github.com/github/codeql-action
Actions for running CodeQL analysis
https://github.com/github/codeql-action
40fb1f3f00ca7fe35a78a2cce6f09f9900fbb1b1 authored about 5 years ago
Add baseline metrics for lines of code
03f029c2a15a75961a2724371dcbbab4bd33ce47 authored about 5 years agoMerge main into v1
83b730ea827708d0d85ff00705628e78922d9547 authored about 5 years agoBump ssri from 6.0.1 to 6.0.2 in /runner
7c5b1287d58d3ebecc383466cbb89cd7237526e2 authored about 5 years ago
Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2.
- [Release notes](https://github....
Add the github-linguist package
e266dfb63e46d1c717e9d13e880c7169ca82def8 authored about 5 years agob6b197e0ad7dcf52f5232c20f6e61fd331a9e141 authored about 5 years ago
Introduce our own toolcache implementation for use by the runnner
ba64dfb95930f3daf493c5ef9e77ee105135a921 authored about 5 years ago27bf3a208dfdd22e8822c5f7634e2004c24a32b0 authored about 5 years ago
8207018b75d3c166a2f8e59a36eb91bb8c18a6bd authored about 5 years ago
ce467e7e36259c7a5874cdc6176123d24d49f441 authored about 5 years ago
This commit only adds a single package and all of its transitive
dependencies. The github-lingui...
643bc6e3ed4023c8aa385aa042c1e251eb4e49be authored about 5 years ago
7e85b5d66ae0cf5c6cf731a496c9041c47111b50 authored about 5 years ago
8c91ba83e25edce4fa576e797296d24c567b9b15 authored about 5 years ago
Merge main into v1
429ece1037ff31112651b25dd9434e84408d67a7 authored about 5 years agoupdate bundle to 20210421 (CLI 2.5.2)
896b4ff18195fa0d4e2adc7729b2ffab1d5dc61e authored about 5 years agocb4c96ba60767604b5f6b25c20691fc2b6b6ad0d authored about 5 years ago
46517cfb47263af67e971f28d1e370e81b591353 authored about 5 years ago
Merge main into v1
75dbb28e2fb2c13281cc2e031cc6fc44fbcd0b9e authored about 5 years agoIgnore non-string values in populateRunAutomationDetails
1fa35632f23437356985bfd3104919477b0128ec authored about 5 years ago496bf0ec113ae59592ef3cd28e4e88556f3aa5b8 authored about 5 years ago
Merge main into v1
9db4c5714ed41829f23ce6363a8d9c62fe08fd31 authored about 5 years agoAdd automationdetails id to runs
8bd2b3516b0b8122ac06f60fabd59f7d1c527422 authored about 5 years agobc14da99c52c82b7756b53a334a0fb673e6b586d authored about 5 years ago
351d36fd18578fcb535ee638d9ff70b2a0c97c6b authored about 5 years ago
This commit uses a third party library to estimate the lines of code in
a database that is to be...
And explicitly document the advanced --trace-process-name and
--trace-process-level args.
0ece0d074bb5b9c902d275e1929f231c6dcf7f36 authored about 5 years ago
de611b2de33c6b32091a39a24e4a8f8b69875031 authored about 5 years ago
47755f0910accb57d316c598e744b742e86a7a00 authored about 5 years ago
PR checks: Run integration tests against both `tools: null` and `tools: latest`
0c2281fb0674b1b3cfbcc7edd9ef8ce7c1533422 authored about 5 years agofcf08636136d691ca2b87170615bd3ada812217f authored about 5 years ago
Create a prerequisite job that runs the init step twice, with `tools: null` and `tools: latest`....
8a00ebe607a1b9acd9576c70c9b789f4ca6a9ebe authored about 5 years agoCreate a prerequisite job that runs the init step twice, with `tools: null` and `tools: latest`....
64b50fa2a6301f4801faa50d0636e138210f5e3c authored about 5 years ago
This allows users to specify a different token for retrieving the
codeql config from a different...
This allows users to specify a different token for retrieving the
codeql config from a different...
Create a prerequisite job that runs the init step twice, with `tools: null` and `tools: latest`....
51b1d7d81f882fef7a53cd961b292fe0addf62fb authored about 5 years agoCreate a prerequisite job that runs the init step twice, with `tools: null` and `tools: latest`....
6b4df91bd26fb11eefd044e891a26935ab0485a1 authored about 5 years ago
See https://github.com/oasis-tcs/sarif-spec/pull/490
See #418
Note that this changes the sarif ...
6aebd1b98acb749c5ed1719c9c965678c44ee194 authored about 5 years agoAlways test against both the default and latest CodeQL bundle.
This improves test coverage shor...
757ff9962fcfa3bb8e282e019490646edde535f2 authored about 5 years agoAlways test against both the default and latest CodeQL bundle.
This improves test coverage shor...
f9a19da7bf433d625a6766a0afbca7d853cb4015 authored about 5 years agoMerge main into v1
ed446be54b13a749bc037473d9b74a629b843832 authored about 5 years ago8a1d7c290f29d65d0ce3362ced5ec80b970f88f8 authored about 5 years ago
Bump y18n from 4.0.0 to 4.0.1 in /runner
7f9fb10a743fec70b6960fc8fdb0e948c144ccfe authored about 5 years ago2f9f143d7354d9cafe1efc98c39c2a5ef21bb3f4 authored about 5 years ago
Bump y18n from 4.0.0 to 4.0.1
356d7a06379c02e43dff66b4402120154ad2b092 authored about 5 years ago578f9fc99ea77cb621e5bf8884a45a97f318c74d authored about 5 years ago
def266fc62edefc74a3397fdb29d5f31f6dc7a76 authored about 5 years ago
Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.1.
- [Release notes](https://githu...
Bumps [y18n](https://github.com/yargs/y18n) from 4.0.0 to 4.0.1.
- [Release notes](https://githu...
Add special error message case for dependabot
8f0d3f75419faf555a671507384859e27fcbd042 authored over 5 years agoca27066d0902402d7391910430f6c106e3f71f15 authored over 5 years ago
2f93805cef20cf8eb67f06678187557cf5bf5555 authored over 5 years ago
d4edded3ea6e1565d81f88c2a35b4e407c0e93a6 authored over 5 years ago
Merge main into v1
f8f120e93b69f60254fcbaf9659a10429c0a9529 authored over 5 years agoUpdate CodeQL bundle to 20210326
bf8daada4078c4ce2ccb427b85f964ea13399437 authored over 5 years agoThis reverts commit d8216decae791a8c407980649d66810abc14e9f9.
996a90bf48f9fb515238305b4466fa4830fb700e authored over 5 years ago1d93ad95c139ebedd00606d06130cd385795b92e authored over 5 years ago
Fix rev-parse errors
bb012c407093079748e2a9fefbaf2f3df57253ca authored over 5 years agoFixes the rev-parse issues caused by https://github.com/github/codeql-action/pull/428
ba14abbca7731c7911f0fdc07842a033694fe7d8 authored over 5 years agoFix race condition with actions/checkout@v1
972dc3e3f940563d62a9164a5435ac35e40a09c7 authored over 5 years ago916509910329e92e7c236a7bc4f93adf2c7e1b35 authored over 5 years ago
36a9516acc7409ae81f74fb88a5b060a3c25cc2d authored over 5 years ago
Merge main into v1
687b7b73f7538d45dda648139eec88b4d82b486f authored over 5 years agoWork around a race condition in actions where sometimes GITHUB_SHA != git rev-parse head
ef92c5ac5f78846179016d7f57ab7fc2587b7f42 authored over 5 years ago5d467d014bf485e07b22b913213f84250c8c4a1b authored over 5 years ago
This reverts commit e70007508276222791aefef8c4963df738df804a.
f8e31274f41a4dc87dd4e0f90ba16d9d4cfdf573 authored over 5 years agod2f4021928711954b7e618bed98c5fb609865a18 authored over 5 years ago
Specifically, some third party tools do not include a `results`
block for runs when there is an ...
ffd96b38fb2e2f90b49fd5eb4413cbadad138480 authored over 5 years ago
Make unguarded-action-lib better at ignoring uses of toolcache
0f834639e4d5b844bcf0d8a5abebd37646f08aef authored over 5 years ago5004a54ed386e4f5b0365b0a6ca21ad22daf36f8 authored over 5 years ago
Make control flow cleaer to fix unguarded-action-lib alert
8373707722c5ecd45ae3ddabb8b0e7afaf21ef66 authored over 5 years ago378f30f95d6916fbc5cb11336c3ae9a8e5354550 authored over 5 years ago
d698cb3d2b3c3092336f63dd584d58fb5a793e58 authored over 5 years ago
09024e50d4d70ffcac27c2b73b0e5bb0811d6e2e authored over 5 years ago
Bump elliptic from 6.5.3 to 6.5.4 in /runner
daff33213e600a1f83f54762a08f8d24c075ebd2 authored over 5 years ago4c3c9b0d41bd50a02d66d9b5ce099f5d7d6551c4 authored over 5 years ago
Merge main into v1
0ed969c530f06052046486a0fc066f168017ac87 authored over 5 years ago
Bumps [elliptic](https://github.com/indutny/elliptic) from 6.5.3 to 6.5.4.
- [Release notes](htt...
When downloading the CodeQL bundle, only use the GitHub AE endpoint on GitHub AE, and check it f...
cfec2bbc35f12252507dd0de0e172c08b65e8c13 authored over 5 years ago18f6367c466320697bf48a35cf978506bfaacc7f authored over 5 years ago
Merge main into v1
df9359871ea0400ce97cddea1e9fedfb7963446d authored over 5 years agoUpdate CodeQL bundle to 20210308
2fcc4eb0303d2988a72a9bc039ad744556bf34f6 authored over 5 years agoThis reverts commit c78d81fa3eaa03f534996fb8a40162e4a6ecf8cf.
27ed6ac80499b8849825344ebc58ad671a0ed296 authored over 5 years agobcca43b3918c6e39eb2b9556c7ad21ac32eada5e authored over 5 years ago
Merge main into v1
5c4e11807def07f3da608f190ec94bd6c0581499 authored over 5 years agoFix the Pip download URL.
6ddfab14f6aba904be98af67c97d34bafeafb357 authored over 5 years ago039625a3cec2be7206c26b0611885468d631ee6a authored over 5 years ago
Update CodeQL bundle to 20210304 / CLI 2.4.4
ce6b93eb0a12049135a3f988d5e44876953a010f authored over 5 years agoMerge main into v1
145b51c2705d019b1322b4fd6fcd0ee37f132769 authored over 5 years agobb51ece0b4fd20e770abbe9aba109a96e9277a7e authored over 5 years ago
This reverts commit 2f4f48f7671e6ef5d1e2e3aa0e65a25c32b6f222.
fb01860db60f2e065c1489b45986b3daba63aa8a authored over 5 years ago2f4f48f7671e6ef5d1e2e3aa0e65a25c32b6f222 authored over 5 years ago
0ff9c449b778153c4abd05c8499e00bcf7a456eb authored over 5 years ago
Check if this mitigates the go 1.16 issue
bde489c632294cab75a68da470db1d409bdddc8a authored over 5 years ago324d987bc6338fa165267be39fa07aa8c76f0ffe authored over 5 years ago
Merge main into v1
e40d00393db46d7379c6e2aef19204292f8ad792 authored over 5 years ago
spelling: executable
spelling: github
spelling: javascript
spelling: latest
spelling: occurred
s...