main

ff79de67cc25c7617163ae1e4b8aa23b902fdf15 authored over 1 year ago
Update checked-in dependencies

5d1a3cb0eee1b8ca69544fe19200d66038832d90 authored over 1 year ago
Update changelog and version after v3.28.10

292304636082807a7ad3d151001fcf6eb51e492f authored over 1 year ago
Merge pull request #2778 from github/update-v3.28.10-9856c48b1

Merge main into releases/v3

b56ba49b26e50535fa1e7f7db0f4f7b4bf65d80d authored over 1 year ago
Update changelog for v3.28.10

60c9c77c33f2cd66390a3778d54de88b735b2526 authored over 1 year ago
Merge pull request #2773 from github/redsun82/rust

Support rust analysis

9856c48b1a54789454314b4c32ef2354fe213208 authored over 1 year ago
Rust: fix log string

9572e09da430b4c71f7488e4195b4ca6ce1c6ef0 authored over 1 year ago
Rust: special case default setup

1a529366ac3620317d953e2d4018eafa7459cb1c authored over 1 year ago
Add CLI error for failure to create temp directory

d59d0eb99a10b8471e2bfa02142a27886b38de51 authored over 1 year ago
Check for running out of disk space

0ae74e1ae08d580d7e2921a6d50d38a427c2ba6f authored over 1 year ago
Merge pull request #2772 from github/update-bundle/codeql-bundle-v2.20.5

Update default bundle to 2.20.5

cf7e90952bcceaebd4a548c2809ea6a5d461a1bc authored over 1 year ago