github/codeql-action
1
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2025-12-28 02:00:12 +08:00
Code Issues Packages Projects Releases Wiki Activity
4,588 Commits 297 Branches 500 Tags
8779d9138420c3abb50223fe9ed11940ea6ed3cc
Commit Graph

4588 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Paolo Tranquilli
8779d91384 Merge branch 'main' into redsun82/cpp-deptrace-pr-checks 2023-10-24 11:27:38 +02:00
Paolo Tranquilli
959337a156 C++: fix autobuild pr-checks for macOS 2023-10-24 11:10:13 +02:00
dependabot[bot]
9734ecd5b5 Bump the actions group with 1 update (#1965) 
Bumps the actions group with 1 update: [actions/setup-node](https://github.com/actions/setup-node).

- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-23 11:55:44 -07:00
Paolo Tranquilli
54e4af648d C++: fix autobuild pr-checks to latest codeql-cli version 2023-10-23 17:42:59 +02:00
Paolo Tranquilli
d53a59d051 C++: add deptrace pr-checks 2023-10-23 10:57:55 +02:00
Dave Bartolomeo
a291b7c6a3 Merge pull request #1962 from github/mergeback/v2.22.4-to-main-49abf0ba 
Mergeback v2.22.4 refs/heads/releases/v2 into main
 2023-10-20 12:52:08 -04:00
github-actions[bot]
64f799d15e Update checked-in dependencies 2023-10-20 16:22:27 +00:00
github-actions[bot]
1e9b364483 Update changelog and version after v2.22.4 2023-10-20 16:21:06 +00:00
Dave Bartolomeo
49abf0ba24 Merge pull request #1961 from github/update-v2.22.4-63470275e 
Merge main into releases/v2
v2.22.4 		2023-10-20 12:18:49 -04:00
github-actions[bot]
907abca61b Update changelog for v2.22.4 2023-10-20 15:24:21 +00:00
Dave Bartolomeo
63470275e7 Merge pull request #1953 from github/update-bundle/codeql-bundle-v2.15.1 
Update default bundle to 2.15.1
 2023-10-19 11:34:45 -04:00
Dave Bartolomeo
b98a636a6b Merge branch 'main' into update-bundle/codeql-bundle-v2.15.1 2023-10-19 10:38:22 -04:00
Angela P Wen
4a368f64ad Add announcement on Node 16 deprecation (#1960) 2023-10-18 23:00:03 +00:00
dependabot[bot]
77bbb99abd Bump urllib3 in /python-setup/tests/poetry/python-3.8 (#1957) 
Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.26.17 to 1.26.18.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/1.26.17...1.26.18)

---
updated-dependencies:
- dependency-name: urllib3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-17 15:34:08 -07:00
dependabot[bot]
a75a0d5716 Bump urllib3 in /python-setup/tests/poetry/requests-3 (#1956) 
Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.26.17 to 1.26.18.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/1.26.17...1.26.18)

---
updated-dependencies:
- dependency-name: urllib3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-17 15:33:48 -07:00
dependabot[bot]
aa55b87f87 Bump urllib3 in /python-setup/tests/pipenv/requests-3 (#1955) 
Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.6 to 2.0.7.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/2.0.6...2.0.7)

---
updated-dependencies:
- dependency-name: urllib3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-17 14:33:37 -07:00
dependabot[bot]
b6b0833c3d Bump urllib3 in /python-setup/tests/pipenv/python-3.8 (#1954) 
Bumps [urllib3](https://github.com/urllib3/urllib3) from 2.0.6 to 2.0.7.
- [Release notes](https://github.com/urllib3/urllib3/releases)
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst)
- [Commits](https://github.com/urllib3/urllib3/compare/2.0.6...2.0.7)

---
updated-dependencies:
- dependency-name: urllib3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-17 14:33:15 -07:00
github-actions[bot]
0132448784 Add changelog note 2023-10-17 20:52:46 +00:00
github-actions[bot]
070e92e8fd Update default bundle to codeql-bundle-v2.15.1 2023-10-17 20:52:41 +00:00
Angela P Wen
bad341350a Add workflow_dispatch manual trigger (#1952) codeql-bundle-v2.15.1 2023-10-17 19:56:42 +00:00
dependabot[bot]
1d83e52e9a Bump the npm group with 5 updates (#1951) 
* Bump the npm group with 5 updates

Bumps the npm group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [@types/js-yaml](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/js-yaml) | `4.0.6` | `4.0.7` |
| [@types/sinon](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/sinon) | `10.0.17` | `10.0.19` |
| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `6.7.5` | `6.8.0` |
| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `6.7.5` | `6.8.0` |
| [nock](https://github.com/nock/nock) | `13.3.3` | `13.3.4` |


Updates `@types/js-yaml` from 4.0.6 to 4.0.7
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/js-yaml)

Updates `@types/sinon` from 10.0.17 to 10.0.19
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/sinon)

Updates `@typescript-eslint/eslint-plugin` from 6.7.5 to 6.8.0
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.8.0/packages/eslint-plugin)

Updates `@typescript-eslint/parser` from 6.7.5 to 6.8.0
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v6.8.0/packages/parser)

Updates `nock` from 13.3.3 to 13.3.4
- [Release notes](https://github.com/nock/nock/releases)
- [Changelog](https://github.com/nock/nock/blob/main/CHANGELOG.md)
- [Commits](https://github.com/nock/nock/compare/v13.3.3...v13.3.4)

---
updated-dependencies:
- dependency-name: "@types/js-yaml"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm
- dependency-name: "@types/sinon"
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: "@typescript-eslint/parser"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: nock
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update checked-in dependencies

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2023-10-17 19:41:41 +00:00
Michael B. Gale
d859d17bdb Merge pull request #1946 from github/mbg/unconditioal-go-warning 
Make Go path warning unconditional
 2023-10-13 16:37:25 +01:00
Henry Mercer
7e7f0cc085 Merge pull request #1948 from github/mergeback/v2.22.3-to-main-0116bc2d 
Mergeback v2.22.3 refs/heads/releases/v2 into main
 2023-10-13 15:22:36 +01:00
github-actions[bot]
1d83a6387b Update checked-in dependencies 2023-10-13 13:39:33 +00:00
github-actions[bot]
8e460e9e00 Update changelog and version after v2.22.3 2023-10-13 13:02:57 +00:00
Henry Mercer
0116bc2df5 Merge pull request #1947 from github/update-v2.22.3-82ba90b1d 
Merge main into releases/v2
v2.22.3 		2023-10-13 14:01:05 +01:00
github-actions[bot]
f5a984b113 Update changelog for v2.22.3 2023-10-13 12:31:28 +00:00
Michael B. Gale
325a0b06e9 Make Go binary path check unconditional 2023-10-13 10:26:39 +01:00
Michael B. Gale
632d58cb60 Update Go path documentation in analyze Action 2023-10-13 10:14:22 +01:00
Henry Mercer
82ba90b1d9 Merge pull request #1945 from github/henrymercer/authenticate-api-url 
Authenticate when downloading CodeQL Bundle from GHES API
 2023-10-12 19:02:05 +01:00
Henry Mercer
34f97d7a16 Merge pull request #1944 from github/henrymercer/sublanguage-file-coverage-fixes 
Enable sub-language file coverage during interpretation and update PR check
 2023-10-12 19:01:47 +01:00
Henry Mercer
74442e0a95 Add changelog note 2023-10-12 17:26:51 +01:00
Henry Mercer
bd32fab74f Provide token when downloading from GHES API 2023-10-12 17:26:42 +01:00
Nora
b584cf8321 Merge pull request #1922 from github/nora/add-commit-sha-to-database-upload 
Add commit sha to database upload
 2023-10-12 17:50:48 +02:00
Henry Mercer
761255a4a3 Merge pull request #1943 from github/mergeback/v2.22.2-to-main-d90b8d79 
Mergeback v2.22.2 refs/heads/releases/v2 into main
 2023-10-12 12:12:03 +01:00
Henry Mercer
346d5c4b07 Test sub-language file coverage in file baseline information check 
We can do this now that the nightly has a version number starting with
2.15.0.
 2023-10-12 11:58:09 +01:00
Henry Mercer
5950d13564 Enable sub-language file coverage in interpret-results too 2023-10-12 11:57:23 +01:00
github-actions[bot]
c1a0ad9a04 Update checked-in dependencies 2023-10-12 10:44:16 +00:00
github-actions[bot]
76a9f5c431 Update changelog and version after v2.22.2 2023-10-12 10:38:34 +00:00
Henry Mercer
d90b8d79de Merge pull request #1942 from github/update-v2.22.2-8a2cbabd4 
Merge main into releases/v2
v2.22.2 		2023-10-12 11:36:04 +01:00
github-actions[bot]
175f696a4d Update changelog for v2.22.2 2023-10-12 10:09:51 +00:00
Henry Mercer
8a2cbabd43 Merge pull request #1938 from github/update-bundle/codeql-bundle-v2.15.0 
Update default bundle to 2.15.0
 2023-10-11 13:14:25 +01:00
Henry Mercer
a5cf70c3f1 Merge branch 'main' into update-bundle/codeql-bundle-v2.15.0 2023-10-11 12:23:42 +01:00
Henry Mercer
a67b110795 Merge pull request #1937 from github/henrymercer/new-analysis-summary-bump 
Bump CLI version for new analysis summaries to v2.15.0
 2023-10-10 18:32:33 +01:00
Henry Mercer
0eb279015c Merge branch 'main' into update-bundle/codeql-bundle-v2.15.0 2023-10-10 17:20:48 +01:00
github-actions[bot]
275f994944 Add changelog note 2023-10-10 16:18:35 +00:00
github-actions[bot]
d5d445b7af Update default bundle to codeql-bundle-v2.15.0 2023-10-10 16:18:31 +00:00
Henry Mercer
2a7218bdef Bump CLI version for new analysis summaries to v2.15.0 
Earlier versions support new analysis summaries, but v2.15.0 improves
the quality of the summary messages.
 2023-10-10 16:42:34 +01:00
Henry Mercer
78bfd29301 Merge pull request #1935 from github/henrymercer/ref-sha-input-reduce-ci-load 
Remove 42 CI jobs by only running `ref` and `sha` input checks against a single CLI version
 2023-10-10 16:32:56 +01:00
Henry Mercer
dfb913f660 Merge pull request #1936 from github/dependabot/npm_and_yarn/npm-07540147dc 
Bump the npm group with 5 updates
 2023-10-10 14:42:19 +01:00