A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

1.1.0

58f66fa60a4e839a5579ad42a8cd9e2ccda16310 authored over 4 years ago
Merge pull request #919 from github/henrymercer/rename-status-report-field

Rename ML powered JS queries status report field

3d2ad0b9c819d4ea406021c1bbfa39f37953e6b8 authored over 4 years ago
Merge branch 'main' into henrymercer/rename-status-report-field

7e15b9612a9ff646fb9eee9132ed473d42ac7ef0 authored over 4 years ago
Merge pull request #918 from github/henrymercer/windows-2022-tracing-notices

Update changelog and README with build tracing compatibility info

7f9dca29821cf2a54f736a581c164ce60afef936 authored over 4 years ago
Rename ML powered JS queries status report field

The new name `ml_powered_javascript_queries` is more consistent with
status report fields for an...

87bfa0ea7aca2b8fc34ca643b8ce0f2c4d4a3e67 authored over 4 years ago
Merge pull request #916 from github/dependabot/npm_and_yarn/runner/simple-get-3.1.1

Bump simple-get from 3.1.0 to 3.1.1 in /runner

f2027c51f718a2c0c5294955d90bedc88044bc9b authored over 4 years ago
Bump simple-get from 3.1.0 to 3.1.1 in /runner

Bumps [simple-get](https://github.com/feross/simple-get) from 3.1.0 to 3.1.1.
- [Release notes](...

70e63f4b0847915d46bef02419e7daa19d54c88f authored over 4 years ago
Merge pull request #909 from github/henrymercer/bump-node-js-to-v16

Use Node.js v16 in all Actions

88073a5f6e8f63e97a178f3944ebc88b97d0f6e9 authored over 4 years ago
Merge branch 'main' into henrymercer/bump-node-js-to-v16

eb172af46d08180767ae6b035c7538696fc89eb1 authored over 4 years ago
Merge pull request #917 from github/henrymercer/fix-windows-latest-ci-jobs

Fix CI jobs that broke as a result of `windows-latest` being upgraded to Windows Server 2022

a777a982cb77f2b1e90252565501a6dddc659563 authored over 4 years ago
Update changelog and README with build tracing compatibility info

a6d606becc2a03638a5fe894d2a4a096d2fc5093 authored over 4 years ago
Fix typo in Python package installation CI job

8dd2b9ac2fc2fe02e9fb37182e13cbb47f6ab0e8 authored over 4 years ago
Use `windows-2019` for CI jobs involving build tracing

Build tracing currently does not support Windows 2022, so use
`windows-2019` instead of`windows-...

b8047e561097f48d55bc35c1fc71802a6038fb1c authored over 4 years ago
Merge pull request #914 from github/mergeback/v1.0.32-to-main-2b46439d

Mergeback v1.0.32 refs/heads/v1 into main

edd03fbd2c9728a78e2e10ff69c4af455b0de4fd authored over 4 years ago
Update checked-in dependencies

f9607205dbdf622ecfaf16d2ffecc78116ed98e2 authored over 4 years ago
1.0.33

b870f13d6debfe032448be2f1df825a71856d539 authored over 4 years ago
Update changelog and version after v1.0.32

2890d306c3f53c3071307334f3a3adb8696312f4 authored over 4 years ago
Merge pull request #913 from github/update-v1.0.32-4eb03fb6

Merge main into v1

2b46439dd5477d8a1659811cdc500d35e601a1cb authored over 4 years ago
1.0.32

6d8390b7cb0811cb4e382efbc357489768451245 authored over 4 years ago
Merge pull request #907 from github/henrymercer/report-ml-powered-query-enablement

Report ML-powered query enablement in the `init` status report

4eb03fb6f379015fdfe8dd28ec1c923cf7d033bf authored over 4 years ago
Add more documentation for ML-powered JS queries status report

Also be more explicit about which version strings are reportable in
the code.

03c64ef07d648e3410542e52c3750ff742c04afd authored over 4 years ago
Merge branch 'main' into henrymercer/report-ml-powered-query-enablement

cc622a02a9e195617aa829cdc0e51982c321de3b authored over 4 years ago
Limit cardinality of ML-powered JS queries status report

Some platforms that ingest this status report charge based on the
cardinality of the fields, so ...

c95a3d854c80a4193f061170616fe6b32623d745 authored over 4 years ago
Nit: Simplify code with optional chaining

f888be73ce2adb4f7406ca2aec48f1aa2ed7a3fc authored over 4 years ago
Merge pull request #911 from github/cklin/codeql-cli-2.8.0

Update default CodeQL version to 2.8.0

16d4068732b5be11f5adc0dd0e2e51fcd20e0e59 authored over 4 years ago
Update default CodeQL version to 2.8.0

aab545260eee6e1bd88a62db037cc2d813fd97d5 authored over 4 years ago
Update `getMlPoweredJsQueriesStatus` doc

501fe7ff12fbfa36aaac35e7a444d6693c37792e authored over 4 years ago
Merge branch 'main' into henrymercer/report-ml-powered-query-enablement

ad40e4a8f86604352d2baf4577c8da1e33e50334 authored over 4 years ago
Add "multiple" report for ML-powered JS query enablement

When multiple ML-powered JS packs are in scope (an unsupported
scenario), the status report is "...

537b2f873a72fd44277b6ae7cd863f1a626d0e47 authored over 4 years ago
Only add ML-powered queries pack if the user didn't manually request it

9f32fc9b9de4109ef781ed425f1c913f4fd8d354 authored over 4 years ago
Merge pull request #858 from github/use-better-base-sha

Declare the merge base as base for code scanning comparisons

904d0acf90cac7eebff96392ba334b027f7470d5 authored over 4 years ago
Merge branch 'main' into use-better-base-sha

9b14aa7c846762552607a742c0fe8df21ea32409 authored over 4 years ago
Add changelog note

8f279944747b022130d4488f4db32d55f26dd61f authored over 4 years ago
Bump to v1.1.0

The upgrade to Node.js v16 warrants a minor version bump.

8e2954c3fa95f56d372aec67f877337c7584d690 authored over 4 years ago
Remove stub type definitions

8768b0f5a35cadd908333a3e9c26f399ea38b3d5 authored over 4 years ago
Upgrade Node type definitions

c72c200f52903e3d469e40c7058e64efb976c10c authored over 4 years ago
Upgrade Node type definitions

b949e494e4adc4cbb27d714b03d8ed33368c2be5 authored over 4 years ago
Use Node.js v16 in all Actions

3d23aade469aa3ec77a29f1721762b1a06923bcc authored over 4 years ago
Use Node.js v16 in all Actions

This is now in active LTS status.

34c777f8d08fd88953a67626f475e45ed8009c61 authored over 4 years ago
Add ML-powered queries enablement to `init` status report

We report this information in the `init` status report rather than the
`analyze` status report s...

1cddec9558c522dd219349d2149a48c46e203a8a authored over 4 years ago
Convert status report comments to documentation

a005206838eca2a8b5b27b051de1440eff008637 authored over 4 years ago
Merge pull request #822 from github/dependabot/npm_and_yarn/ava/typescript-3.0.1

Upgrade AVA to v4

ff33f031e8e4c0a32194dcdab6bafbcd10c4589a authored over 4 years ago
Merge branch 'main' into dependabot/npm_and_yarn/ava/typescript-3.0.1

6a6a3203dd5cf60e2e3f7f3b2d62edb9508e664e authored over 4 years ago
Merge pull request #906 from github/aibaars/fix-typo

Fix typo in error message

942b34d547519f6e1325d1136a2f16811cdff56c authored over 4 years ago
Merge branch 'main' into use-better-base-sha

3469c69bba15f0379d45707140156df7aec36d12 authored over 4 years ago
Fix typo in error message

d57c2761c9f5dcef5f2f04d9544acc5cb21ae651 authored over 4 years ago
Merge pull request #905 from github/henrymercer/fix-changelog

Fix changelog

6081b90eaeaae61bfb41d3fe29d0123678f578c5 authored over 4 years ago
Fix changelog

Move a couple of entries for #889 that should have been in the
unreleased section but were inad...

78eb2c9c0078f6d4f542429ba034c4edf3723e07 authored over 4 years ago
Remove `security-events: write` from tests

This is not necessary.

b2af0740e43e2f8906fd58f5c3f9cecadb1e8db9 authored over 4 years ago
Merge pull request #904 from cw-acroteau/add-ref-input

Add ref input

77194581b7cdb2b8d0b1a477d6fb11b278f4e462 authored over 4 years ago
Merge branch 'main' into add-ref-input

1a5b6042560cd38e4c4494185eccac701bfc601d authored over 4 years ago
Merge pull request #3 from aeisenberg/aeisenberg/add-ref-input

Update the description of new inputs

9bfa05fb031fbeedf91fb9395e66ff2cf51a8b68 authored over 4 years ago
Merge branch 'main' into dependabot/npm_and_yarn/ava/typescript-3.0.1

e9aa623c5d869e5b801ad6a81a0ee7d1b49f60c5 authored over 4 years ago
Merge pull request #902 from github/aeisenberg/permissions

Add a permissions block for generated workflows

57f34a15691e85a1f047217ae939619367e48f07 authored over 4 years ago
Merge branch 'main' into aeisenberg/permissions

941e382c652e3b1c50a97cfc77430cb99af98f51 authored over 4 years ago
Update the description of new inputs

These new inputs will not work on pull requests from forks.

6c6b8c33c447e8f7d1abbdbe57e389d9af68614c authored over 4 years ago
Merge branch 'aeisenberg/permissions' into add-ref-input

13f97c81fe326bf189e0bca6841280c48c04479d authored over 4 years ago
Upgrade Ava to v4

ce89f1b61177d2b7a3e8022d2c214b7fbd5125d1 authored over 4 years ago
Update checked-in dependencies

9a40cc52746a82b59bca8c8690e8534474446e86 authored over 4 years ago
remove some debug info

ec0b3ae7fff37a204fd6c84ccff73ef7c7b02339 authored over 4 years ago
Detect merge base as base_sha for upload

e836f97769d757d62f861a23f780c952e0757458 authored over 4 years ago
Bump @ava/typescript from 2.0.0 to 3.0.1

Bumps [@ava/typescript](https://github.com/avajs/typescript) from 2.0.0 to 3.0.1.
- [Release not...

11639426e66b54c6f8fc8d20ea516abba47582a0 authored over 4 years ago
Merge pull request #901 from github/dependabot/npm_and_yarn/long-5.2.0

Bump long from 4.0.0 to 5.2.0

a9da9fc959c10a84e60d5bd457338466a3dacbd8 authored over 4 years ago
Merge branch 'main' into dependabot/npm_and_yarn/long-5.2.0

ae8741006b4ad96af86de732744d6fa1aff268f0 authored over 4 years ago
Avoid sending status reports in test mode

36419a79c1f3044cde90d8be932a52602a95cab9 authored over 4 years ago
Regenerates test workflows

72f9a88bc5827a1941b8b381a994366f55b1a72e authored over 4 years ago
Add a permissions block for generated workflows

Ensure that all workflows are able to write security events.

e9aa2c6f62b2fdd057b1faf99cc69cabe9348866 authored over 4 years ago
Merge pull request #900 from github/mergeback/v1.0.31-to-main-1a927e93

Mergeback v1.0.31 refs/heads/v1 into main

e9d52340a3af4a63ff1e3fce3a2f48755268974f authored over 4 years ago
Update checked-in dependencies

392931027ab1f2f5db7e0b35cdc3448d8e198094 authored over 4 years ago
Bump long from 4.0.0 to 5.2.0

Bumps [long](https://github.com/dcodeIO/long.js) from 4.0.0 to 5.2.0.
- [Release notes](https://...

ba2b46d53e684dead35fd0a0e29c7e3a19887c26 authored over 4 years ago
Update checked-in dependencies

a602dbedb7a5701199c800fdafc190e8ee67a4ab authored over 4 years ago
Merge branch 'main' into mergeback/v1.0.31-to-main-1a927e93

66777347f66a8047ab589f0c107fb3b20706371a authored over 4 years ago
1.0.32

ce6e94b1b88f7ff4fcee0ff81bcc64b85cd56d72 authored over 4 years ago
Update changelog and version after v1.0.31

30790fe430f4b5e6bf2cfc045110b51dd49efbdb authored over 4 years ago
Merge pull request #899 from github/update-v1.0.31-3a741b6c

Merge main into v1

1a927e9307bc11970b2c679922ebc4d03a5bd980 authored over 4 years ago
Merge pull request #893 from github/dependabot/npm_and_yarn/trim-off-newlines-1.0.3

Bump trim-off-newlines from 1.0.2 to 1.0.3

ea2ef8554d3f400acc2e7d70043e7fbbf87c9936 authored over 4 years ago
1.0.31

bbb9c53c65af786b1ff145128e79df59abef17f7 authored over 4 years ago
Merge branch 'main' into dependabot/npm_and_yarn/trim-off-newlines-1.0.3

9664bae55eab8f0548991c5d96da6bdbd710304e authored over 4 years ago
Merge pull request #892 from github/dependabot/npm_and_yarn/node-fetch-2.6.7

Bump node-fetch from 2.6.1 to 2.6.7

3a741b6cf5013d27ed3e5b923be091312489df28 authored over 4 years ago
Merge branch 'main' into dependabot/npm_and_yarn/node-fetch-2.6.7

1498bce6608ff9f4dbad2ab02e03d96083ddaf15 authored over 4 years ago
Merge pull request #894 from github/dependabot/npm_and_yarn/sinon-13.0.0

Bump sinon from 11.1.2 to 13.0.0

c260382f36fa7681d7ebb8cba71a42ac38d18f16 authored over 4 years ago
Update checked-in dependencies

6410c0691e039fa78b80a8083ba08f03c8154e61 authored over 4 years ago
Update checked-in dependencies

8e07ec6ce29db78c1b8ec5188ef65acd2abc6922 authored over 4 years ago
Update checked-in dependencies

c337e5f2f3624ea687f05f3c9648f6ed3ee86462 authored over 4 years ago
Bump sinon from 11.1.2 to 13.0.0

Bumps [sinon](https://github.com/sinonjs/sinon) from 11.1.2 to 13.0.0.
- [Release notes](https:/...

9673b562d94c736fda82c9a3ff967739f759acce authored over 4 years ago
Bump trim-off-newlines from 1.0.2 to 1.0.3

Bumps [trim-off-newlines](https://github.com/stevemao/trim-off-newlines) from 1.0.2 to 1.0.3.
- ...

253bc84963e73f5f5674f20c828e3727ced70253 authored over 4 years ago
Bump node-fetch from 2.6.1 to 2.6.7

Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.6.1 to 2.6.7.
- [Release not...

bc4366e9480d6444308ba83784d1fea104c0375b authored over 4 years ago
Merge pull request #885 from github/dependabot/npm_and_yarn/runner/node-fetch-2.6.7

Bump node-fetch from 2.6.1 to 2.6.7 in /runner

3b831aafd98be2329e46f6ae6d6af7aa5bacd9bd authored over 4 years ago
Merge branch 'main' into dependabot/npm_and_yarn/runner/node-fetch-2.6.7

14b1fecf3391a9d1cd002e27b70af38bd912b3c4 authored over 4 years ago
Splits integration tests

9f36b7517888676b0d3fe3fdd9b30e6d6f8a4a8c authored over 4 years ago
Changes to commit hash in main branch

dfe2bc4e49ddf01e7719ecc41f1f22d21fe39f7d authored over 4 years ago
Fixes integration tests referred repo

63d0c7856cd547ec7fe490e30b98d3b28dc09b4f authored over 4 years ago
Updates javascript files

3cc87990f0028f6c9c6a86ffc67a7adeae141ca3 authored over 4 years ago
Fixes integration test

260b4d5dc4fb93af55f2c486c13a52f0b9e1dfb1 authored over 4 years ago
Adds integration test and fixes linting

1bfa9ace605d639a8b63a49326a46e5c31d5cf2a authored over 4 years ago
Adds check on inputs and compiled files

1eaaf07b91f9fdbb3fc3d20aed066229dc06efea authored over 4 years ago
Applies recomendation in upload-sarif/action.yml

5916f9896d919ab9a00738740b57d9cba172264d authored over 4 years ago
Apply documentation suggestions from code review

Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>

0dd4dbf9d9eb328e7c303ab4219c666ba4546df8 authored over 4 years ago
Merge pull request #887 from github/rneatherway/content-type

Set contentType for database uploads

5e235361806c361d4d3f8859e3c897658025a9a2 authored over 4 years ago
Merge branch 'rneatherway/content-type' of github.com:github/codeql-action into rneatherway/content-type

5f30e2466f5eae81a2b1cdefeb9e81157d920e21 authored over 4 years ago