A web application to visualize and manage open source project data from the Ecosyste.ms API.

github.com/github/codeql-action

Actions for running CodeQL analysis
https://github.com/github/codeql-action

Merge pull request #570 from github/update-v1.0.2-0b1f4a01

Merge main into v1

37f75f1702c69e1745e3dd7a591b6b8130d34e13 authored about 5 years ago
Merge branch 'main' into aeisenberg/add-codeowners

9c28349a87004b39664709533bb4f91e936aaa1d authored about 5 years ago
1.0.2

028a76e6db2a9816cbbd72d2c04bd6143fd48f2c authored about 5 years ago
Merge pull request #566 from github/aeisenberg/update-release-branch-fix

Fix update-release-branch-fix.py

0b1f4a016a46112bd7291b1e371e32bb18f3f489 authored about 5 years ago
Add a CODEOWNERS file

b4914d76a20edb3b8d876ebfcb71ea685c71c632 authored about 5 years ago
Merge pull request #565 from github/robertbrignull/upload_ghes

Only attempt to upload on dotcom

69c30da5ad88bf59aaf9760fb9eab8cda0a8c794 authored about 5 years ago
Merge pull request #564 from github/robertbrignull/workflow_event_error

Provide a better error message

6fc1280a3c873ad55e11fd1c2663af330017f909 authored about 5 years ago
Fix custom version of CLI to use for package testing

This can be removed when 2.5.6 is released.

efea9238bc5dfa0d26fb197cb8f903b93deed602 authored about 5 years ago
Fix update-release-branch-fix.py

This change ensures that the the script can handle
commits with no committer in them. This will ...

d16268b2730cc78e4deffe9e7c2bf9867ae8bcd4 authored about 5 years ago
Only attempt to upload on dotcom

b985a67b973bb2c5bdcb1fc13f777908c9ae131c authored about 5 years ago
Provide a better error message

c989ee7b390460b9335fffea91f88391d0aed0b2 authored about 5 years ago
Merge pull request #563 from github/robertbrignull/check_default_branch

Check if on default branch before uploading database

366b68eda082e36090a60a50564e653fa4e236b2 authored about 5 years ago
Check if on default branch before uploading database

d693b3cb0d42cced0e590ecfbf86b78244157184 authored about 5 years ago
Merge pull request #545 from github/aeisenberg/pack-run

Allow the codeql-action to run packages

e284efba726c9a5e9afe7daf1dfe7b4c4e410666 authored about 5 years ago
Remove unnecessary type assertions

20aafcd90cbefd2ced81595f43790136c9cf9963 authored about 5 years ago
Update cleanup to bundle

429471162a5e463c262bb85dd63edba8f8e8bc7c authored about 5 years ago
Upload databases from analyze action

2a9a602a5eeddc02c5afc8e76ccdb059ad542dfa authored about 5 years ago
Avoid running mergeback workflow on PR

This was causing the workflow to run and create tags after merging
main into a branch.

6a1c0700c39c32dc5a62b7d5c08cc242b44711bc authored about 5 years ago
Remove two log entries

Cleans up the output logs even more. These entries don't add any more
information since everythi...

23cdd6bab6adf0411c93916c174ed592dc2bf00b authored about 5 years ago
Add pack download to its own log group

Also, make the baseline count message less awkward sounding.

a2e96a4c783ac47007774572298798edfdde0909 authored about 5 years ago
Use nullish conversion for packs

Slightly simplifies the `parsePacks` function.

96e7de35af4d54c495db23fd2a1e70d295d03225 authored about 5 years ago
Refactor codeql.ts

Extract a `runTool` function that captures the stdout and returns it.
A small refactoring that r...

49b2220f922b42419e9b35952638748546999fb9 authored about 5 years ago
Remove unneeded action input in PR check

db01c78de0f2313a6ec21d8b9dd4ffa433f23294 authored about 5 years ago
Merge remote-tracking branch 'upstream/main' into aeisenberg/pack-run

82388fd94a28795139f1184a806792c659beaa37 authored about 5 years ago
Add `--finalize-dataset` to `database finalize` call

babcc1b793d2ba98863356f45a2e5a2f6c62277d authored about 5 years ago
Add new log grouping for DB cleanup

06df98a5131406227302e966e5edcb4fadf5e6e8 authored about 5 years ago
Add intepret-results timings to status reports

0ea20c5b326d9252797031646e8b03a7d3fe1a22 authored about 5 years ago
Add an integration test for packaging

Uses two pre-existing packages to run some simple queries on a javascript
database.

d42f654f7ab2bd398e52ec88903fb2c4c62c17f1 authored about 5 years ago
Packaging: Address review comments

1. Better malformed data guard for PackDownloadOutput
2. Fix Packs type
3. Remove TODO in init-a...

1cc5f1d5dd07a0ba41613a8c038c643507d6d677 authored about 5 years ago
Merge pull request #554 from github/mergeback/v1.0.1-to-main-ece2addc

Mergeback v1.0.1 refs/heads/v1 into main

9c13fefc68f3282093e35a410730a3ade51ad56c authored about 5 years ago
Merge branch 'main' into mergeback/v1.0.1-to-main-ece2addc

a69f472ee95a01a0f7d0bc73fc953bdbfa00ba89 authored about 5 years ago
1.0.2

fbb9046bf6f5baa8736d8ed9b125f0a782b22bcc authored about 5 years ago
Update changelog and version after v1.0.1

9e6b46a9e6b809e64e77e2f883e6136db3c16a46 authored about 5 years ago
Merge pull request #553 from github/aeisenberg/no-quotes

Remove quotes around `$DRAFT` argument

ece2addcff6617641ef7caf0016fb0fd4c2a9962 authored about 5 years ago
Remove quotes around `$DRAFT` argument

gh will complain if there is an empty `""`, which is the case if
`$DRAFT` is unset.

74764ac0eb4d1155e4b82af6b8293f0f57b4e45b authored about 5 years ago
Merge pull request #549 from github/update-v1.0.1-242fd828

Merge main into v1

675843d09a1acbbaecd4a337def2cf74f5809caf authored about 5 years ago
Empty commit to trigger CI.

511fe43abeb9bf6441029260faa2843ecd17fff2 authored about 5 years ago
Some refactoring in fingerprint computation

c09500540ce28edc3937e9d117595d98e3e763f5 authored about 5 years ago
Fix out of memory in hash computation

02e8dcfe9cac6b6ae038d8578b850d007c925682 authored about 5 years ago
1.0.1

68d7c5f62003efd277c678beffe111b446f7aa0d authored about 5 years ago
Merge pull request #547 from github/retrying-fix

Add back retrying.

242fd828aafa0b220c6a617507ca0eb48c4ec17c authored about 5 years ago
Merge branch 'main' into retrying-fix

48efe6e2828325706ec49bc97463e2fa4357aff6 authored about 5 years ago
Fix stub in tests.

f8c65b775d673c9d3a7080915aed1de3908d7c65 authored about 5 years ago
Run the pack download command

d87945e9fdd0f7f2b9528dfafa8e231e4fe77606 authored about 5 years ago
Avoid using `SemVer` instances

Use strings instead. They are easier to serialize and deserialize.

06687e95c8495c63469eb5f9b19c2ddca3aba075 authored about 5 years ago
Fix logic for calculating if there are queries to run

During the analyze phase.

9b5753ab00a2da87acc917c82c2172f3d7af7528 authored about 5 years ago
Add better comments and error messages for pack-related changes

6cee818bf3e428767056823adb2070f272b2f2b9 authored about 5 years ago
Add back retrying.

41dff7fce343d9005450a81801fe3ef31096bf7b authored about 5 years ago
Replace analyze with run-queries and interpret-results

2cc885d66e02027902d0c4757d5f5dc92e7f8904 authored about 5 years ago
Add `--sarif-group-rules-by-pack` flag

1644ade51407513f415e416146ba9fd4e72543fb authored about 5 years ago
Merge pull request #539 from github/aeisenberg/env-vars

Add environment variables to signal feature and version to the CLI

cbdf0df97be3a7cc448a09cf1a4d219c09aec646 authored about 5 years ago
Cleaning up comments around env vars

Also, move `getTemporaryDirectory` back to `actions-util`.

f60ef170b0653e24b3c2dfe107ff3114dff50aaf authored about 5 years ago
Allow the codeql-action to run packages

This commit adds a `packs` option to the codeql-config.yml file. Users
can specify a list of ql ...

86a804f9a7f546a50620c9e35d9a1f35d9e1e789 authored about 5 years ago
Fix Unguarded actions library use code scanning error

Must access the env var directly in order to avoid recursive calls to
`getRequiredEnvParam`.

cc0733fd1209db83ff643f72a3e9f1d914aefa92 authored about 5 years ago
Merge branch 'main' into aeisenberg/env-vars

082575fbc3e75156dc940d83991a187574cd15e6 authored about 5 years ago
Merge pull request #542 from github/robertbrignull/import-actions-lib

Update unguarded-action-lib.ql to catch uses of actions-util.ts

1ec2fd7ea1ce1ed6a470ec5b3275541212f825e5 authored about 5 years ago
Update unguarded-action-lib.ql

61b561867b15b37b0a272ea2de81d863ecbb5dc9 authored about 5 years ago
Merge pull request #541 from github/update-supported-enterprise-server-versions

Update supported GitHub Enterprise Server versions.

4ac9009dfef6a293841c94e76a36c4000aac714a authored about 5 years ago
Merge branch 'main' into update-supported-enterprise-server-versions

e8486b0d6c974fedf917171315cdebfb5077d28e authored about 5 years ago
Merge branch 'main' into update-supported-enterprise-server-versions

739e14d8792f69922c3f935cd28945f3e7298ad8 authored about 5 years ago
Merge pull request #536 from github/aeisenberg/commander

Use commander preAction hook for setMode

1d05ad75765dbfb0cbd9d86eca526b5a5fbf94b9 authored about 5 years ago
Update supported GitHub Enterprise Server versions.

2fee1242f43c82253f4fe15c5885c252eaa2eedb authored about 5 years ago
Remove local environment running

This is a functionality that never worked perfectly and hasn't been
used for a while.

This allo...

2c2ebdc5c559ebcf98545c6d958b0654e806dfd6 authored about 5 years ago
Add environment variables to signal feature and version to the CLI

This PR ensures environment variables are set before any invocation of
the CLI. Here is a list ...

3708898bf22a065449012e0b88abd0ecdb37ca57 authored about 5 years ago
Merge pull request #534 from github/aeisenberg/mergeback-fix

Fix the mergeback workflow

4b4a5ee9d122c19bb1c165b76f8705c22e0b730e authored about 5 years ago
Use commander preAction hook for setMode

Hooks are new to commander v8. We can use hooks to ensure that `setMode`
is called before every ...

539d968ad76f18facb8baa5636bcbee46bd76ca4 authored about 5 years ago
Fix EOF newlines after `npm version patch`

The removeNPMAbsolutePaths check requires no newlines at the
end of the file. This ensures that ...

c02d8cc7a98b7e57796f6c4e1ca0ebdeda973505 authored about 5 years ago
1.0.1

f0e82b7d6380f19c295ce57ed152fa695cdeb9dc authored about 5 years ago
Manually update the CHANGELOG

This should have happened in a mergeback PR, but the workflow to
generate this was broken.

a94829cc53f1747000845216ef66b4f14efe407d authored about 5 years ago
Merge remote-tracking branch 'upstream/v1' into aeisenberg/mergeback-fix

7d701d23e374453de5f6c141ebd22ada8de74592 authored about 5 years ago
Fix the mergeback workflow

We need to tag and mergeback if the tag does _not_ already exist.

981b5cb0127532ec149f6e2fb6f335c7279cd15a authored about 5 years ago
Merge pull request #516 from github/aeisenberg/user-agent

Send version and mode to code scanning via user agent

ca9450846f61bbf95924d090e452e54f91e0e2db authored about 5 years ago
Use the version from package.json in the runner

1a4cdd35b96b47f22551ac6e2aef681c50062f36 authored about 5 years ago
Use the version from package.json in the runner

Update the ql queries to account for change in how we look for runner

Previously, we guarded bl...

4164096c0da9e4e6abfe2b9814524384399d2c35 authored about 5 years ago
Merge pull request #438 from okyanusoz/patch-1

Fix wording in README

fad7cc482d0fd13b353fc1a7653f4d9ec309d4c9 authored about 5 years ago
Merge pull request #533 from github/update-v1.0.0-ff75ec7f

Merge main into v1

4917d3c7e89fbbaf67ce4697fa42cd195979dbbd authored about 5 years ago
Remove leading newline

Minor change.

dd66f4484defcc639eb709d8c5c1931f991ef4b2 authored about 5 years ago
1.0.0

cf57db7e1f4904898a63bdc5d910c60a932c33ec authored about 5 years ago
Merge branch 'main' into patch-1

d9a17baf2f062e6bee6163cd897e7ec2e311bfad authored about 5 years ago
Merge pull request #532 from github/henrymercer/analysis-summaries-custom-queries

Analyze: Log analysis summaries for custom queries

ff75ec7f7d6bd4463e6e15ef239717b34b7f4313 authored about 5 years ago
Add changelog note

1362396c57d0275a6ca2024adfa59b1682fb9869 authored about 5 years ago
Analyze: Log analysis summaries for custom queries

2338fe5db5446e508c95db475de0e3038a1fd047 authored about 5 years ago
Merge pull request #510 from github/aeisenberg/update-changelog-on-release

Add release and mergeback workflows

2ccefaccfe00c8c6440fb405672db01dd69db6b5 authored about 5 years ago
Merge branch 'main' into aeisenberg/update-changelog-on-release

8b0110800ef18c3af8e651fbbd81ce621c180e97 authored about 5 years ago
Merge pull request #513 from github/aibaars-patch-1

Add Ruby as a possible language

12b2dc68b9384f590b559c00daea7c0c6f5aab0c authored about 5 years ago
Merge branch 'main' into aibaars-patch-1

213f5407e2c94c1e79502b1485892299cfd1d1ef authored about 5 years ago
Merge pull request #531 from github/adityasharad/actions/enterprise-versions-upstream-only

Actions: Run enterprise versions workflow only on the parent repo

f4e2dc747ed1c799c92be37feaa6374863aa12b4 authored about 5 years ago
Merge pull request #527 from github/update-v1-eeaefb60

Merge main into v1

6764ac6d017d2e52c402a3d4e177647767cb2ec6 authored about 5 years ago
Actions: Run enterprise versions workflow only on the parent repo

Don't run the cron workflow on forks, since they lack the necessary secrets.

a55e7e1f678da9c5ba852ff728acc2156bd19948 authored about 5 years ago
Cleanup CodeQL DBs and output their location for later steps

ddb83a462d613a0389720d7fa56aac9d807f5a62 authored about 5 years ago
Add some dependencies for uploading artifacts

0cbd4b56d3a8f69ac3322cce0178434fc16a86ab authored about 5 years ago
Address comments

44c6b336426c70e8b8246fd006b8b7ecb6b08cc0 authored about 5 years ago
Check available languages

4f51b8c47e42f90728f75e4e4a2f00a9deb5322c authored about 5 years ago
Add bump runner version whenever action is versioned

Ensures that the runner version is bumped along with the action version.

ea89b06c41e8e2a1fe55f2aff630bb3759581527 authored about 5 years ago
Merge pull request #517 from github/aibaars-additional-packs

Use --additional-packs instead of --search-path

eeaefb6054efa5cda69cac5e6d97ed3d24c5b8ff authored about 5 years ago
Merge branch 'main' into aibaars-additional-packs

c3e0f887ab11958806ba966608f5309fdb899a2d authored about 5 years ago
Merge pull request #518 from github/aibaars-no-queries

Ensure queries[language] objects are initialized

1ad5a6c1be83cb3e4c8ded3f32b04ef8953031c1 authored about 5 years ago
Fix tests

6a14accb41f259a6e64250c9e6b4d9437da77226 authored about 5 years ago
Check queries in initConfig

84bec4d1166db1173515f891822925adabab87a5 authored about 5 years ago
Remove superfluous if

9aca271fbbece06d13568d5b106b67bb85aff167 authored about 5 years ago