A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

python-setup: Disable python2 tests on ubuntu-22.04

b2fc1e178e0d4698fbfe13a3dacbd46e1f0dbe23 authored almost 4 years ago
python-setup: Fail early if installing for Python 2, and `python2` not available

1fa5d728463866f63a4442b14b8b4ea5dfd1e0cc authored almost 4 years ago
Merge pull request #1258 from github/rasmuswl/poetry-v1.2

python-setup: Add support for Poetry 1.2

417059fdb2c703ed2e021b25145fb9bacb884968 authored almost 4 years ago
python-setup: flush at the end of `_check_call`

ca8a78d5f36e47a16a62363aed1e67b067c0cc0a authored almost 4 years ago
python-setup: change `env` passing

22643072146458fa9db7e66439f15de42c40293d authored almost 4 years ago
python-setup: run tests on Ubuntu 22.04

3f97671248b6456a0573d7033f812d6521f4ba52 authored almost 4 years ago
Merge pull request #1256 from github/rasmuswl/newer-virtualenv

python-setup: Allow newest `virtualenv`

c2c7bba5f7399b7375cba4a0cbbe0ba14a4bb5f0 authored almost 4 years ago
Update CHANGELOG.md

Co-authored-by: Henry Mercer <henrymercer@github.com>

1309aafb7d240acd5da19a95eaf731dbc3ade184 authored almost 4 years ago
Merge pull request #1254 from github/henrymercer/improve-release-pr-description

Improve the descriptions of PRs created by the release process

038242a7f09afe724e84b5b04dca8b9f238f5a6b authored almost 4 years ago
python-setup: Add support for Poetry 1.2

70509c388492a8d6facc01a9b4b815455a8ffdc2 authored almost 4 years ago
python-setup: Fix venv creation in Ubuntu 22.04

Fixes https://github.com/github/codeql-action/issues/1249

e1ce6e3115eb3941ade27ef009d1245e4b0b74f1 authored almost 4 years ago
python-setup: Allow newest `virtualenv`

Context for previous version is
https://github.com/github/codeql-action/pull/862

Locally, I was...

5ffcfe95cc5ed5bae75ebdc037fff41b5b216e3c authored almost 4 years ago
Merge pull request #1252 from github/mergeback/v2.1.24-to-main-904260d7

Mergeback v2.1.24 refs/heads/releases/v2 into main

aaca8193b16d8aa07c108ae27096823139a1997a authored almost 4 years ago
Add advice to the mergeback PR on how to run the checks quicker

2e9fbe39e160d31dda7de132912bfb7efbef2a63 authored almost 4 years ago
Update checked-in dependencies

e0ef82e596a4b449d841264a2eeebb044ce8f602 authored almost 4 years ago
Add advice to the backport PR on how to run the checks quicker

fb28913d5cf3c17277f02fc9dc585efb51843d76 authored almost 4 years ago
Update changelog and version after v2.1.24

9f79e5fbcf09120430a4028c39f739394d2e28ba authored almost 4 years ago
Merge pull request #1250 from github/update-v2.1.24-34aa5a55

Merge main into releases/v2

904260d7d935dff982205cbdb42025ce30b7a34f authored almost 4 years ago
Merge pull request #1251 from github/edoardo/trap-caching-changenote

Add CHANGELOG note for TRAP caching

b15cc0075a4c2264a012c648ea444c94eaaf790b authored almost 4 years ago
Add CHANGELOG note for TRAP caching

82495d8d86bbc6303d968ce12cfca8df2e397d03 authored almost 4 years ago
Update changelog for v2.1.24

21c716dd69ad10ce1b62c4be6ff2833875d62e36 authored almost 4 years ago
Merge pull request #1242 from github/henrymercer/go-more-backwards-compat

Go extraction reconciliation: Ensure backwards compatibility for multi-language builds

34aa5a554b0823e362370e66cd80ed0875e304c1 authored almost 4 years ago
Merge pull request #1239 from github/dependabot/npm_and_yarn/uuid-9.0.0

Bump uuid from 8.3.2 to 9.0.0

92073401225d06c08aec8b1041cfb84d1df90f3f authored almost 4 years ago
Merge pull request #1247 from github/mergeback/v2.1.23-to-main-6a38b7d4

Mergeback v2.1.23 refs/heads/releases/v2 into main

fefa6f57a477ebd72b096d740492ba62fed9333b authored almost 4 years ago
Remove now-duplicated PR titles from release PR descriptions

4f104676ac8ab7ec3b2c5ed95a9ca910fe82e4df authored almost 4 years ago
Update checked-in dependencies

e6ad3e0b352cedec5f304d1989bd556b036faf68 authored almost 4 years ago
Update changelog and version after v2.1.23

f84e389feb1161e6a2f50de031649d4ef99081ea authored almost 4 years ago
Merge pull request #1246 from github/update-v2.1.23-fd4dc5bf

Merge main into releases/v2

6a38b7d4a1af70deb1b561eb77db2b5e5a6a1e69 authored almost 4 years ago
Update changelog for v2.1.23

99d0a6bc15af7dc18519fd1d23d10faf147a2035 authored almost 4 years ago
Improve warning when using autobuild with multi-language builds

f32e161cdde878ec97053e30fa7d4b0d5cdeca98 authored almost 4 years ago
Improve variable name

4cc95769d426b0812b7bd0d42aa5f4f67dbe0b6f authored almost 4 years ago
Merge pull request #1244 from github/criemen/remove-lua-tracer-ff

Remove the lua tracer feature flag check from the codeql-action.

fd4dc5bf31bec2a626bf9a89113359953a1fba43 authored almost 4 years ago
Fix runner integration test.

This test is broken, as it first sets environment variables, and then
immediately unsets it agai...

c2560331fc32397f9809fe459efeb746df4fa634 authored almost 4 years ago
Merge pull request #1240 from github/henrymercer/2.10.5-bump

Bump CodeQL version to 2.10.5

0a38743d1ad8044679a7aefa9848ccadb9c9d0f5 authored almost 4 years ago
Remove the lua tracer feature flag check from the codeql-action.

Always defer to the CLI on the Lua tracer state from now on.

3038e979a8623e0c49cd591f18cdc1222a2b675c authored almost 4 years ago
Comment why we don't run multiple autobuilders for other languages

bde5694fb7e2193a603da79b8a7663b5029384bc authored almost 4 years ago
Ensure backwards compat for multi-language builds with Go reconciliation

40e0374c6ff49c0db274f85701672747de3fa15e authored almost 4 years ago
Support autobuilding multiple languages in autobuild Action

0d2fa3c636fc28286f8c5d0b8ae0a27ed3ad745a authored almost 4 years ago
Add changelog note

ff575f231de8f28db583c5ba58ec711b443d4f37 authored almost 4 years ago
Bump CodeQL version to 2.10.5

4a8d26e2bd2c438d0b55dffe074621b5e67c3757 authored almost 4 years ago
Update checked-in dependencies

f87e7a6293ebe4bd1bf40400dd763ed2b1ff9f99 authored almost 4 years ago
Merge pull request #1221 from github/aeisenberg/ghes-pack-download

Add support for downloading packs from GHES

9ba4d500aa0261992135290a8c8eff47a4bb2ecb authored almost 4 years ago
Bump uuid from 8.3.2 to 9.0.0

Bumps [uuid](https://github.com/uuidjs/uuid) from 8.3.2 to 9.0.0.
- [Release notes](https://gith...

ace5545513139756afbed64014f448583d51dc50 authored almost 4 years ago
Merge pull request #1238 from github/daverlo/workflow-event-name

Add workflowEventName util function

21ae865bef525a77a6e6ef4a5a8c598361e38f46 authored almost 4 years ago
Append `/` to end of registries url

Avoids a bug in 2.10.4. Also, add some better handling for invalid
registries blocks.

6085805a3adc1dadfce265403aa9ffc828d568a8 authored almost 4 years ago
Fix unit tests

59744464eb119b23f70bd793d406b812dae89d93 authored almost 4 years ago
Only run the init-with-registries check on nightly

aa434aaed678983b46684e635b058969627b1206 authored almost 4 years ago
Update changelog and input descriptions

5dcb9dec2d5e73d2ee53bcad6ecac6bc21c5b0a1 authored almost 4 years ago
Gate the new `registries` input behind version constraints

4fa3e8b483167284ded797995287aaad85da59a5 authored almost 4 years ago
Fix linting

063e08370511983e28cb123de3079db341eae7f6 authored almost 4 years ago
Build js

a03f3bd5852a3b301f275b4749302448161a7ace authored almost 4 years ago
Add test for workflowEventName

335aa5e39f687ae17f744214c53458f241b92732 authored almost 4 years ago
Add workflowEventName

add14375d53127f62ba7bf8f24a24627a236f05d authored almost 4 years ago
Clarify description of `registries` input

376fea671d2b49d41ed127f669df17a093c04486 authored almost 4 years ago
Apply suggestions from code review

bf97a6da5b294d8318869f0268956978fc78680d authored almost 4 years ago
Merge remote-tracking branch 'upstream/main' into aeisenberg/ghes-pack-download

7e086b240ca1c68215ea17feca98e8df7bf24e74 authored almost 4 years ago
Merge pull request #1234 from github/edoardo/more-tolerant

TRAP Caching: Be tolerant to not finding the extractor

8cdb7d8545a465142be419181140b14d07a60548 authored almost 4 years ago
TRAP Caching: Be tolerant to not finding the extractor

299b77421b240847168a2142d3c5309964e9fc6e authored almost 4 years ago
Convert from json to yaml for registries input

abdf26c28fcd8637cd571970bc76d87f48a4450b authored almost 4 years ago
Merge pull request #1228 from github/henrymercer/start-go-tracing-in-init

Make Go a traced language when Go extraction reconciliation is enabled

03e34531021824753d768a850f18086934273226 authored almost 4 years ago
Merge remote-tracking branch 'origin/main' into henrymercer/start-go-tracing-in-init

ab4197c609a059fc8bf6f12091cad7b951d8d7d4 authored almost 4 years ago
Reuse `getApiDetails` code

fc2f344141c05d18f3318a7fb134ff83a7571a4d authored almost 4 years ago
Merge pull request #1231 from github/henrymercer/fix-running-tests-on-node18.8

Fix running tests on Node 18.8

85ba42aa690893d2e183380ba12ee264d638019d authored almost 4 years ago
Merge branch 'main' into aeisenberg/ghes-pack-download

b0443622cdd831f6684d89f4c5da53e384917a43 authored almost 4 years ago
Update ava to 4.3.3

The [release notes](https://github.com/avajs/ava/releases/tag/v4.3.3)
mention compatibility with...

bea5e4b220825f4f086f1e6a2b8e2c8fe1175a80 authored almost 4 years ago
Address review comments

4b5dea8eed44456f3e57d76ac8e0a770c75be493 authored almost 4 years ago
Merge remote-tracking branch 'origin/main' into henrymercer/start-go-tracing-in-init

62b4f237aa81ca20fde33b3f432f1b651b91167c authored almost 4 years ago
Merge pull request #1219 from github/angelapwen/autobuild-in-analyze

Autobuild Go in `analyze` if not already built

21530f507f59f30a57afd89722ee1f5dc7829df9 authored almost 4 years ago
Change to using a single input

e9b47b18984822de5953cc848089d3b8de2cc67e authored almost 4 years ago
Merge pull request #1229 from github/henrymercer/reenable-lua-tracing-go-windows

Run Lua tracing for Go on Windows in CLI 2.10.4+

70426bb879a3be8361f4db41697ea9fb4e2d57fd authored almost 4 years ago
Run Lua tracing for Go on Windows in CLI 2.10.4+

A bug preventing us from using Lua tracing for Go on Windows is fixed
in CLI 2.10.4+, so we
can ...

ab396da8256c046f86f5da4bdedfa8142a9d59e6 authored almost 4 years ago
Work around `test -v` not being available in Mac Bash

6699d474202edea11a00d00a5afddd09ffff1eab authored almost 4 years ago
Add PR checks for reconciled tracing with autobuilder and build steps

1d311fe8e5fe591e3f18f04893703f7fa5213674 authored almost 4 years ago
Update legacy workflow PR check

We now trace in init when using reconciled tracing, so we no longer need
to set the `CODEQL_EXTR...

e303e2c65bbd029d533a0248e8e5c3185d0951a2 authored almost 4 years ago
Tidy up `createdDBForScannedLanguages`

Now the test is fixed, we can simplify by introducing an async call.

e460fa2e94d5d1b4d21364a6301d9d6b070fc789 authored almost 4 years ago
Make `createdDBForScannedLanguages` test robust to new async calls

Previously the test depended on `createdDBForScannedLanguages` making no
async calls prior to `c...

6d34731d9317c9907787206c7bc488ed4f786616 authored almost 4 years ago
Trace Go when Go extraction reconciliation is enabled

cf5d4659803cd9e3e70e07541dcda36ef4a2c31c authored almost 4 years ago
Merge pull request #1227 from github/mergeback/v2.1.22-to-main-b398f525

Mergeback v2.1.22 refs/heads/releases/v2 into main

d05538fa74651bc75cafad6bfe20220f0ee8cc7e authored almost 4 years ago
Improve clarity of logging

fe1bd9ac7697bb96e10b6de7978ffe2d845eb14d authored almost 4 years ago
Update checked-in dependencies

62fab9194716375ec536510e5a2f4b8f671a13b6 authored almost 4 years ago
Update changelog and version after v2.1.22

a3607ca1f70bb4839a37511269a228c8251f78db authored almost 4 years ago
Merge pull request #1225 from github/update-v2.1.22-a5966ad4

Merge main into releases/v2

b398f525a5587552e573b247ac661067fafa920b authored almost 4 years ago
Update changelog for v2.1.22

b0f41e06da2a52ab1deee99b7a672ddeff78dd59 authored almost 4 years ago
Merge pull request #1224 from github/edoardo/2.10.4-bump

Bump CodeQL version to 2.10.4

a5966ad4f1cd268d2fed5064124cfd15ddf50d47 authored almost 4 years ago
Check TRAP directory exists first

8e0846caf013143a402906f6c2e86e6e8600f11b authored almost 4 years ago
Pin `poetry` to 1.1

8c692b37a0046ac517887cfa674f65483a82ae92 authored almost 4 years ago
Fix language inclusion test

`in` checks the indices of an array, not the values.

955290300ad30a7da8e9ac886917a4323b3a336e authored almost 4 years ago
Add logging for determining whether to run the Go autobuilder

14d70398281dad6d2dc5f4cc709a3a31efd2ad37 authored almost 4 years ago
Fix TRAP directory location

b42a495e8a001c2a8a134241d2da825aa3b3fded authored almost 4 years ago
Add PR check for reconciled tracing with legacy workflow

5b4b44c9d65b0296be28f54af335df39ae65968b authored almost 4 years ago
Simplify `doesGoExtractionOutputExist` implementation

Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>

e466e758751bb2b26e0dee9b3432dc3ea9b478f0 authored almost 4 years ago
Add environment variable for enabling Go extraction reconcilation

This will enable us to test this behavior in PR checks.
Also simplify and add some more detailed...

fff56ee004ad74cb727c16caaed9018ff0332b07 authored almost 4 years ago
Merge pull request #1218 from github/aeisenberg/move-pack-download-to-init

Move calls to pack download to the init action

d92a91c5c43a8bb161b5c8229ab417fcb507e134 authored almost 4 years ago
Use a more explicit name for checking Go extraction output

8dc468564f95a5c5ae34fd0a433c7bb87e1bc9e8 authored almost 4 years ago
Fix call to `endGroup`

Also, rename variable and change a comment.

7294b404d8939164d5e259531b5f70e26a723403 authored almost 4 years ago
Add integration test for using `registries-auth-tokens`

1d921181460d47d39fce41644c3c36627700f1b6 authored almost 4 years ago
Update changelog

c7bb8946b20b516d73e069f426259d10807f9f7f authored almost 4 years ago
Add support for downloading packs from GHES

This change adds:

- new `registries` block allowed in code scanning config file
- new `registri...

0e98efa2bb0a1c548df1bc9eb62f4fe02133450e authored almost 4 years ago
Add Changelog entry

354bc9f629a2b0007acbc61a4251ae09a94695c6 authored almost 4 years ago
Autobuild Go in analyze step

215c3cb4bb29c38d204d42367fef2c0972ce9eba authored almost 4 years ago