github/codeql-action
1
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2025-12-27 01:30:10 +08:00
Code Issues Packages Projects Releases Wiki Activity
4,661 Commits 297 Branches 500 Tags
9f150ba795bcdde5bcd148bb808cc028dc662bd8
Commit Graph

625 Commits

Author SHA1 Message Date
dependabot[bot]
9f150ba795 Bump the actions group with 1 update (#2004) 
* Bump the actions group with 1 update

Bumps the actions group with 1 update: [actions/github-script](https://github.com/actions/github-script).

- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v6...v7)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump `github-script` version to v7

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Angela P Wen <angelapwen@github.com>
 2023-11-20 15:32:23 -08:00
Andrew Eisenberg
10f05151c5 Merge pull request #1981 from github/aeisenberg/delete-analysis-after-upload 
Delete analysis after uploading
 2023-11-16 04:32:07 -08:00
Chris Smowton
e46740a99e Merge branch 'main' into update-bundle/codeql-bundle-v2.15.2 2023-11-13 11:42:59 +00:00
Chris Smowton
59252d9bfb Update setup-swift deficiency compensation 2023-11-13 11:33:19 +00:00
Andrew Eisenberg
04451e072f Delete analysis after uploading 
The analysis is purposefully failing. We don't want a failed analysis
sitting in the security center since this can cause some internal
checks to erroneously fail.
 2023-11-10 13:26:01 -08:00
Andrew Eisenberg
82284f1b28 Fix failing workflows 
Ensure that pythion 3.11 is used for older CLIs on windows.
 2023-11-10 13:19:40 -08:00
Andrew Eisenberg
91733ada76 Remove reference to CODEQL_RUNNER 2023-11-02 07:50:32 -07:00
Andrew Eisenberg
7c60ff7ad6 Use setup-python@v4 2023-11-02 07:49:59 -07:00
Andrew Eisenberg
9ef69a2c7a Be more precise about when to use python 3.11 
Only run use 3.11 on versions of of the CLI that we know don't support
3.12.
 2023-11-01 18:10:09 -07:00
Andrew Eisenberg
bd4005aa6a Force python 3.11 for macos 
3.12 does not work.
 2023-11-01 16:01:27 -07:00
Andrew Eisenberg
da4c46015a Use the correct action input parameter 2023-10-31 17:15:51 -07:00
Henry Mercer
f3b55862ea Check out the right branch in rebuild.yml 2023-10-26 19:56:04 +01:00
Henry Mercer
3fc281e079 Add workflow to rebuild the Action on a label 2023-10-26 14:01:43 +01:00
Paolo Tranquilli
f1b64d85e4 Sync PR checks 2023-10-25 13:34:17 +02:00
Paolo Tranquilli
838be48ce0 C++: tweak deptrace checks 2023-10-24 11:31:04 +02:00
Paolo Tranquilli
8779d91384 Merge branch 'main' into redsun82/cpp-deptrace-pr-checks 2023-10-24 11:27:38 +02:00
Paolo Tranquilli
959337a156 C++: fix autobuild pr-checks for macOS 2023-10-24 11:10:13 +02:00
dependabot[bot]
9734ecd5b5 Bump the actions group with 1 update (#1965) 
Bumps the actions group with 1 update: [actions/setup-node](https://github.com/actions/setup-node).

- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-23 11:55:44 -07:00
Paolo Tranquilli
54e4af648d C++: fix autobuild pr-checks to latest codeql-cli version 2023-10-23 17:42:59 +02:00
Paolo Tranquilli
d53a59d051 C++: add deptrace pr-checks 2023-10-23 10:57:55 +02:00
Angela P Wen
bad341350a Add workflow_dispatch manual trigger (#1952) 2023-10-17 19:56:42 +00:00
Henry Mercer
346d5c4b07 Test sub-language file coverage in file baseline information check 
We can do this now that the nightly has a version number starting with
2.15.0.
 2023-10-12 11:58:09 +01:00
Henry Mercer
d52a751f8f Only run ref and sha input checks against a single CLI version 
These checks aren't affected by the CLI version, so just run them with
the default CLI.
 2023-10-09 12:09:21 +01:00
Andrew Eisenberg
669c61022c Add a feature flag to turn this off for newer versions of codeql 2023-10-06 14:17:01 -07:00
Andrew Eisenberg
028bacb8e9 Add integration test 
Also:

- Update changelog
- Fix comments in check_python script
 2023-10-06 13:52:34 -07:00
Henry Mercer
27235304e0 Merge pull request #1923 from github/henrymercer/fix-resolve-environment-aliases 
Fix using the `resolve-environment` Action with language aliases
 2023-10-05 18:48:18 +01:00
Henry Mercer
f243294ab7 Extend PR check to test resolve-environment works with language alias 2023-10-05 15:57:53 +01:00
Michael B. Gale
4154eb799b Fix: workflow name and description 2023-10-05 13:29:18 +01:00
Michael B. Gale
faf7528b44 Add integration test for Go workaround diagnostic 2023-10-05 13:11:37 +01:00
Michael B. Gale
c8dd2bc90f Add integration test for workaround 2023-10-05 10:46:10 +01:00
Michael B. Gale
8ac187720c Allow other patch versions of Go in workflows 2023-10-04 19:46:36 +01:00
Michael B. Gale
d718153f0a Use Go 1.21 for Go tracing checks 2023-10-04 17:23:51 +01:00
dependabot[bot]
3dd4ad872b Bump the actions-setup-swift group (#1912) 
Bumps the actions-setup-swift group in /.github/actions/setup-swift with 1 update: [swift-actions/setup-swift](https://github.com/swift-actions/setup-swift).

- [Release notes](https://github.com/swift-actions/setup-swift/releases)
- [Commits](cdcbe8e35d...f51889efb5)

---
updated-dependencies:
- dependency-name: swift-actions/setup-swift
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-setup-swift
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Angela P Wen <angelapwen@github.com>
 2023-10-03 15:21:00 -07:00
Henry Mercer
37a2d1fe3c Remove ML-powered queries PR checks 2023-10-02 17:29:54 +01:00
Henry Mercer
f59bf3c458 Fix expected artifact directory name for semver versions 2023-09-27 19:44:41 +01:00
Henry Mercer
6e3f5b0184 Prompt maintainers to start process when GHES version deprecated 2023-09-27 19:40:26 +01:00
Henry Mercer
219066c343 Fix error in generated workflow 2023-09-27 16:41:29 +01:00
Henry Mercer
467bfa1cff Update CodeQL versions tested in PR checks 2023-09-27 16:21:16 +01:00
Henry Mercer
253d9cf358 Matrix CodeQL CI job over all runner images 2023-09-18 12:56:35 +01:00
Henry Mercer
f3051ed54e Merge pull request #1883 from github/henrymercer/language-aliasing 
Add support for aliasing languages like C/C++, Java/Kotlin, and JS/TS
 2023-09-15 12:00:12 +01:00
Henry Mercer
2d646a3990 Merge pull request #1887 from github/henrymercer/add-token-to-update-dependencies 
Add GitHub token to update dependencies workflow
 2023-09-15 10:23:49 +01:00
Henry Mercer
a9313c9016 Merge pull request #1881 from github/henrymercer/fix-update-ghes-versions 
Update ignored version number in GHES versions automation
 2023-09-15 10:21:57 +01:00
Henry Mercer
2c22b37a68 Add GitHub token to update dependencies workflow 2023-09-14 18:14:24 +01:00
Henry Mercer
897ddf2662 Add PR check 2023-09-14 16:11:20 +01:00
Henry Mercer
8b733e71a6 Update ignored version number in GHES versions automation 2023-09-14 12:27:25 +01:00
Chuan-kai Lin
77a54b68d4 Remove --pr in update-dependencies.yml 2023-09-13 09:49:02 -07:00
Henry Mercer
37d8d03606 Merge pull request #1868 from github/henrymercer/improve-dependency-update 
Improve usability of update dependencies workflow
 2023-09-05 16:38:52 +01:00
Henry Mercer
e6cb4feff9 Improve usability of update dependencies workflow 2023-09-05 16:36:41 +02:00
dependabot[bot]
321d3e057d Bump the actions group with 1 update 
Bumps the actions group with 1 update: [actions/checkout](https://github.com/actions/checkout).

- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 18:00:31 +00:00
dependabot[bot]
fbb8195699 Bump the actions-setup-swift group 
Bumps the actions-setup-swift group in /.github/actions/setup-swift with 1 update: [swift-actions/setup-swift](https://github.com/swift-actions/setup-swift).

- [Release notes](https://github.com/swift-actions/setup-swift/releases)
- [Commits](65540b95f5...cdcbe8e35d)

---
updated-dependencies:
- dependency-name: swift-actions/setup-swift
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions-setup-swift
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-08-21 17:39:22 +00:00