Rasmus Wriedt Larsen
7fc528c3c6
python-setup: Don't allow Poetry to make venv in project
...
I mostly verified this works on my local machine, but did add a sample `poetry.toml` to the tests, so it can be verified from looking at the logs 🤷
2022-12-06 10:41:46 +01:00
Henry Mercer
2cbc140ac5
Enable file baseline export by default
...
This is now fully rolled out.
2022-12-05 14:10:06 +00:00
Henry Mercer
1653364141
Merge pull request #1414 from github/dependabot/github_actions/peter-evans/create-pull-request-4.2.3
...
Bump peter-evans/create-pull-request from 3.4.1 to 4.2.3
2022-12-05 11:02:42 +00:00
dependabot[bot]
61cc378b7f
Bump swift-actions/setup-swift from 1.19.0 to 1.20.0 ( #1415 )
...
* Bump swift-actions/setup-swift from 1.19.0 to 1.20.0
Bumps [swift-actions/setup-swift](https://github.com/swift-actions/setup-swift ) from 1.19.0 to 1.20.0.
- [Release notes](https://github.com/swift-actions/setup-swift/releases )
- [Commits](5cdaa9161a...194625b58asupport@github.com >
* Update setup-swift SHA in non-autogenerated files
* Specify v5.7.0 instead of 5.7
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Angela P Wen <angelapwen@github.com >
2022-12-05 10:54:03 +01:00
dependabot[bot]
7aa5026a55
Bump actions/setup-python from 3 to 4 ( #1416 )
...
Bumps [actions/setup-python](https://github.com/actions/setup-python ) from 3 to 4.
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/setup-python
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-05 08:20:36 +01:00
dependabot[bot]
c80f00a5c9
Bump peter-evans/create-pull-request from 3.4.1 to 4.2.3
...
Bumps [peter-evans/create-pull-request](https://github.com/peter-evans/create-pull-request ) from 3.4.1 to 4.2.3.
- [Release notes](https://github.com/peter-evans/create-pull-request/releases )
- [Commits](c7f493a800...2b011faafdsupport@github.com >
2022-12-02 19:29:01 +00:00
Henry Mercer
62b14cbbad
Merge pull request #1413 from github/update-dependabot-e0f8a3c2
...
Add Dependabot config file
2022-12-02 19:28:32 +00:00
Henry Mercer
794a4b543a
Switch to weekly interval for both ecosystems
2022-12-02 18:42:33 +00:00
Henry Mercer
ee6ba9c213
Reformat
2022-12-02 17:53:16 +00:00
Henry Mercer
81f99a8582
Remove outdated section for runner and perform all updates daily
2022-12-02 17:52:46 +00:00
Sentinel Reviewer
4b18b7bc24
Update Dependabot config file
2022-12-02 11:45:26 -06:00
Henry Mercer
4acf201e5b
Merge pull request #1393 from github/henrymercer/report-failed-runs
...
Submit SARIF for failed runs too
2022-12-02 17:08:04 +00:00
Chuan-kai Lin
1e5919b22d
Bump default CodeQL version to 2.11.5
2022-12-02 07:38:17 -08:00
Henry Mercer
375dacad24
Only print the full error message in debug mode
2022-12-02 14:38:40 +00:00
Henry Mercer
e0ff272230
Merge branch 'main' into henrymercer/report-failed-runs
2022-12-02 14:31:22 +00:00
Angela P Wen
aa0e650c6a
Surface fatal CLI errors in interpret-results and run-queries ( #1407 )
...
Co-authored-by: Henry Mercer <henry.mercer@me.com >
2022-12-02 14:05:21 +01:00
Henry Mercer
98b2ddc7f9
Merge branch 'main' into henrymercer/report-failed-runs
2022-12-01 18:27:32 +00:00
Henry Mercer
0d9b15ca93
Merge pull request #1392 from github/henrymercer/parse-category
...
Add functionality for parsing Action inputs from a workflow file
2022-12-01 18:26:03 +00:00
Henry Mercer
b1c26c4c53
Merge pull request #1409 from github/mergeback/v2.1.35-to-main-b2a92eb5
...
Mergeback v2.1.35 refs/heads/releases/v2 into main
2022-12-01 14:25:02 +00:00
github-actions[bot]
21044b004d
Update checked-in dependencies
2022-12-01 13:51:17 +00:00
github-actions[bot]
0828b04e3a
Update changelog and version after v2.1.35
2022-12-01 13:04:46 +00:00
Henry Mercer
b2a92eb56d
Merge pull request #1406 from github/update-v2.1.35-9af9a11d
...
Merge main into releases/v2
2022-12-01 13:02:24 +00:00
github-actions[bot]
075b74d36e
Update changelog for v2.1.35
2022-12-01 12:16:44 +00:00
Angela P Wen
9af9a11da8
Stop running fallback Go autobuild if database is finalized ( #1405 )
2022-12-01 11:29:03 +01:00
Andrew Eisenberg
a631f4b016
Merge pull request #1400 from github/aeisenberg/fix-test-error
...
Fixes spurious error messages in tests
2022-11-30 08:04:59 -08:00
Henry Mercer
77cda4d75d
Add testing environment to submit SARIF after failure PR check
2022-11-30 11:32:36 +00:00
Henry Mercer
3d90c4f911
Improve error message when failed SARIF file doesn't process as expected
2022-11-30 11:27:03 +00:00
Andrew Eisenberg
1384ce4ab3
Fixes spurious error messages in tests
...
Previously, `isAnalyzingDefaultBranch` was failing because there are
some missing env vars: `GITHUB_SHA`, `GITHUB_REF`, and
`GITHUB_EVENT_PATH`. Also, `checkout_path` is missing as an input.
Rather than trying to set them to mock values, which would require
setting the paths to existing paths in the file system, I chose to stub
the entire function. I think this is fine since the point of the test
is to check the ram and threads values, not testing the
`isAnalyzingDefaultBranch` function.
2022-11-29 10:53:11 -08:00
Henry Mercer
6c5cad784c
Merge branch 'henrymercer/parse-category' into henrymercer/report-failed-runs
2022-11-29 17:04:56 +00:00
Henry Mercer
58b2ab08a8
Add unit test for typical workflow
2022-11-29 17:03:01 +00:00
Henry Mercer
e0dec83cfc
Explicitly mention surrounding by try/catch in JSDoc
2022-11-29 16:29:27 +00:00
Henry Mercer
00a3c456fb
Always wait for processing when uploading a failed SARIF file
2022-11-29 16:27:04 +00:00
Henry Mercer
e628ee0ae1
Push unsuccessful execution API error detection into upload library
2022-11-29 16:25:29 +00:00
Henry Mercer
605b23d10b
Explicitly suggest wrapping in a try/catch block
2022-11-29 15:48:54 +00:00
Rasmus Wriedt Larsen
160613c380
Merge pull request #1402 from github/rasmuswl/new-virtualenv
...
python-setup: rely on new `virtualenv` for venv creation in Ubuntu 22.04
2022-11-29 13:56:31 +01:00
Rasmus Wriedt Larsen
caf1c5057b
python-setup: Remove outdated comment
2022-11-29 13:24:10 +01:00
Rasmus Wriedt Larsen
c62445de22
python-setup: rely on new virtualenv for venv creation in Ubuntu 22.04
...
Removes the hotfix from https://github.com/github/codeql-action/pull/1257
2022-11-29 11:43:01 +01:00
Henry Mercer
7fc3c603aa
Add changelog note
2022-11-25 18:18:39 +00:00
Henry Mercer
24fd4c0f4e
Generate the "Submit SARIF after failure" workflow
2022-11-25 18:18:13 +00:00
Henry Mercer
d0517be03a
Ensure we finish the log group when waiting for processing
2022-11-25 17:55:01 +00:00
Henry Mercer
37b4358e44
Handle API versions that reject unsuccessful executions
2022-11-25 17:55:00 +00:00
Henry Mercer
122b180b66
Add an integration test for uploading SARIF when the run fails
2022-11-25 17:54:22 +00:00
Henry Mercer
8337c2be0f
Only upload failed SARIF if the run failed
2022-11-25 17:53:32 +00:00
Henry Mercer
5296a763b1
Upload failed SARIF files to Code Scanning
2022-11-25 17:52:50 +00:00
Henry Mercer
3afc2b194c
Add feature flag for uploading failed SARIF
2022-11-25 17:49:03 +00:00
Henry Mercer
3cf2a1ba2e
Add function for retrieving the "upload" input
2022-11-25 17:49:01 +00:00
Henry Mercer
4d4e25083a
Use a matrix in testing workflow
2022-11-25 17:47:21 +00:00
Henry Mercer
9de6c31571
Log matrix input
2022-11-25 17:47:21 +00:00
Henry Mercer
44ae944a29
Add a workflow to test reporting a failed run
2022-11-25 17:47:21 +00:00
Henry Mercer
e2338066a1
Add diagnostics export command
2022-11-25 17:47:21 +00:00
