Andrew Eisenberg
08fae3caba
Display better error message on invalid sarif
...
Specifically, some third party tools do not include a `results`
block for runs when there is an error. This change adds a more
explicit error message for this situation.
2021-03-18 09:03:42 -07:00
Andrew Eisenberg
ffd96b38fb
Ensure error correct error message on 403 error
2021-03-17 07:55:21 -07:00
Robert
5004a54ed3
Merge branch 'main' into robertbrignull/toolcache-query-safety
2021-03-16 15:29:47 +00:00
Robert
378f30f95d
call setupActionsVars in the tests too
2021-03-16 13:43:28 +00:00
Robert
d698cb3d2b
Make unguarded-action-lib better at ignoring uses of toolcache
2021-03-16 13:14:17 +00:00
Robert
09024e50d4
make control flow cleaer to fix query alert
2021-03-16 12:07:00 +00:00
Chris Gavin
18f6367c46
Merge branch 'main' into check-ghae-endpoint-first-only-on-ghae
2021-03-10 12:23:15 +00:00
Henning Makholm
bcca43b391
Update CodeQL bundle to 20210308
2021-03-09 17:43:35 +01:00
Chris Gavin
bb51ece0b4
When downloading the CodeQL bundle, only use the GitHub AE endpoint on GitHub AE, and check it first.
2021-03-07 11:18:54 +00:00
Aditya Sharad
0ff9c449b7
Update CodeQL bundle to 20210304 / CLI 2.4.4
2021-03-04 13:05:37 -08:00
GitHub
760681b052
Update supported GitHub Enterprise Server versions.
2021-02-20 00:26:14 +00:00
Aditya Sharad
fd0ad84431
Merge branch 'main' into adityasharad/ram-threshold
2021-02-17 11:29:15 -08:00
Robert
a2653534db
set externalRepoAuth
2021-02-17 08:30:35 -08:00
Chris Gavin
2b1c88c014
Merge branch 'main' into ghae-endpoint
2021-02-17 08:29:36 +00:00
Aditya Sharad
4c94e29f1b
Increase the default amount of RAM reserved for the OS
...
Mitigation for OOM errors (137/SIGKILL) seen by users when we overcommit the available memory.
For Unix, reserve 1GB.
For Windows, reserve 1.5GB, as the OS needs more memory and estimates inaccurately.
2021-02-16 15:10:19 -08:00
Andrew Eisenberg
58defc0652
Remove --external-repository-token option from runner
...
Specifying a token as a cli input leads to a potential for leaking the
token on CI logs. This commit removes the option. Instead, users
should specify a single GitHub token through `--github-auth-stdin` or
by setting the `GITHUB_TOKEN` environment variable. This token should be
created with enough privileges to access the required repository.
2021-02-16 11:28:25 -08:00
Andrew Eisenberg
88714e3a60
Add capability to specify auth from env var or stdin
...
This commit adds two new ways of specifying GitHub auth:
1. from the GITHUB_TOKEN environment variable
2. from standard input
This commit does not include any documentation changes and the
descriptions of new command line options will need to be tweaked.
2021-02-16 11:26:39 -08:00
Chris Gavin
3c63623824
Merge branch 'main' into ghae-endpoint
2021-02-16 10:17:25 +00:00
Chris Gavin
f8c5dacab5
Also look for the CodeQL bundle at the custom GitHub AE endpoint.
2021-02-15 19:41:41 +00:00
Chris Gavin
04d2b0018e
Merge branch 'main' into allow-override-temp
2021-02-15 16:20:45 +00:00
Chris Gavin
7b72f1c330
Merge main into allow-override-temp.
2021-02-15 11:45:08 +00:00
Chris Gavin
6452109691
Treat empty CODEQL_ACTION_TEMP the same as it not being set.
2021-02-15 11:44:44 +00:00
Chris Gavin
c9ca4ec1bd
Convert GitHub variant to an enum.
2021-02-15 09:30:16 +00:00
Chris Gavin
0656b2c1ad
Add detection for GitHub AE.
2021-02-13 11:06:03 +00:00
Sam Partington
10a2f1b1aa
Merge branch 'main' into remove-uploadFromActions-params
2021-02-02 11:34:02 +00:00
Simon Engledew
169b9f804b
Fix lint errors
2021-02-02 09:59:06 +00:00
Simon Engledew
1f07e287da
Do not report warning: undefined
2021-02-01 16:32:13 +00:00
Chris Gavin
ed751ece83
Allow overriding path of temporary files.
2021-02-01 15:34:13 +00:00
Simon Engledew
44ed1c6ce1
Remove pull request warnings
2021-01-29 10:42:37 +00:00
Sam Partington
19fe854945
Remove intermediate variables
2021-01-28 15:40:42 +00:00
Sam Partington
c2377b2e49
Remove parameters from uploadFromActions
...
Retrieve the relevant values in the method itself instead.
2021-01-28 15:37:09 +00:00
Robin Neatherway
18f9eb6b55
Update default CodeQL to 20210127
2021-01-27 11:31:51 +00:00
Chris Gavin
f109c77463
Merge branch 'main' into fix-version-in-message
2021-01-26 17:24:58 +00:00
Chris Gavin
d182a0e3aa
Fix deduplication of bundle download sources.
2021-01-26 16:56:43 +00:00
Chris Gavin
5261491807
Fix the formatting of a warning message.
2021-01-26 16:52:43 +00:00
Chris Gavin
94b32884f9
Dump logs to stdout instead of stderr to avoid synchronization problems.
2021-01-26 09:47:31 +00:00
Chris Gavin
8705aaff32
Walk log filex manually rather than using the Actions globber.
2021-01-26 09:21:38 +00:00
Chris Gavin
219142571c
Upload debug logs automatically when ACTIONS_STEP_DEBUG is enabled.
2021-01-25 15:44:31 +00:00
Simon Engledew
ee4d06713e
Fix wonky comment
2021-01-22 14:08:43 +00:00
Simon Engledew
6be1f5ce0e
Add more granular exception handling
2021-01-22 13:52:04 +00:00
Simon Engledew
8a9922df92
Disambiguate report messages
2021-01-22 13:52:04 +00:00
Simon Engledew
795b1923ec
Swap method naming to account for new functionality
2021-01-22 13:52:03 +00:00
Simon Engledew
28e2860afb
Correctly report WorkflowMissing
2021-01-22 13:51:45 +00:00
Simon Engledew
4547749a2f
Do not warn users if a workflow cannot be read
...
This will still send a LintFailed message status report.
2021-01-22 13:51:19 +00:00
Robert
cb574a7d60
only insert external repos token if supplied
2021-01-19 15:42:57 +00:00
Eric Cornelissen
946779f5b6
Run npm run-script build
2021-01-15 18:40:06 +01:00
Simon Engledew
b6fc7138bf
Merge branch 'main' into simon-engledew/fix-incorrect-branch-warning
2021-01-15 10:41:33 +00:00
Simon Engledew
1a6f6a27b3
Implement PR feedback
2021-01-15 08:28:21 +00:00
Robert
c8abbce0a2
Merge branch 'main' into robertbrignull/external-token-option
2021-01-14 17:27:33 +00:00
Simon Engledew
0853901c0d
Fix overzealous warning when PR scanning is not required
2021-01-13 12:28:24 +00:00
