github.com/github/codeql-action
Actions for running CodeQL analysis
https://github.com/github/codeql-action
Merge main into v1
37f75f1702c69e1745e3dd7a591b6b8130d34e13 authored about 5 years ago9c28349a87004b39664709533bb4f91e936aaa1d authored about 5 years ago
028a76e6db2a9816cbbd72d2c04bd6143fd48f2c authored about 5 years ago
Fix update-release-branch-fix.py
0b1f4a016a46112bd7291b1e371e32bb18f3f489 authored about 5 years agob4914d76a20edb3b8d876ebfcb71ea685c71c632 authored about 5 years ago
Only attempt to upload on dotcom
69c30da5ad88bf59aaf9760fb9eab8cda0a8c794 authored about 5 years agoProvide a better error message
6fc1280a3c873ad55e11fd1c2663af330017f909 authored about 5 years agoThis can be removed when 2.5.6 is released.
efea9238bc5dfa0d26fb197cb8f903b93deed602 authored about 5 years ago
This change ensures that the the script can handle
commits with no committer in them. This will ...
b985a67b973bb2c5bdcb1fc13f777908c9ae131c authored about 5 years ago
c989ee7b390460b9335fffea91f88391d0aed0b2 authored about 5 years ago
Check if on default branch before uploading database
366b68eda082e36090a60a50564e653fa4e236b2 authored about 5 years agod693b3cb0d42cced0e590ecfbf86b78244157184 authored about 5 years ago
Allow the codeql-action to run packages
e284efba726c9a5e9afe7daf1dfe7b4c4e410666 authored about 5 years ago20aafcd90cbefd2ced81595f43790136c9cf9963 authored about 5 years ago
429471162a5e463c262bb85dd63edba8f8e8bc7c authored about 5 years ago
2a9a602a5eeddc02c5afc8e76ccdb059ad542dfa authored about 5 years ago
This was causing the workflow to run and create tags after merging
main into a branch.
Cleans up the output logs even more. These entries don't add any more
information since everythi...
Also, make the baseline count message less awkward sounding.
a2e96a4c783ac47007774572298798edfdde0909 authored about 5 years agoSlightly simplifies the `parsePacks` function.
96e7de35af4d54c495db23fd2a1e70d295d03225 authored about 5 years ago
Extract a `runTool` function that captures the stdout and returns it.
A small refactoring that r...
db01c78de0f2313a6ec21d8b9dd4ffa433f23294 authored about 5 years ago
82388fd94a28795139f1184a806792c659beaa37 authored about 5 years ago
babcc1b793d2ba98863356f45a2e5a2f6c62277d authored about 5 years ago
06df98a5131406227302e966e5edcb4fadf5e6e8 authored about 5 years ago
0ea20c5b326d9252797031646e8b03a7d3fe1a22 authored about 5 years ago
Uses two pre-existing packages to run some simple queries on a javascript
database.
1. Better malformed data guard for PackDownloadOutput
2. Fix Packs type
3. Remove TODO in init-a...
Mergeback v1.0.1 refs/heads/v1 into main
9c13fefc68f3282093e35a410730a3ade51ad56c authored about 5 years agoa69f472ee95a01a0f7d0bc73fc953bdbfa00ba89 authored about 5 years ago
fbb9046bf6f5baa8736d8ed9b125f0a782b22bcc authored about 5 years ago
9e6b46a9e6b809e64e77e2f883e6136db3c16a46 authored about 5 years ago
Remove quotes around `$DRAFT` argument
ece2addcff6617641ef7caf0016fb0fd4c2a9962 authored about 5 years ago
gh will complain if there is an empty `""`, which is the case if
`$DRAFT` is unset.
Merge main into v1
675843d09a1acbbaecd4a337def2cf74f5809caf authored about 5 years ago511fe43abeb9bf6441029260faa2843ecd17fff2 authored about 5 years ago
c09500540ce28edc3937e9d117595d98e3e763f5 authored about 5 years ago
02e8dcfe9cac6b6ae038d8578b850d007c925682 authored about 5 years ago
68d7c5f62003efd277c678beffe111b446f7aa0d authored about 5 years ago
Add back retrying.
242fd828aafa0b220c6a617507ca0eb48c4ec17c authored about 5 years ago48efe6e2828325706ec49bc97463e2fa4357aff6 authored about 5 years ago
f8c65b775d673c9d3a7080915aed1de3908d7c65 authored about 5 years ago
d87945e9fdd0f7f2b9528dfafa8e231e4fe77606 authored about 5 years ago
Use strings instead. They are easier to serialize and deserialize.
06687e95c8495c63469eb5f9b19c2ddca3aba075 authored about 5 years agoDuring the analyze phase.
9b5753ab00a2da87acc917c82c2172f3d7af7528 authored about 5 years ago6cee818bf3e428767056823adb2070f272b2f2b9 authored about 5 years ago
41dff7fce343d9005450a81801fe3ef31096bf7b authored about 5 years ago
2cc885d66e02027902d0c4757d5f5dc92e7f8904 authored about 5 years ago
1644ade51407513f415e416146ba9fd4e72543fb authored about 5 years ago
Add environment variables to signal feature and version to the CLI
cbdf0df97be3a7cc448a09cf1a4d219c09aec646 authored about 5 years agoAlso, move `getTemporaryDirectory` back to `actions-util`.
f60ef170b0653e24b3c2dfe107ff3114dff50aaf authored about 5 years ago
This commit adds a `packs` option to the codeql-config.yml file. Users
can specify a list of ql ...
Must access the env var directly in order to avoid recursive calls to
`getRequiredEnvParam`.
082575fbc3e75156dc940d83991a187574cd15e6 authored about 5 years ago
Update unguarded-action-lib.ql to catch uses of actions-util.ts
1ec2fd7ea1ce1ed6a470ec5b3275541212f825e5 authored about 5 years ago61b561867b15b37b0a272ea2de81d863ecbb5dc9 authored about 5 years ago
Update supported GitHub Enterprise Server versions.
4ac9009dfef6a293841c94e76a36c4000aac714a authored about 5 years agoe8486b0d6c974fedf917171315cdebfb5077d28e authored about 5 years ago
739e14d8792f69922c3f935cd28945f3e7298ad8 authored about 5 years ago
Use commander preAction hook for setMode
1d05ad75765dbfb0cbd9d86eca526b5a5fbf94b9 authored about 5 years ago2fee1242f43c82253f4fe15c5885c252eaa2eedb authored about 5 years ago
This is a functionality that never worked perfectly and hasn't been
used for a while.
This allo...
2c2ebdc5c559ebcf98545c6d958b0654e806dfd6 authored about 5 years ago
This PR ensures environment variables are set before any invocation of
the CLI. Here is a list ...
Fix the mergeback workflow
4b4a5ee9d122c19bb1c165b76f8705c22e0b730e authored about 5 years ago
Hooks are new to commander v8. We can use hooks to ensure that `setMode`
is called before every ...
The removeNPMAbsolutePaths check requires no newlines at the
end of the file. This ensures that ...
f0e82b7d6380f19c295ce57ed152fa695cdeb9dc authored about 5 years ago
This should have happened in a mergeback PR, but the workflow to
generate this was broken.
7d701d23e374453de5f6c141ebd22ada8de74592 authored about 5 years ago
We need to tag and mergeback if the tag does _not_ already exist.
981b5cb0127532ec149f6e2fb6f335c7279cd15a authored about 5 years agoSend version and mode to code scanning via user agent
ca9450846f61bbf95924d090e452e54f91e0e2db authored about 5 years ago1a4cdd35b96b47f22551ac6e2aef681c50062f36 authored about 5 years ago
Update the ql queries to account for change in how we look for runner
Previously, we guarded bl...
4164096c0da9e4e6abfe2b9814524384399d2c35 authored about 5 years agoFix wording in README
fad7cc482d0fd13b353fc1a7653f4d9ec309d4c9 authored about 5 years agoMerge main into v1
4917d3c7e89fbbaf67ce4697fa42cd195979dbbd authored about 5 years agoMinor change.
dd66f4484defcc639eb709d8c5c1931f991ef4b2 authored about 5 years agocf57db7e1f4904898a63bdc5d910c60a932c33ec authored about 5 years ago
d9a17baf2f062e6bee6163cd897e7ec2e311bfad authored about 5 years ago
Analyze: Log analysis summaries for custom queries
ff75ec7f7d6bd4463e6e15ef239717b34b7f4313 authored about 5 years ago1362396c57d0275a6ca2024adfa59b1682fb9869 authored about 5 years ago
2338fe5db5446e508c95db475de0e3038a1fd047 authored about 5 years ago
Add release and mergeback workflows
2ccefaccfe00c8c6440fb405672db01dd69db6b5 authored about 5 years ago8b0110800ef18c3af8e651fbbd81ce621c180e97 authored about 5 years ago
Add Ruby as a possible language
12b2dc68b9384f590b559c00daea7c0c6f5aab0c authored about 5 years ago213f5407e2c94c1e79502b1485892299cfd1d1ef authored about 5 years ago
Actions: Run enterprise versions workflow only on the parent repo
f4e2dc747ed1c799c92be37feaa6374863aa12b4 authored about 5 years agoMerge main into v1
6764ac6d017d2e52c402a3d4e177647767cb2ec6 authored about 5 years agoDon't run the cron workflow on forks, since they lack the necessary secrets.
a55e7e1f678da9c5ba852ff728acc2156bd19948 authored about 5 years agoddb83a462d613a0389720d7fa56aac9d807f5a62 authored about 5 years ago
0cbd4b56d3a8f69ac3322cce0178434fc16a86ab authored about 5 years ago
44c6b336426c70e8b8246fd006b8b7ecb6b08cc0 authored about 5 years ago
4f51b8c47e42f90728f75e4e4a2f00a9deb5322c authored about 5 years ago
Ensures that the runner version is bumped along with the action version.
ea89b06c41e8e2a1fe55f2aff630bb3759581527 authored about 5 years agoUse --additional-packs instead of --search-path
eeaefb6054efa5cda69cac5e6d97ed3d24c5b8ff authored about 5 years agoc3e0f887ab11958806ba966608f5309fdb899a2d authored about 5 years ago
Ensure queries[language] objects are initialized
1ad5a6c1be83cb3e4c8ded3f32b04ef8953031c1 authored about 5 years ago6a14accb41f259a6e64250c9e6b4d9437da77226 authored about 5 years ago
84bec4d1166db1173515f891822925adabab87a5 authored about 5 years ago
9aca271fbbece06d13568d5b106b67bb85aff167 authored about 5 years ago