Remove the line to disable the "github/no-then" rule.

Fix deprecated method Buffer.new

Introduce parameter object for API params that travel together

Previously, most tests were using https://github.com and only the first was using https://github...

Merge main into v1

Make sure a Python 2 pip is installed

In the README of this repo, it's suggested to use the `ubuntu-latest` environment.
That environ...

Add a query to detect binary planting vulnerabilities.

Fix typos in source code, logging, comments, and config files

Update code so "no-shadow" passes

Skip Runner integration tests on pull requests from forks.

Two minor code fixes

Abort CodeQL action if the status cannot be reported

Fix a minor issue in the update-release-branch.py script that performs a
call to `sorted` but do...

The tracer-config.test.js file contained a duplicate of the statement:

process.env["SEMMLE_DE...

- Rename "toolrunnner" (three 'n') to "toolrunner"
- Rename "relativeFilepaht" to "relativeFilep...

Rename one instance of "path" to avoid shadowing.

Rename various instances of "hash", shadowing the function with that
name.

Rename shadowing "uri" argument to the more explicit "artifactURI".

Rename throwaway variable "suite" to "found" when assigned from "find".

Rename local variable "...

Rename "queries" variable in test cases to "testQueries" to avoid
shadowing it in a subsequent h...

Two simple variable renames from "path" to "paths" since the types are
arrays of strings (not ju...

Duplicate use of "_" placeholder argument name. This change may conflict
with #192.

Remove the "no-shadow": "off" override and replace it by enabling
"@typescript-eslint/no-shadow"...

Check CODEQL_EXTRACTOR_GO_TRACE and treat Go as a traced language

Ensure unqualified program names are present on `PATH` before executing them.

Until there is a more robust versioning system it is probably safest to require endpoint compati...

Put more fine grained logic around which errors we ignore and process.
Re-instate status reporti...

Send action ref and tool version in status reports

Enable the CodeQL SARIF multi-cause markdown flag.

Merge main into v1

Don't use the word "trace" in log messages

Co-authored-by: Sam Partington <sampart@github.com>

Detect Agent.Worker.exe

Make use of the `GITHUB_ACTION_REPOSITORY` environment variable if it is set.

Change suggested workflow to analyse merge commit

fix: small typo in import-action-entrypoint.ql

Update v1 with new CodeQL bundle

Update default CodeQL bundle version

Merge main into v1

Add a codeql-path output to the init action

As this is an advanced usage it makes more sense to work to getting this included in the documen...

Also add example from README into workflow to confirm it is accurate.