github.com/github/codeql-action
Actions for running CodeQL analysis
https://github.com/github/codeql-action
Delete the runner, part 2
f8b607edaa10edbc4426bf7d03117dfc57af2ada authored over 3 years agod48707ce531d12ba794ae27570c3f613c3c80b14 authored over 3 years ago
07b9db6a46f36c52e77395174b10fcd27c1cc8e5 authored over 3 years ago
0dea34e91c2b1fa478635deea092ed89c2f9ea31 authored over 3 years ago
Delete the runner, part 1
f47c93c5fdff6043174fad6150f29576053c41fe authored over 3 years agoRead CODE_SCANNING_REF env variable
6a0f768e014317ab7a66f8b174f09f0436af65d9 authored over 3 years agoAdd Swift file baseline info to expected list
43f9bd3e4f721cb9a34eef516af2f1d7db37e530 authored over 3 years ago88b5c1e51f42492df2c29cec08c657d7c021d014 authored over 3 years ago
3ef8b8935334211d8930f5b5c8722504f62887f5 authored over 3 years ago
Update lockfiles to v3
35086e72ed02bf0db8ac34c692857c87d615ca43 authored over 3 years ago2bca6af0e5d3b9cfa70b484c23cd98c8ac3ace0e authored over 3 years ago
1e2f8f035dfa13a01e8e38c9c9dff4e06415c8a9 authored over 3 years ago
0990a34ac8995cfc9ff8ad237bbba67753359660 authored over 3 years ago
47ce15920770ae72be7636bb6ee815bb266f5dd2 authored over 3 years ago
Also update query ID prefixes for C# and Ruby
31c87302e77f947f9544c8c6c6f819342a1e0aaa authored over 3 years agoCo-authored-by: Henry Mercer <henry.mercer@me.com>
5883c1340695e6164d7a869a5b4b63af1e28d6d9 authored over 3 years ago375506c8968f838e978c52e9e4e347798f474203 authored over 3 years ago
9df773d1a3860f3781691e0cd011790d5e6f0b8a authored over 3 years ago
dac8912e9f7ca6196d278481c5bfd96c40376235 authored over 3 years ago
8ecbaea0224dc35d65b978766e97685e6b5ac26c authored over 3 years ago
3d46406f3b3245a6115d1390d6dba29c9e9ff619 authored over 3 years ago
We could move everything into `util`, but in some ways it is nice having
a file dedicated to Act...
Co-authored-by: Henry Mercer <henry.mercer@me.com>
0eacdb53ad9ff025862479e62479d72bc9b77bcd authored over 3 years ago8c8a9b1231ae84df013fe2a1e72d1be081e14d92 authored over 3 years ago
b498c791306f413226b4db8eb2b865e1c6a01bab authored over 3 years ago
51abddb49be787354e9c842e57a728d7fe789240 authored over 3 years ago
We don't need to test runner functionality now since the runner is only
used in PR checks, and `...
Testing SARIF compatibility is covered by `codeql.yml`.
adb125ae038beab82144ac0adc6d5f51949a2c9d authored over 3 years agoThese are covered by `autobuild-action.yml`.
219d9a0182bc1fa3d21144c219ed0f6e4953056a authored over 3 years agoThese are tested by `multi-language-autodetect.yml`
83ead4549cf920d3bf86bbc27dff6b103292bd1a authored over 3 years ago
These are covered by `codeql.yml`, which runs across all latest runner
images.
This is now covered by `codescanning-config-cli.yml`.
be84b68e4c22b5274b5de911fbb1b464825efc36 authored over 3 years agoMergeback v2.1.32 refs/heads/releases/v2 into main
af487b12e794149ded6b54481531389b81a91996 authored over 3 years agof3e11b9174dea39ef6af5be3170da8576984a104 authored over 3 years ago
ac90bc016d4949e758505dff00e85b622e826389 authored over 3 years ago
Merge main into releases/v2
4238421316c33d73aeea2801274dd286f157c2bb authored over 3 years ago97be6233c47474b2a1e97b63152033b56c3c787b authored over 3 years ago
It is 2.8.2, not 2.7.3.
0c3e493df0630363d9703f6f883858df384527f2 authored over 3 years agoe131232b86dc812de7df80c0a8157792827d43e4 authored over 3 years ago
1fd76310fd5c722749b760bcf770821ff4d979ab authored over 3 years ago
9e44100c47b7d0d67caab4758bee51fae8e66d75 authored over 3 years ago
acbc6ca6e5e96fc70ffa4b09c5f35f3a04b5a5c4 authored over 3 years ago
We now only need to support doing this in the CLI.
84e5134df99912ffffe2c4ffd68e5552fad20d97 authored over 3 years agoea990a3118ab1d896a4bdda052960fb9b2987fe7 authored over 3 years ago
b45e925fe2278a58f38ddc2504d252fe9602423d authored over 3 years ago
Bump default CodeQL version to 2.11.3
33b10be6bf0b751c776ae2799b0f044885a8fa8f authored over 3 years agonpm v9 is not compatible with Node 12, so we can't update to it yet.
718930badf638c8740119d849514fa7e9e51c5b0 authored over 3 years ago76a77405c1b8a47eba00a58065006257ac78b871 authored over 3 years ago
9452b6b86419d8a93dbcd8f170ba3b038c9925ae authored over 3 years ago
Force exit of process if a timeout has occurred
006bb00765df5ace47e70657a677e6ecd3b0d6a1 authored over 3 years agoe2338066a14cf5605ce75050e6af549a182e58c4 authored over 3 years ago
d6f6ef4b0b0c3e0782ede504230ba3aecbf41c2e authored over 3 years ago
Add ATM 0.4.0 to changelog
7c9e85e249d3e141c3efb486a47aa843f8186dde authored over 3 years agofb3fdd7e158f390d238c7b155f77a6e587a4ee46 authored over 3 years ago
use ATM pack v0.4.0 for CLI v2.11.3 and above
73ff862014865b27593070d3b63161a0012a39ec authored over 3 years ago01c4458f0cf52241ef3c4835ab97d4127a593fdd authored over 3 years ago
Improve experience when init fails before generating a config file
0e5b04a79aab04a1bbcd24d52df3a6f8b6679831 authored over 3 years ago
Suppose a customer has a run where the init Action failed before saving
a config file.
When the ...
Enable file baseline information behind a feature gate
c606252adad53932bdd28a9bb8bf7803961e9e01 authored over 3 years ago029ecc09e7c7cff8c40f62ed554abad8dc8eefe6 authored over 3 years ago
b9b7d9f2a68ae226f32c86a2a7ad193e403e8c6a authored over 3 years ago
dba70acdb3f6f42031d89cf7b0f122e3ebb6f776 authored over 3 years ago
Mergeback v2.1.31 refs/heads/releases/v2 into main
8aff97f12c99086bdb92ff62ae06dbbcdf07941b authored over 3 years ago31a2afec21fc30645f6a6616f206b5698f3ca6f6 authored over 3 years ago
6a5e69e74f0f319fbc72ac8ff3af6f13290502d5 authored over 3 years ago
Merge main into releases/v2
c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898 authored over 3 years agoAdd link to codeql PR.
8aa42f1f11ad8b239dd7a05e6f6508a9ba42be8c authored over 3 years agoAdd message about `rb/weak-cryptographic-algorithm`.
29a5553722da790f56e30f0d857768d6e7b6475c authored over 3 years agoe260194d76cec48910b90d3c1b499dbaf191e49f authored over 3 years ago
Prune results of Ruby query from SARIF
a8cabafa5665779b124056fa190a1f27335eb8a1 authored over 3 years ago862a512899ed05dad627155778453156a3cf3021 authored over 3 years ago
Mergeback v2.1.30 refs/heads/releases/v2 into main
71510779c25b2bd66d6434d3f94a74dac811e3fd authored over 3 years ago81a1ec0fb3d161dc303520cc434fae20bb1e9219 authored over 3 years ago
60c8cda20367e09bf70575e76d484c32ad48524f authored over 3 years ago
Merge main into releases/v2
18fe527fa8b29f134bb91f32f1a5dc5abb15ed7f authored over 3 years agof04ca7c11c4051f237fb8971c64e50454123ed1e authored over 3 years ago
Add a better error message for users of CodeQL CLI 2.7.2 and earlier running on `ubuntu-22.04`
cd983e71c6ee1f08d51fd961b3601f0556433f44 authored over 3 years agoAdd Go to list of supported languages
2ec046b5ac7c9bde00624be3ba78801a00c97041 authored over 3 years agoActions status report: Send testing_environment.
72bd9cbe6202944172589017f5da396f981101cf authored over 3 years ago77b1f7e44c6ae4372e566f804a34fc268754fafc authored over 3 years ago
Fix missing Docker image in proxy test
aa07b3894b7e91fe2dcc8617dbb342e13d89cfcc authored over 3 years agoc44e6c60960ec9a947b7846d537a4ed365c7747e authored over 3 years ago
Co-authored-by: Henry Mercer <henry.mercer@me.com>
ae0a2603c195533cfdd701197446c4a4bd3d8659 authored over 3 years agobfcbb093ac225504517cc609215cd9e8670fed61 authored over 3 years ago
6c6b550a41fa362520b1eb61fc4f0d980efd1e78 authored over 3 years ago
a3141c7a0721e65f2c5fbe6d01f74ba62d73d8d7 authored over 3 years ago
13cb2ca82443138c797cd7f949c1221467e16f7d authored over 3 years ago
Make PR checks compatible with the latest version of the `ubuntu-latest` runner image
7e2585030f85b50e78bdd4bc5a6532fac9b26255 authored over 3 years ago4b37e17ec1e2c4f6825f87f68cd9974eaeb4efdc authored over 3 years ago
Improves the error message for users running (a) CLI 2.7.2 and earlier
and (b) `ubuntu-22.04`, t...
993ca05cd7741fd4e48fe6b8a3b28f102174f4b6 authored over 3 years ago
a31200481fb3229ff8335ecaeecd4517b2b39235 authored over 3 years ago
4ed5abeff3d3c30cae8406ccbfcda10ddc3cd520 authored over 3 years ago
734292689d5d252b188806ec64f126a535f0b05f authored over 3 years ago
5767f918efd582ffb2645a3294ba6615257d381d authored over 3 years ago
Build tracing using CLIs before 2.7.3 no longer works with the most
recent update to the `ubuntu...
ac0112f7f1ff40d3f161547a2f2f1967f03633fd authored over 3 years ago
89e18934d3545ca9088e8b2ae405bb155a0f2bc4 authored over 3 years ago
5da50dc362fbf56c43adb510e53f12d88a4f99a3 authored over 3 years ago
Fix mergeback PR description
40542d38bc4936c2ca7da883aeb050a6081b4b31 authored over 3 years ago