codeql-action

mirror of https://github.com/github/codeql-action.git synced 2025-12-30 19:20:08 +08:00

Author	SHA1	Message	Date
dependabot[bot]	5bd8069afb	Bump actions/checkout from 5 to 6 in /.github/workflows Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v5...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2025-11-24 18:01:10 +00:00
Michael B. Gale	38a3a7258f	Enable `installDotNet` in all workflows that analyse C#	2025-11-13 19:48:37 +00:00
Michael B. Gale	3569065d7e	Install Python 3.13, except for `nightly-latest`	2025-10-17 12:51:50 +01:00
Henry Mercer	a34e1cd60b	Merge branch 'main' into henrymercer/slim-pr-checks	2025-09-24 19:29:32 +02:00
Michael B. Gale	cec0b17b93	Skip PR checks for events triggered by Dependabot	2025-09-24 12:08:05 +01:00
Henry Mercer	83fdfaf3fc	Merge branch 'main' into henrymercer/slim-pr-checks	2025-09-24 13:03:53 +02:00
Henry Mercer	944aa7df3d	Merge pull request #3088 from github/dependabot/github_actions/actions-f739f361ea Bump the actions group with 4 updates	2025-09-23 13:48:16 +01:00
Henry Mercer	3df807292a	Only run PR checks on Ubuntu by default	2025-09-23 14:38:33 +02:00
Michael B. Gale	6fcf631e73	Add `concurrency` settings to PR checks	2025-09-20 14:19:07 +01:00
Paolo Tranquilli	1b8f0ffedf	Set `shell: bash` by default on all workflows	2025-09-09 12:19:45 +02:00
dependabot[bot]	1a80c9b44e	Bump the actions group with 4 updates Bumps the actions group with 4 updates: [actions/setup-go](https://github.com/actions/setup-go), [actions/github-script](https://github.com/actions/github-script), [actions/setup-node](https://github.com/actions/setup-node) and [actions/setup-python](https://github.com/actions/setup-python). Updates `actions/setup-go` from 5 to 6 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v5...v6) Updates `actions/github-script` from 7 to 8 - [Release notes](https://github.com/actions/github-script/releases) - [Commits](https://github.com/actions/github-script/compare/v7...v8) Updates `actions/setup-node` from 4 to 5 - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v4...v5) Updates `actions/setup-python` from 5 to 6 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v5...v6) --- updated-dependencies: - dependency-name: actions/setup-go dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/github-script dependency-version: '8' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/setup-node dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/setup-python dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com>	2025-09-08 17:54:44 +00:00
Michael B. Gale	bd79bc6b67	Automatically add `go-version` input if `installGo == true`	2025-08-14 11:52:35 +01:00
Michael B. Gale	a592f71173	Allow inputs for `workflow_*` events, and propagate them through collections	2025-08-14 11:52:34 +01:00
Michael B. Gale	092bf71d04	Add `workflow_call` triggers to PR checks	2025-08-14 11:52:34 +01:00
Henry Mercer	9dfbcfd29f	Merge pull request #3025 from github/dependabot/github_actions/actions-b7431406fe Bump the actions group with 3 updates	2025-08-12 12:24:05 +01:00
dependabot[bot]	b1bfc45906	Bump the actions group with 3 updates Bumps the actions group with 3 updates: [actions/checkout](https://github.com/actions/checkout), [actions/download-artifact](https://github.com/actions/download-artifact) and [actions/create-github-app-token](https://github.com/actions/create-github-app-token). Updates `actions/checkout` from 4 to 5 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4...v5) Updates `actions/download-artifact` from 4 to 5 - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/v4...v5) Updates `actions/create-github-app-token` from 2.0.6 to 2.1.1 - [Release notes](https://github.com/actions/create-github-app-token/releases) - [Commits](https://github.com/actions/create-github-app-token/compare/v2.0.6...v2.1.1) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/download-artifact dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/create-github-app-token dependency-version: 2.1.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com>	2025-08-12 02:10:43 +00:00
Paolo Tranquilli	286b9e9d74	Specify the `ruamel.yaml` version in one place only (`sync.sh`)	2025-08-11 15:38:32 +02:00
Michael B. Gale	8f71d47b93	Add `installGo` input for adding `setup-go` step in `sync.py`	2025-06-16 12:28:23 +01:00
Henry Mercer	9cd802ec12	Give only read-level `security-events` permission where possible	2025-01-24 13:27:33 +00:00
Henry Mercer	bd76a92ebe	PR checks: Remove code for unsupported versions	2025-01-15 17:50:02 +00:00
Josh Soref	756aa649df	spelling: macos Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>	2024-11-06 06:43:41 -05:00
Henry Mercer	619f0d628b	Update CodeQL versions tested in generated checks	2024-10-15 19:43:56 +01:00
Henry Mercer	a1404425d9	Remove 2.12.6 from tests	2024-08-05 19:28:35 +01:00
Andrew Eisenberg	79f6e84e69	Ensure string argument instead of boolean	2024-06-14 14:59:22 -07:00
Andrew Eisenberg	3f41e06a52	Merge remote-tracking branch 'upstream/main' into aeisenberg/enable-kotlin-tests	2024-06-14 13:20:03 -07:00
Henry Mercer	94acfdc22c	Upload SARIF with ref/sha inputs: Generate SARIF with analyze Action	2024-06-11 20:22:17 +01:00
Henry Mercer	485d096a80	Update upload-sarif ref/sha input test We are already testing the analyze Action in a separate check.	2024-06-11 19:29:39 +01:00
Henry Mercer	12243c759f	Disable database upload in test mode	2024-06-11 19:07:13 +01:00
Henry Mercer	c59e05245f	Disable fail fast in generated workflows	2024-05-10 16:24:22 +01:00
Angela P Wen	ac2f82a1ff	Log warning if SIP is disabled and CLI version is < 2.15.1 (#2261 ) * PR Checks: use `macos-12` runners for CLI v. < 2.15.1 Prior to CLI v2.15.1, MacOS ARM runners were not supported by the build tracer. "macos-latest" is now an ARM runner, so we run these tests on the old CLIs on Intel runners instead. * Log a warning if SIP is disabled and CLI is < 2.15.1 * Add changenote for SIP-disabled support on old CLI versions * Set up Python 3.11 for all MacOS checks	2024-04-25 22:20:13 +00:00
Henry Mercer	2f0d0eaebd	Update PR checks	2024-04-09 12:19:26 +01:00
Angela P Wen	f421cda8e7	Run integration test PR checks nightly (#2222 ) * Run integration test PR checks nightly Scheduled for 5AM UTC. This will assist in catching bugs introduced with new runner images. * Specify generated YAML indentations For consistency with our non-autogenerated files and GitHub documentation, we should further indent items in lists (`sequence`).	2024-04-04 10:30:18 -07:00
Andrew Eisenberg	72f5fb9a00	Merge branch 'main' into aeisenberg/enable-kotlin-tests	2024-04-01 11:27:17 -07:00
Henry Mercer	35b10b5ff7	Merge branch 'main' into henrymercer/drop-codeql-v2.11.5	2024-01-02 18:03:32 +00:00
dependabot[bot]	596b173a4e	Bump the actions group with 2 updates (#2056 ) * Bump the actions group with 2 updates Bumps the actions group with 2 updates: [actions/setup-python](https://github.com/actions/setup-python) and [actions/setup-go](https://github.com/actions/setup-go). Updates `actions/setup-python` from 4 to 5 - [Release notes](https://github.com/actions/setup-python/releases) - [Commits](https://github.com/actions/setup-python/compare/v4...v5) Updates `actions/setup-go` from 4 to 5 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](https://github.com/actions/setup-go/compare/v4...v5) --- updated-dependencies: - dependency-name: actions/setup-python dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com> * Bump `setup-python` and `setup-go` to v5 --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Angela P Wen <angelapwen@github.com>	2023-12-27 17:12:00 -08:00
nickfyson	0e9a210226	update workflows to run on all release branches	2023-12-06 15:57:43 +00:00
Henry Mercer	649145214e	Update PR checks Stop testing `stable-20220908` bundle as this is no longer supported.	2023-11-27 12:41:44 +00:00
Andrew Eisenberg	7c60ff7ad6	Use setup-python@v4	2023-11-02 07:49:59 -07:00
Andrew Eisenberg	9ef69a2c7a	Be more precise about when to use python 3.11 Only run use 3.11 on versions of of the CLI that we know don't support 3.12.	2023-11-01 18:10:09 -07:00
Andrew Eisenberg	bd4005aa6a	Force python 3.11 for macos 3.12 does not work.	2023-11-01 16:01:27 -07:00
Andrew Eisenberg	fcf7c47f2f	Explicitly setup a kotlin version Change the `prepare-test` action to conditionally setup kotlin.	2023-10-13 15:25:37 -07:00
Andrew Eisenberg	7feb9a04fd	Re-enable kotlin tests Reverts https://github.com/github/codeql-action/pull/1473	2023-10-10 16:08:54 -07:00
Henry Mercer	d52a751f8f	Only run `ref` and `sha` input checks against a single CLI version These checks aren't affected by the CLI version, so just run them with the default CLI.	2023-10-09 12:09:21 +01:00
Henry Mercer	467bfa1cff	Update CodeQL versions tested in PR checks	2023-09-27 16:21:16 +01:00
dependabot[bot]	321d3e057d	Bump the actions group with 1 update Bumps the actions group with 1 update: [actions/checkout](https://github.com/actions/checkout). - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions ... Signed-off-by: dependabot[bot] <support@github.com>	2023-09-04 18:00:31 +00:00
Angela P Wen	1f63aba653	PR Checks: Test `codeql-bundle.tar.gz` (#1822 )	2023-08-03 15:38:21 +00:00
Henry Mercer	49e0fc2ba1	PR checks: Rename `cached` to `default`	2023-08-02 18:02:10 +01:00
Henry Mercer	9f45792756	Update autogenerated notice to refer to specific ruamel.yaml version	2023-06-12 13:28:11 +01:00
Henry Mercer	f1c4784a3f	Update checks	2023-06-12 11:26:55 +01:00
Angela P Wen	cdcdbb5797	PR checks: stop setting experimental Swift var for new CLI versions (#1718 ) Now that `latest` and `cached` are both 2.13.3, which is the version in which we GA'ed Swift, we should stop setting this experimental variable when we test these CLI versions so we can test the case where the variable is unset.	2023-06-06 08:49:09 -07:00

1 2

81 Commits