A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Remove unusued proxy_password input

e2f043dee40f3315d9b340e054ad5f829b4d5870 authored over 1 year ago
Update changelog for v3.28.6

64ad47c7c184c89d0665bab67b8bd53e42425e85 authored over 1 year ago
Merge branch 'main' into marcogario/skip_proxy

8aa028b476b2537d4641478e526bc9fc74049a9b authored over 1 year ago
Merge pull request #2726 from github/aeisenberg/reenable-artifact-upload

Ensure artifacts are only uploaded in safe situations

b494190443a6ef5636b96529b698caabed0a8248 authored over 1 year ago
Clarify test fail;ure message

a8797048056402d6b6e8d3b3b5e67bb0ba32a6a1 authored over 1 year ago
Add better comments around artifact upload tests

62c322fad9e33d39a2f7517e621a0e07516f5b48 authored over 1 year ago
Merge pull request #2731 from github/dependabot/npm_and_yarn/npm-e1e9e6cd15

build(deps-dev): bump the npm group with 4 updates

c6b286132edd6f7f497542488a5a4d70768a2363 authored over 1 year ago
Update Python version to 3.13 in workflow

9ba5bca2ab328393b351a618339ad6f4b552e583 authored over 1 year ago
Merge pull request #2723 from github/marcogario/start-proxy_tests

start-proxy: Fix bug when language is not provided

297e89a0d9ede0e543f8d0e122332129f9a65d86 authored over 1 year ago
Update checked-in dependencies

357e0ceaa944420266db3ff50182959161a023f0 authored over 1 year ago
build(deps-dev): bump the npm group with 4 updates

Bumps the npm group with 4 updates: [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/pack...

7fdbca3ba31e8e7aca55e93c89d1b7674319e839 authored over 1 year ago
Use ConfigureationError for exceptions

7c2eafa990f431ab2f3a75ee915487b09c5ecb6e authored over 1 year ago
Switch auth for enterprises-release repo from ssh to codeql CI token

faa23b6fee4f4f4f0ff02751758e030a92c63359 authored over 1 year ago
Iterate over each version

Not sure why we need this now, but didn't before.

a2c1b36bdfef2e7eb85f862212e8571548e95b9b authored over 1 year ago
Fix CLI versions

346d06794f65b218b39de9d39333a7dbabda90f9 authored over 1 year ago
Stop using feature-flag support for determining if a feature is active

Using the feature flag mechanism for checking if uploads are enabled was
too clunky. I'm moving ...

f71067bd5fb707b07fe8ada494e369fad3865847 authored over 1 year ago
Update changelog

5ff24648ef84caaf9ad7e2109dcc2091db5f57c4 authored over 1 year ago
Ensure artifacts are only uploaded in safe situations

This commit:

Turns on uploading of artifacts again but only if CLI version is
>= 2.20.3. I impl...

2bab9f7984ff5911ee41618e8afc371e190c0026 authored over 1 year ago
Skip proxy if no credentials

7d7758bb244dc0f439c89aaf09ad59d12ea6ec34 authored over 1 year ago
Add actions analysis to code scannign

Create a new job to run actions since we don't need to
matrix the runs across multiple OSes.

de4457eac23d329ac6d1a2e0ae7ba00c7baea493 authored over 1 year ago
Formatting

f6d19ed42e810d6f0b26643bb590caf6aff04ea9 authored over 1 year ago
Sanitize inputs

ecf723239a1657b76e82334f127251db7db19113 authored over 1 year ago
Merge pull request #2722 from github/mergeback/v3.28.5-to-main-f6091c01

Mergeback v3.28.5 refs/heads/releases/v3 into main

e7c0c9d71b7bd108fd12e06b56fc58d3d154164d authored over 1 year ago
Merge branch 'main' into mergeback/v3.28.5-to-main-f6091c01

4b8aeabbe464f08ea76311e277b479fe61d804bb authored over 1 year ago
Update checked-in dependencies

336c69eec09e21477803471875d7756db0f6dc7a authored over 1 year ago
Update changelog and version after v3.28.5

da67fa0eb55709cdff9a52de07eef154d7dc3912 authored over 1 year ago
Merge pull request #2721 from github/update-v3.28.5-01f001931

Merge main into releases/v3

f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4 authored over 1 year ago
Fix bug in getCredentials + tests

51bb5eb99a7eb64056206a5edceb92d66140d5a7 authored over 1 year ago
Merge pull request #2720 from github/henrymercer/add-permissions

Restrict workflow permissions

c22d1f36abe39bc1183e9a36da14a79d10121a0a authored over 1 year ago
Update changelog for v3.28.5

064af10f0de41995b41632364b4bfb00a34df047 authored over 1 year ago
Merge pull request #2717 from github/update-bundle/codeql-bundle-v2.20.3

Update default bundle to 2.20.3

01f0019310ce544d1cf748667a69f8fd6e26e48a authored over 1 year ago
Merge branch 'main' into henrymercer/add-permissions

3b34c672ca833a26ac274f7df3485ef500203ce3 authored over 1 year ago
Give only read-level `security-events` permission where possible

9cd802ec12506cc7c89d5045a7248cce97239cbf authored over 1 year ago
Add missing permissions

d39065943fe3b4bd39214b573d58ab0d32e77aea authored over 1 year ago
Merge pull request #2718 from github/kaeluka/4779-1

Update workflow permissions

573ad887cd5b527e9baef02653bd455e1ff5181c authored over 1 year ago
permissions block in query-filters.yml

d7f39764f685cbe3764f763469a0d72383d7b9c8 authored over 1 year ago
Add changelog note

428975ce2cf327a0e919004c63e734eddd0e6255 authored over 1 year ago
Update default bundle to codeql-bundle-v2.20.3

208091da0a1069394981cdf5e7a91a8ee3f10709 authored over 1 year ago
Merge pull request #2716 from github/mergeback/v3.28.4-to-main-ee117c90

Mergeback v3.28.4 refs/heads/releases/v3 into main

7e3036b9cd87fc26dd06747b7aa4b96c27aaef3a authored over 1 year ago
Update checked-in dependencies

e32a0d62d44ac06377953bfaf3ffd43618be076a authored over 1 year ago
Update changelog and version after v3.28.4

67c21e4084d5e020fbc969b839d42911b87fb8b5 authored over 1 year ago
Merge pull request #2715 from github/update-v3.28.4-b44b19fe8

Merge main into releases/v3

ee117c905ab18f32fa0f66c2fe40ecc8013f3e04 authored over 1 year ago
Update changelog for v3.28.4

377913f015d5741a10a836eef6fc284ce639949b authored over 1 year ago
Merge pull request #2714 from github/mergeback/v3.28.3-to-main-dd196fa9

Mergeback v3.28.3 refs/heads/releases/v3 into main

b44b19fe8d2128e72e5616696401b61c348967f8 authored over 1 year ago
Update checked-in dependencies

d7366a1e50562ba5e16471523d99fba662c1b32e authored over 1 year ago
Update changelog and version after v3.28.3

4872b26ff9ee55f3cfcfa885bc30030a145f2c99 authored over 1 year ago
Merge pull request #2713 from github/update-v3.28.3-23ec3afaf

Merge main into releases/v3

dd196fa9ce80b6bacc74ca1c32bd5b0ba22efca7 authored over 1 year ago
Update changelog for v3.28.3

23d07bb885e454e57d2e1bed7e3546e4c60df5a4 authored over 1 year ago
Merge pull request #2712 from github/angelapwen/stop-debug-artifacts

Temporarily disable uploading debug artifacts

23ec3afaf84a1ffee780529c24e5a930ff03cfad authored over 1 year ago
Temporarily disable uploading debug artifacts

519de26711ecad48bde264c51e414658a82ef3fa authored over 1 year ago
Merge pull request #2710 from github/henrymercer/fix-extension-assumption

Fix assumption that download URLs contain file extension

7e4b683a3d062a0853420133e3b340e23c59a1e8 authored over 1 year ago
Merge branch 'main' into henrymercer/fix-extension-assumption

3505f8142a5e077942a80402a1571f1b56cd2450 authored over 1 year ago
Merge pull request #2707 from github/update-bundle/codeql-bundle-v2.20.2

Update default bundle to 2.20.2

1645dbd3bf8d54c5aa85780703097974a55a3141 authored over 1 year ago
Merge branch 'main' into update-bundle/codeql-bundle-v2.20.2

4b7c237f3db4f15750973f87a39d8f0389be6ec2 authored over 1 year ago
Merge pull request #2711 from github/dependabot/npm_and_yarn/npm_and_yarn-2c579f9325

build(deps): bump undici from 5.28.4 to 5.28.5 in the npm_and_yarn group

924ef8f18945645c410b56f31ffedd49ca922bba authored over 1 year ago
Update checked-in dependencies

140c5ea762e1a2be830ca8428d936fb48671ba00 authored over 1 year ago
build(deps): bump undici from 5.28.4 to 5.28.5 in the npm_and_yarn group

Bumps the npm_and_yarn group with 1 update: [undici](https://github.com/nodejs/undici).

Update...

c34eb63970af33aa2fc41530a94c726b55a70813 authored over 1 year ago
Tweak wording of changelog entry

07d32980ceb7ff28ce90e270801d1ab80fe4627d authored over 1 year ago
Add changelog note

20bbc8f5b58579c2e9e25c639f6a291b8b9612d4 authored over 1 year ago
Fix assumption that download URLs contain file extension

This is not the case when downloading the bundle from a GitHub Release synced to GHES with the C...

d23f49f56f7c61b07992494d3ae02f48e3586e48 authored over 1 year ago
Merge pull request #2709 from github/mergeback/v3.28.2-to-main-d68b2d4e

Mergeback v3.28.2 refs/heads/releases/v3 into main

f89b8a7d5239ba6d1a0f243ead94ea9ca5775ae1 authored over 1 year ago
Update checked-in dependencies

86400836d1b23ff713e657887c113b0b8220d731 authored over 1 year ago
Update changelog and version after v3.28.2

6fee807c9b3feba6fbe618b53a8d442ae6877001 authored over 1 year ago
Merge pull request #2708 from github/update-v3.28.2-d90e07f32

Merge main into releases/v3

d68b2d4edb4189fd2a5366ac14e72027bd4b37dd authored over 1 year ago
Update changelog for v3.28.2

ea237964450673c10ad7b678a6aab37176b787a3 authored over 1 year ago
Add changelog note

a0c2b7d2962efa67ce742fd48c4f3178950b2c25 authored over 1 year ago
Update default bundle to codeql-bundle-v2.20.2

aa765235031b111ef58d6264149799037ea1d18d authored over 1 year ago
Merge pull request #2703 from github/dependabot/npm_and_yarn/npm-cd3f77644b

build(deps): bump the npm group with 3 updates

d90e07f32eb48924444e8069d5f1fbaaad678989 authored over 1 year ago
Update checked-in dependencies

7b7562b1766199469ed7f907ce332bdd498e8a28 authored over 1 year ago
build(deps): bump the npm group with 3 updates

Bumps the npm group with 3 updates: [@actions/tool-cache](https://github.com/actions/toolkit/tre...

c16863838b8cb3c55d7f56d546070ebaa43615e5 authored over 1 year ago
Update to rc2

0d043c929c01256853e021bbc78737d7ad36cd86 authored over 1 year ago
Merge pull request #2699 from github/cklin/diff-informed-file-fallback

getDiffRanges: better fallback for absent patch

0f1559aeaf806072ddd427d1b11e1c956e4851a0 authored over 1 year ago
Merge branch 'main' into cklin/diff-informed-file-fallback

2d608a3097df825010b85ce95b428eacc500fbf0 authored over 1 year ago
Merge pull request #2698 from github/cklin/diff-informed-status-report

Add analysis_is_diff_informed to status report

94f08f339edaf905c30a3c0cb4d3dc88f8f1028c authored over 1 year ago
getDiffRanges: better fallback for absent patch

071996fbe2aafc9c8cce73ed09679656c8ba6cb7 authored over 1 year ago
Add analysis_is_diff_informed to status report

5889cfd4994efea544ff3bc9f368822ecb589693 authored over 1 year ago
Merge pull request #2696 from github/henrymercer/delete-code

Remove redundant version checks

7ae5fc37a2d86720045717aa7fa9ea16514bde6f authored over 1 year ago
Remove redundant version checks

Remove version checks that always return true given the new minimum version of CodeQL.

40a203a0ea8379c51e156083242bc2c8d62ef834 authored over 1 year ago
PR checks: Remove code for unsupported versions

bd76a92ebec472fb11c72904310da276b5d8649e authored over 1 year ago
Merge pull request #2690 from github/dependabot/npm_and_yarn/npm-006da05bd8

build(deps): bump the npm group with 8 updates

93da9f25abe6f581e48ccd6baad84025ff6a738b authored over 1 year ago
Merge branch 'main' into dependabot/npm_and_yarn/npm-006da05bd8

4de061d85d04d969c770fad4e68c977166b23df4 authored over 1 year ago
Merge pull request #2695 from github/henrymercer/remove-node-16-check

Remove Node 16 compilation PR check

b40fa61fd61c6c4b55ea13adc946d2254b6a1136 authored over 1 year ago
Add reminder to CONTRIBUTING.md

fc8d71f8015ca899ee3a7037f9477875b8402e7e authored over 1 year ago
Remove Node 16 compilation PR check

048b0a2fc9f9b9e364cbd4d86c2d907280a98095 authored over 1 year ago
Fix linting errors

02dfacf1c15fe7bfff8802f228ae11eadf786379 authored over 1 year ago
Merge pull request #2680 from github/marcogario/filter_registries

Filter registry credentials by language

3b4f4d94c0591488e786754af4206d57afb25431 authored over 1 year ago
Merge pull request #2679 from github/cklin/get-diff-from-api

getPullRequestEditedDiffRanges: use GitHub API

1efc6bb9cee638a55957d2a72be3a65436af0e57 authored over 1 year ago
Use Language type

31d11b19a035018673058326efbaa22fe3b8dc40 authored over 1 year ago
build: refresh js files

ae19466961685ea8358129043b2dc0af0597269b authored over 1 year ago
getPullRequestEditedDiffRanges: compute diff ranges

68b1b4e9ebefe8c5b2993e1fd0eb10e10fc7821c authored over 1 year ago
getDiffRanges: add unit tests

784896750fa652cd83a12662bba3924b2e649e60 authored over 1 year ago
Merge pull request #2689 from josiahaltschuler/add-period-to-sentence

Add period to end of sentence

10a3f072a02acccf25a5b381a29fbac3a805893d authored over 1 year ago
Update checked-in dependencies

e5a7c904c1b1c0f3cef1a8fa6f0b7b51ad17c6da authored over 1 year ago
build(deps): bump the npm group with 8 updates

Bumps the npm group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [@octokit/typ...

7269bf610b57cdfcf8b1c532fe8033568e9e720a authored over 1 year ago
Merge branch 'main' into add-period-to-sentence

a082142a01c543f9cfe72e8146175788e21c362b authored over 1 year ago
Merge pull request #2687 from josiahaltschuler/typo-change-an-to-a

Change 'an' to 'a'

2584941842561ce47855f34475ab04ea4cafc1fc authored over 1 year ago
Merge branch 'main' into typo-change-an-to-a

cecb471d0a989228c27ed8bc3d8bb67e4597251e authored over 1 year ago
Support both namings for java

de0f9cf31621946365aa32e7df93af74cf73dfbd authored over 1 year ago
getPullRequestEditedDiffRanges: check the number of changed files

63d1f4f8a22a2a3f57e2bcdc94e4b61a02884c27 authored over 1 year ago
getPullRequestEditedDiffRanges: use GitHub API

68378a359ac317d632ec5fb17a2a5f39f7f33da6 authored over 1 year ago