A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Moves calls to pack download to the init action

This ensures all steps to gather queries happens in the init action.
This is where checking out ...

0a2b0d236c136774a7375e527a068763f1f65a9c authored almost 4 years ago
Bump CodeQL version to 2.10.4

693b97bf507a30ff69fe4d0e9d5e67ac288b3585 authored almost 4 years ago
Merge pull request #1215 from github/dependabot/npm_and_yarn/octokit/types-7.1.1

Bump @octokit/types from 6.21.1 to 7.1.1

a59fbe22086cdbbb45d9e16c202e29c781bf2d5e authored almost 4 years ago
Update checked-in dependencies

abafa5bdc155c339ff71a99bd620486b016c7bc8 authored almost 4 years ago
Bump @octokit/types from 6.21.1 to 7.1.1

Bumps [@octokit/types](https://github.com/octokit/types.ts) from 6.21.1 to 7.1.1.
- [Release not...

34de8fdd99a13c71a48506cafc0204840d72273d authored almost 4 years ago
Merge pull request #1213 from github/mergeback/v2.1.21-to-main-c7f292ea

Mergeback v2.1.21 refs/heads/releases/v2 into main

9128f1cb71381e8e14c6575606ced6c52946ee22 authored almost 4 years ago
Update checked-in dependencies

54d57993dad74ca479fd04ea939407a95ee274e6 authored almost 4 years ago
Update changelog and version after v2.1.21

0ee5049d9228496e0b1b36752f63b0a12e580bbf authored almost 4 years ago
Merge pull request #1212 from github/update-v2.1.21-21bf3087

Merge main into releases/v2

c7f292ea4f542c473194b33813ccd4c207a6c725 authored almost 4 years ago
Update changelog for v2.1.21

00ef1ee757c9f992a3a921a02844936ebc020aaa authored almost 4 years ago
Merge pull request #1211 from github/get-default-branch-correctly-schedule

When running on a schedule, make a better guess about whether we're analyzing the default branch.

21bf3087a52ab2e39b8af8e483ffcc8c551784f0 authored almost 4 years ago
When running on a schedule, make a better guess about whether we're analyzing the default branch.

5960bffd3f2c598375db6e39a272ed2fd53f56d1 authored almost 4 years ago
Merge pull request #1210 from github/edoardo/record-db-creation-time

Telemetry: Record DB creation time

92c650bfbd067a45bb475e062fe638ea25a14436 authored almost 4 years ago
Merge pull request #1209 from github/henrymercer/fix-go-tracing-tests

Fix Go tracing on Windows, and fix tests

e7d4da3fa28ce622cb1c3fc3f53e9c3c23f5f9e7 authored almost 4 years ago
Telemetry: Record DB creation time

8b45ef384583a3147a413ab8bba906544fb96d4c authored almost 4 years ago
Remove unguarded Actions library query

It is enough to pass the checks now that we only use the runner for PR
checks.

182342cdd7fc5578803ce8c6c1650b273ac37850 authored almost 4 years ago
Override `CODEQL_EXTRACTOR_GO_BUILD_TRACING` with `on` when it's `true`

e1954316773fab4ef6656d3fa0427cdc7441409f authored almost 4 years ago
Prevent hangs in Go autobuild tests due to .NET keychain prompts

3069613ebd27d7036381c2570c3403e1fbbd29b5 authored almost 4 years ago
Add changelog note

569f78c82dccbb6a00a871f5fbe0f6da56cac056 authored almost 4 years ago
Merge pull request #1208 from github/aeisenberg/better-error-message

More readable error message for invalid `queries` block and invalid `query-filters` blocl

1cd5043ced22c9c2ff4e486510fb8bd2b5d57268 authored almost 4 years ago
Disable Lua tracing for Go on Windows

This is currently broken in CLI versions 2.10.3 and earlier.

ab6508ab879db521d40817b1ff1a0884bb45e5d2 authored almost 4 years ago
Warn about invalid value for `CODEQL_EXTRACTOR_GO_BUILD_TRACING`

c18ed5697707172fce3f0b07fabff6b0941b160f authored almost 4 years ago
Update CHANGELOG.md

Co-authored-by: Henry Mercer <henrymercer@github.com>

e379edd1ee56b7889c2a58f159a43d1ec101b13d authored almost 4 years ago
Fix Go custom tracing tests

These were supplying CODEQL_EXTRACTOR_GO_BUILD_TRACING=true rather than
CODEQL_EXTRACTOR_GO_BUIL...

d5ad81bcd497cf076617ea812d968560867fe732 authored almost 4 years ago
Update changelog

9af066e7d5304788aa1aa046b46cad0a341857f9 authored almost 4 years ago
Merge remote-tracking branch 'upstream/main' into aeisenberg/better-error-message

ac92a02de713d4586100b054e82f68b4c3e2a88e authored almost 4 years ago
Better error messages for invalid queries and query filters blocks

Handle other cases where the config is invalid.

5861352d57103a4aa24c9b1ec54643c9b4ea406d authored almost 4 years ago
Merge pull request #1207 from github/edoardo/fix-warning

TRAP Caching: Unset missing cache rather than setting to `undefined`

3e49948054d0e8bc1f85a7dc58fe77f7c7502df8 authored almost 4 years ago
TRAP Caching: Unset missing cache rather than setting to `undefined`

1e5376ae5f44a659fa69c72f7833b3e51be02add authored almost 4 years ago
Merge pull request #1200 from github/mergeback/v2.1.20-to-main-7fee4ca0

Mergeback v2.1.20 refs/heads/releases/v2 into main

c2c0a2908e95769d01b907f9930050ecb5cf050d authored almost 4 years ago
Merge pull request #1201 from github/henrymercer/mergeback-v1-fixes

Mergeback fixes from v1 release

ec8883580f53ec73913d318a97bb21c864443af7 authored almost 4 years ago
Remove `@types/long`

This is no longer needed since `long` now includes its own types.

bae51503cfab01d8c3bb93d99391f4f7d64b6ef6 authored almost 4 years ago
Update checked-in dependencies

e590686972bd74bb428754bff985b5077477cfe3 authored almost 4 years ago
Update changelog and version after v2.1.20

d7319f2ff47254bebe28d55644bacc58b4a4b431 authored almost 4 years ago
Merge pull request #1199 from github/update-v2.1.20-f0a1a35a

Merge main into releases/v2

7fee4ca032ac341c12486c4c06822c5221c76533 authored almost 4 years ago
Update changelog for v2.1.20

5259c5e5d845af4ced3d846415b3085aff2cce26 authored almost 4 years ago
Merge pull request #1197 from github/henrymercer/fix-release-when-package-conflicts

Make "Update release branch" workflow fail if `npm version` fails

f0a1a35a9fa60e0b81ec6dc073076bf986949b31 authored almost 4 years ago
Tweak whitespace in checklist for consistency

Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>

a07454207a05ad34b2ef2b7750b99e0023782f6e authored almost 4 years ago
Merge pull request #1193 from github/dependabot/npm_and_yarn/actions/core-1.9.1

Bump @actions/core from 1.4.0 to 1.9.1

53a7a271667e0dffc902d64de52c4dd64e6aff1d authored almost 4 years ago
Apply suggestions from code review

Co-authored-by: Edoardo Pirovano <6748066+edoardopirovano@users.noreply.github.com>

2927215a2b6cf087c63916a1739a3678934fb92e authored almost 4 years ago
Make "Update release branch" workflow fail if `npm version` fails

c145823103aa6a03930ab8cff12c92d2fd151a13 authored almost 4 years ago
Merge pull request #1194 from github/mergeback/v2.1.19-to-main-f5d217be

Mergeback v2.1.19 refs/heads/releases/v2 into main

66bb63a2028a7c127b3470d2a659de8387259420 authored almost 4 years ago
Update checked-in dependencies

0ce8ba5772659e0f3c576d1be8b08bd3c76e8ac2 authored almost 4 years ago
Explicitly import `performance` for Node 12 compatibility

c72f566aae48fd2cff4fd58bb40f4fd38e1589c4 authored almost 4 years ago
Update changelog and version after v2.1.19

5354facf4bcc271816e85a342f7bf7ab7e496a1c authored almost 4 years ago
Merge pull request #1192 from github/update-v2.1.19-5502fefd

Merge main into releases/v2

f5d217be74900c6ac8fbbe53f3c10376ba4e64da authored almost 4 years ago
Update checked-in dependencies

a37ee269063efb82e540d96aff86a3e6c132bf03 authored almost 4 years ago
Bump @actions/core from 1.4.0 to 1.9.1

Bumps [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) from 1.4.0 to ...

341b59f315fac63b49f1b20d0e3e3be277526d1d authored almost 4 years ago
Move changelog note to right release

7c3d74c9d7ed9b3795b497666531d9b5a5b2ddc4 authored almost 4 years ago
Update changelog for v2.1.19

04ea3b12c87fa9e4bdf6d1e9d0b38a95e691850f authored almost 4 years ago
Merge pull request #1191 from github/edoardo/fix-upload-times

Fix TRAP cache upload timing

5502fefdae3ab5a086c82226f250a4afa2b515b1 authored almost 4 years ago
Fix TRAP cache upload timing

0349bb05b706d8918b4233d2b7812a8d86ba1251 authored almost 4 years ago
Merge pull request #1190 from github/henrymercer/fix-debug-artifact-tests-on-push

Modify `expect-error` input checking to fix errors on main

3154c4f6f030005a9e6064e71bbb923e53a8f940 authored almost 4 years ago
Mock `expect-error` input to avoid errors in Action integration tests

b21cab99b346de6e70e06d18251c1e16576f2d46 authored almost 4 years ago
Dump GitHub event in debug artifacts failure workflow

This should help us debug failures on `main` like this
https://github.com/github/codeql-action/a...

ff9d53b61ab3b38f43ada003d89e9742609eeb42 authored almost 4 years ago
Require test mode to be set to use `expect-error` input

This should be more robust than determining whether the repo is the
CodeQL Action or a fork of it.

219a937551f1365d103a49d23912f49421f7e3cc authored almost 4 years ago
Merge pull request #1188 from github/edoardo/round-fields

Round fields in TRAP caching telemetry to integers

5f4cfb016eb8ef9c4ef1f24f86fc6e9a40614efe authored almost 4 years ago
Round fields in TRAP caching telemetry to integers

eb6f272155a2ebac19521bf152fc89f11cc97dee authored almost 4 years ago
Merge pull request #1185 from github/henrymercer/bypass-toolcache-feature-flag

Enable bypassing the cached CodeQL bundle via a feature flag

7d94bb850d8cf9583fbd805dda77e59633c17703 authored almost 4 years ago
Tweak debug logging message

b469d5358f269b349e76d502ea417e75db80e9d8 authored almost 4 years ago
Add a debug log message when forcing the latest tools

f47f573e6eb4512dbf43dd45e8fc006360ab08ae authored almost 4 years ago
Merge branch 'main' into henrymercer/bypass-toolcache-feature-flag

416ad3d847ff2e49459f43d47f4db951145336fe authored almost 4 years ago
Merge pull request #1187 from github/update-supported-enterprise-server-versions

Update supported GitHub Enterprise Server versions.

8bc36d5f4652c98dbd5f7feef9133c07aa63cfad authored almost 4 years ago
Update supported GitHub Enterprise Server versions.

8beb1906347c435c601508d2e01bbf557d73187f authored almost 4 years ago
Add `expect-error` input to force PR check green on expected failure (#1177)

9b7fa3dd991674919f91d3a519d322c454d0ea4a authored almost 4 years ago
Add tests for toolcache bypassing

e1cd41a365ed0d4c54204dcb9bbd219899367de7 authored almost 4 years ago
Merge pull request #1184 from github/edoardo/trap-telemetry-followup

Use `util.promisify` instead of manually constructing promise

b0d61cff1a73f553be309c63f30b07c2c63a2db3 authored almost 4 years ago
Improve readability of CodeQL bundle tests

d45b0eba23794f80d725a899584062f36844f4cb authored almost 4 years ago
Use `util.promisify` instead of manually constructing promise

016a5e3baebc29714d6ec4483b9e7fbd92998752 authored almost 4 years ago
Merge pull request #1182 from github/edoardo/trap-cache-telemetry

Add telemetry for TRAP caching

8a4437ae3307042e4ce3575315c63a765d452292 authored almost 4 years ago
Don't bypass the toolcache in test mode

96a8424f0c1f28f2b35823ac61cd275225f1f632 authored almost 4 years ago
Bypass toolcache when feature flag enabled

5862bae77edda7c6de20d6b4af41246b38a657d6 authored almost 4 years ago
Address review comments from @henrymercer

b29194f0aceb5f3b4840ebfd4a0197e177e632eb authored almost 4 years ago
Add bypass toolcache feature flag

df0c0dafc0ecb524772f9f30115fed1b8c78d3f4 authored almost 4 years ago
Merge pull request #1183 from github/edoardo/fix-cache-key

Fix cache key for TRAP caching

ca10a6d552b347d1a0104388f1f1f46c8d7bb973 authored almost 4 years ago
Fix cache key for TRAP caching

d8adbe91f273b63d9eabe48c75c108e9a101b46d authored almost 4 years ago
Merge pull request #1181 from github/RasmusWL/disable-python2-pipenv

Disable python2 + pipenv tests

b3adcb72617afeeebfe545859c5efdb0531dbf30 authored almost 4 years ago
Update CHANGELOG.md

c8cb2b45eb963b0fad2ed85851903fda49a789eb authored almost 4 years ago
More readable error message for invalid `queries` block

When someone creates an invalid `queries` entry in the codeql config
file, like this:

```
queri...

fba13b00924344f67d823d5125d86e4117b0a7f0 authored almost 4 years ago
Disable python2 + pipenv tests

Just like we did for poetry and Python 2 in https://github.com/github/codeql-action/pull/1124

...

909e2fd56a0e6b2bfe7cfc23eaa6298d24a49a07 authored almost 4 years ago
Merge pull request #1178 from github/henrymercer/codeql-cli-2.10.3

Update default CodeQL version to 2.10.3

f9bce029b4ecefb1c07a221090965e49808c152e authored almost 4 years ago
Add telemetry for TRAP caching

4139682b6459e901fa4f0dd13722eb738faea3cd authored almost 4 years ago
Merge remote-tracking branch 'origin/main' into henrymercer/codeql-cli-2.10.3

af9d911fb5d8db792803b1f5f7488cdde29b36f6 authored almost 4 years ago
Merge pull request #1105 from github/aeisenberg/fix-config-files

Re-enable passing the codescanning config file to the CLI

680d08e97de81470381833edab18a51ab5a89f0c authored almost 4 years ago
Merge pull request #1176 from github/dependabot/npm_and_yarn/types/long-5.0.0

Bump @types/long from 4.0.1 to 5.0.0

5836ad9c2a1014167e241508534932b427564774 authored almost 4 years ago
Update default CodeQL version to 2.10.3

1e8043f69c8646f14075f0ca295cf0b8e4a85919 authored almost 4 years ago
Merge remote-tracking branch 'origin/main' into dependabot/npm_and_yarn/types/long-5.0.0

68f1d68743c70d9462a02cc783a48e550245fdef authored almost 4 years ago
Merge branch 'aeisenberg/unrevert-query-filters' into aeisenberg/fix-config-files

fa2bc211fdfeb52c7651dc04cf3ec18f10056805 authored almost 4 years ago
Merge pull request #1127 from github/aeisenberg/unrevert-query-filters

Revert "Revert "Add capability to filter queries #1098""

c12cfbc92f4748a8b1295109a4d73d7214bff536 authored almost 4 years ago
Merge remote-tracking branch 'upstream/main' into aeisenberg/unrevert-query-filters

bcf47202b554543e69900f16ab998ef094afaeb0 authored almost 4 years ago
Merge pull request #1175 from github/local

Use the API URL from the environment if it is present.

d101dd6f9e3cda8e8c8a297f85f78ef365f3cc27 authored almost 4 years ago
Update checked-in dependencies

ccfb4e296c65bbb7c36860567586b20eebcb0385 authored almost 4 years ago
Bump @types/long from 4.0.1 to 5.0.0

Bumps [@types/long](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/long) fro...

049537835b7fad16cff91f01e5aa088691f04c8a authored almost 4 years ago
Merge remote-tracking branch 'upstream/main' into aeisenberg/unrevert-query-filters

072cd929a39e7c36aa4fb51e2dc3f1e9b82d59e2 authored almost 4 years ago
Merge remote-tracking branch 'upstream/main' into aeisenberg/fix-config-files

d74f663ed42d3ea05fe93742a8bc376f4ba8456b authored almost 4 years ago
Fix failing test and address PR comments

a09a02993743fde912ef14e8c781dbfa7ff2a68a authored almost 4 years ago
Merge main into local.

07e8996e9131c2e4b4e564799411eec5e1766d8b authored almost 4 years ago
Remove an unneeded `if`.

Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>

7c6fa5ce8adfa697db3be2061bd78f87776bfd97 authored almost 4 years ago
Merge pull request #1159 from github/angelapwen/post-init-cleanup

Move logs, SARIF, database bundle actions uploads to post: hooks

b659ce5d7d80152bb697818ce063cbadd43620a4 authored almost 4 years ago
Remove review comments

79b933c459f99f6eeb65e8a18793caf83bba1efb authored almost 4 years ago