github/codeql-action
1
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2025-12-27 01:30:10 +08:00
Code Issues Packages Projects Releases Wiki Activity
6,814 Commits 297 Branches 500 Tags
df2a830ca4348a013f4804b56f41795f408f1e4e
Commit Graph

6814 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Arthur Baars
df2a830ca4 Merge branch 'main' into henrymercer/bump-minimum-codeql-2.16.6 2025-06-05 13:41:07 +02:00
Michael B. Gale
b1e4dc3db5 Merge pull request #2916 from github/dependabot/npm_and_yarn/npm-5cdccdc43f 
build(deps): bump the npm group with 5 updates
codeql-bundle-v2.22.0 		2025-06-04 21:51:29 +01:00
Michael B. Gale
72be4b6df6 Merge pull request #2922 from github/mbg/fix/sanitizeArtifactName 
Fix backslashes being accepted by `sanitizeArtifactName`
 2025-06-04 21:46:46 +01:00
Michael B. Gale
1eab40885f Fix backslashes being accepted by sanitizeArtifactName 2025-06-04 12:28:25 +01:00
Arthur Baars
075e08aca6 Merge pull request #2919 from github/mergeback/v3.28.19-to-main-fca7ace9 
Mergeback v3.28.19 refs/heads/releases/v3 into main
 2025-06-03 15:28:32 +02:00
github-actions[bot]
be60d9f5f9 Update checked-in dependencies 2025-06-03 13:11:09 +00:00
github-actions[bot]
a28627ae8f Update changelog and version after v3.28.19 2025-06-03 13:08:53 +00:00
Arthur Baars
fca7ace96b Merge pull request #2918 from github/update-v3.28.19-4a00331d4 
Merge main into releases/v3
v3.28.19 		2025-06-03 15:08:22 +02:00
github-actions[bot]
1dcd2bebbb Update changelog for v3.28.19 2025-06-03 12:37:58 +00:00
github-actions[bot]
313daefcef Update checked-in dependencies 2025-06-02 17:50:04 +00:00
dependabot[bot]
55ff016766 build(deps): bump the npm group with 5 updates 
Bumps the npm group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [octokit](https://github.com/octokit/octokit.js) | `5.0.2` | `5.0.3` |
| [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js) | `9.27.0` | `9.28.0` |
| [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) | `8.32.1` | `8.33.1` |
| [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser) | `8.32.1` | `8.33.1` |
| [nock](https://github.com/nock/nock) | `14.0.4` | `14.0.5` |


Updates `octokit` from 5.0.2 to 5.0.3
- [Release notes](https://github.com/octokit/octokit.js/releases)
- [Commits](https://github.com/octokit/octokit.js/compare/v5.0.2...v5.0.3)

Updates `@eslint/js` from 9.27.0 to 9.28.0
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/commits/v9.28.0/packages/js)

Updates `@typescript-eslint/eslint-plugin` from 8.32.1 to 8.33.1
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.33.1/packages/eslint-plugin)

Updates `@typescript-eslint/parser` from 8.32.1 to 8.33.1
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.33.1/packages/parser)

Updates `nock` from 14.0.4 to 14.0.5
- [Release notes](https://github.com/nock/nock/releases)
- [Changelog](https://github.com/nock/nock/blob/main/CHANGELOG.md)
- [Commits](https://github.com/nock/nock/compare/v14.0.4...v14.0.5)

---
updated-dependencies:
- dependency-name: octokit
  dependency-version: 5.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm
- dependency-name: "@eslint/js"
  dependency-version: 9.28.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-version: 8.33.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: "@typescript-eslint/parser"
  dependency-version: 8.33.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: nock
  dependency-version: 14.0.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-06-02 17:48:34 +00:00
Arthur Baars
4a00331d4e Merge pull request #2910 from github/update-bundle/codeql-bundle-v2.21.4 
Update default bundle to 2.21.4
 2025-06-02 13:38:25 +02:00
github-actions[bot]
c0a821da11 Add changelog note 2025-06-02 13:23:20 +02:00
github-actions[bot]
d6216866b4 Update default bundle to codeql-bundle-v2.21.4 2025-06-02 13:23:20 +02:00
Paolo Tranquilli
dc138d4f51 Merge pull request #2913 from github/henrymercer/win-2019-deprecated 
Stop running CI on `windows-2019`
 2025-06-02 09:13:58 +02:00
Henry Mercer
3201e46e26 Stop running CI on windows-2019 
There are scheduled brownouts for this runner image.  Replace it with `windows-2025`, and start running on `macos-15` too.
 2025-05-30 17:57:28 +01:00
Henry Mercer
d54c5e2206 Add changelog note 2025-05-30 17:52:01 +01:00
Henry Mercer
36121ec458 Bump minor version number 2025-05-30 17:52:01 +01:00
Henry Mercer
7419bc61b3 Update CodeQL versions in generated workflows 2025-05-30 17:52:01 +01:00
Henry Mercer
c7f3c79ac0 Remove guards for fully enabled tool features 2025-05-30 17:52:01 +01:00
Henry Mercer
0be24c0c9a Remove redundant code based on CLI version number 2025-05-30 17:11:02 +01:00
Henry Mercer
fb70a8a3d6 Bump minimum CodeQL version to 2.16.6 2025-05-30 17:05:33 +01:00
Henry Mercer
7fd62151d9 Merge pull request #2911 from github/update-supported-enterprise-server-versions 
Update supported GitHub Enterprise Server versions
 2025-05-28 11:36:35 +01:00
github-actions[bot]
31eae5e821 Update supported GitHub Enterprise Server versions 2025-05-28 00:17:14 +00:00
Henry Mercer
bc02a25f64 Merge pull request #2908 from github/henrymercer/dependabot 
Dependabot: Remove deprecated `reviewers` config
codeql-bundle-v2.21.4 		2025-05-27 16:48:31 +01:00
Henry Mercer
1a67b5df99 Merge pull request #2905 from github/dependabot/github_actions/actions-92be4e1609 
build(deps): bump ruby/setup-ruby from 1.242.0 to 1.244.0 in the actions group
 2025-05-27 13:51:23 +01:00
Henry Mercer
97fbf51190 Merge pull request #2907 from github/dependabot/npm_and_yarn/npm-41871dd9e3 
build(deps): bump the npm group across 1 directory with 2 updates
 2025-05-27 13:49:38 +01:00
Henry Mercer
eaed21baf2 Dependabot: Remove deprecated reviewers config 
This field will soon be ignored
 2025-05-27 13:40:01 +01:00
github-actions[bot]
655a969b7c Update checked-in dependencies 2025-05-27 12:34:30 +00:00
dependabot[bot]
3934d2b758 build(deps): bump the npm group across 1 directory with 2 updates 
Bumps the npm group with 2 updates in the / directory: [@octokit/types](https://github.com/octokit/types.ts) and [octokit](https://github.com/octokit/octokit.js).


Updates `@octokit/types` from 14.0.0 to 14.1.0
- [Release notes](https://github.com/octokit/types.ts/releases)
- [Commits](https://github.com/octokit/types.ts/compare/v14.0.0...v14.1.0)

Updates `octokit` from 4.1.3 to 5.0.2
- [Release notes](https://github.com/octokit/octokit.js/releases)
- [Commits](https://github.com/octokit/octokit.js/compare/v4.1.3...v5.0.2)

---
updated-dependencies:
- dependency-name: "@octokit/types"
  dependency-version: 14.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: octokit
  dependency-version: 5.0.2
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-27 12:33:52 +00:00
Henry Mercer
0abe43cb59 Update generated workflow source 2025-05-27 13:33:09 +01:00
dependabot[bot]
83a4df546f build(deps): bump ruby/setup-ruby in the actions group 
Bumps the actions group with 1 update: [ruby/setup-ruby](https://github.com/ruby/setup-ruby).


Updates `ruby/setup-ruby` from 1.242.0 to 1.244.0
- [Release notes](https://github.com/ruby/setup-ruby/releases)
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb)
- [Commits](cb0fda56a3...13e7a03dc3)

---
updated-dependencies:
- dependency-name: ruby/setup-ruby
  dependency-version: 1.244.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-26 17:29:05 +00:00
Henry Mercer
7b0fb5a4ac Merge pull request #2899 from github/dependabot/github_actions/actions-999e423561 
build(deps): bump ruby/setup-ruby from 1.230.0 to 1.242.0 in the actions group
 2025-05-22 16:05:07 +01:00
Henry Mercer
23262aef80 Merge pull request #2898 from github/dependabot/npm_and_yarn/npm-aa8c6e63b8 
build(deps-dev): bump @eslint/js from 9.26.0 to 9.27.0 in the npm group
 2025-05-22 15:52:32 +01:00
Henry Mercer
5239ab193d Merge pull request #2787 from github/dbartol/remove-actions-extractor 
Remove bundled copy of `actions` extractor
 2025-05-22 15:52:03 +01:00
Henry Mercer
bcaa06bbb4 Update generated workflow source to match 2025-05-22 15:48:29 +01:00
Henry Mercer
b63847bb99 Update version number in changelog 2025-05-22 15:37:50 +01:00
Andrew Eisenberg
54a7f3b869 Merge branch 'main' into dbartol/remove-actions-extractor 2025-05-21 23:38:42 -04:00
dependabot[bot]
ba7fabd835 build(deps): bump ruby/setup-ruby in the actions group 
Bumps the actions group with 1 update: [ruby/setup-ruby](https://github.com/ruby/setup-ruby).


Updates `ruby/setup-ruby` from 1.230.0 to 1.242.0
- [Release notes](https://github.com/ruby/setup-ruby/releases)
- [Changelog](https://github.com/ruby/setup-ruby/blob/master/release.rb)
- [Commits](e5ac7b085f...cb0fda56a3)

---
updated-dependencies:
- dependency-name: ruby/setup-ruby
  dependency-version: 1.242.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-19 18:11:59 +00:00
github-actions[bot]
cae4996048 Update checked-in dependencies 2025-05-19 18:02:02 +00:00
dependabot[bot]
566c8dfa81 build(deps-dev): bump @eslint/js from 9.26.0 to 9.27.0 in the npm group 
Bumps the npm group with 1 update: [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js).


Updates `@eslint/js` from 9.26.0 to 9.27.0
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/commits/v9.27.0/packages/js)

---
updated-dependencies:
- dependency-name: "@eslint/js"
  dependency-version: 9.27.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-19 18:01:21 +00:00
Henry Mercer
396fd27c30 Merge pull request #2895 from github/dependabot/npm_and_yarn/npm_and_yarn-87115a91ec 
build(deps): bump undici from 5.28.5 to 5.29.0 in the npm_and_yarn group
 2025-05-19 12:31:15 +01:00
Chris Smowton
57eebf61a2 Merge pull request #2897 from github/mergeback/v3.28.18-to-main-ff0a06e8 
Mergeback v3.28.18 refs/heads/releases/v3 into main
 2025-05-16 11:33:31 +01:00
github-actions[bot]
4428f8e35c Update checked-in dependencies 2025-05-16 10:17:48 +00:00
github-actions[bot]
655a335537 Update changelog and version after v3.28.18 2025-05-16 10:15:17 +00:00
Chris Smowton
ff0a06e83c Merge pull request #2896 from github/update-v3.28.18-b86edfc27 
Merge main into releases/v3
v3.28.18 		2025-05-16 11:14:47 +01:00
github-actions[bot]
a41e0844be Update changelog for v3.28.18 2025-05-16 09:36:50 +00:00
github-actions[bot]
99ec5f3dd6 Update checked-in dependencies 2025-05-15 16:31:59 +00:00
dependabot[bot]
c07c4ee026 build(deps): bump undici from 5.28.5 to 5.29.0 in the npm_and_yarn group 
Bumps the npm_and_yarn group with 1 update: [undici](https://github.com/nodejs/undici).


Updates `undici` from 5.28.5 to 5.29.0
- [Release notes](https://github.com/nodejs/undici/releases)
- [Commits](https://github.com/nodejs/undici/compare/v5.28.5...v5.29.0)

---
updated-dependencies:
- dependency-name: undici
  dependency-version: 5.29.0
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-05-15 16:31:22 +00:00
Chris Smowton
b86edfc27a Merge pull request #2893 from github/update-bundle/codeql-bundle-v2.21.3 
Update default bundle to 2.21.3
 2025-05-15 12:40:00 +01:00