github/codeql-action
1
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2025-12-27 09:40:17 +08:00
Code Issues Packages Projects Releases Wiki Activity
4,744 Commits 297 Branches 500 Tags
codeql-bundle-v2.15.5
Commit Graph

562 Commits

Author SHA1 Message Date
nickfyson
cda785ef94 add note on versioning approach to changelog 2023-12-18 13:39:34 +00:00
Nick Fyson
c757f9f6de Apply suggestions from code review 
Co-authored-by: Henry Mercer <henry.mercer@me.com>
 2023-12-13 12:47:00 +00:00
nickfyson
7898bc2041 add pr check for node version consistency 2023-12-13 11:54:57 +00:00
Nick Fyson
ea1e72c669 Update .github/workflows/pr-checks.yml 
Co-authored-by: Henry Mercer <henry.mercer@me.com>
 2023-12-13 11:37:06 +00:00
Nick Fyson
b974542e9f Merge branch 'main' into nickfyson/node-20 2023-12-13 11:26:45 +00:00
dependabot[bot]
b995212303 Bump the actions group with 2 updates (#2024) 
* Bump the actions group with 2 updates

Bumps the actions group with 2 updates: [actions/setup-python](https://github.com/actions/setup-python) and [actions/setup-go](https://github.com/actions/setup-go).


Updates `actions/setup-python` from 4 to 5
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v4...v5)

Updates `actions/setup-go` from 4 to 5
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>

* Rebuild

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2023-12-12 21:18:31 +00:00
nickfyson
95be4b277c add not about continuing testing on node 16 2023-12-07 17:04:27 +00:00
nickfyson
303dec0fbd fix choice of older node version to test 2023-12-07 16:03:07 +00:00
nickfyson
5b52b36d41 reintroduce PR check that confirm action can be still be compiled on node16 2023-12-07 14:10:26 +00:00
nickfyson
0e9a210226 update workflows to run on all release branches 2023-12-06 15:57:43 +00:00
nickfyson
ee748cf360 respond to more review comments 2023-12-06 12:22:12 +00:00
Nick Fyson
3537bea580 Apply suggestions from code review 
Co-authored-by: Henry Mercer <henry.mercer@me.com>
 2023-12-06 11:40:07 +00:00
nickfyson
b7f289ef4d update release process to support multiple version 2023-12-04 14:28:55 +00:00
Henry Mercer
77605c75e4 Remove LGTM 2023-11-27 19:16:50 +00:00
Henry Mercer
773bd9bef6 Exclude Dependabot updates workflow from required PR checks 
This runs on `main` and is not relevant to PRs.
 2023-11-27 19:08:29 +00:00
dependabot[bot]
9f150ba795 Bump the actions group with 1 update (#2004) 
* Bump the actions group with 1 update

Bumps the actions group with 1 update: [actions/github-script](https://github.com/actions/github-script).

- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v6...v7)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump `github-script` version to v7

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Angela P Wen <angelapwen@github.com>
 2023-11-20 15:32:23 -08:00
Andrew Eisenberg
04451e072f Delete analysis after uploading 
The analysis is purposefully failing. We don't want a failed analysis
sitting in the security center since this can cause some internal
checks to erroneously fail.
 2023-11-10 13:26:01 -08:00
Andrew Eisenberg
82284f1b28 Fix failing workflows 
Ensure that pythion 3.11 is used for older CLIs on windows.
 2023-11-10 13:19:40 -08:00
Andrew Eisenberg
91733ada76 Remove reference to CODEQL_RUNNER 2023-11-02 07:50:32 -07:00
Andrew Eisenberg
7c60ff7ad6 Use setup-python@v4 2023-11-02 07:49:59 -07:00
Andrew Eisenberg
9ef69a2c7a Be more precise about when to use python 3.11 
Only run use 3.11 on versions of of the CLI that we know don't support
3.12.
 2023-11-01 18:10:09 -07:00
Andrew Eisenberg
bd4005aa6a Force python 3.11 for macos 
3.12 does not work.
 2023-11-01 16:01:27 -07:00
Andrew Eisenberg
da4c46015a Use the correct action input parameter 2023-10-31 17:15:51 -07:00
Henry Mercer
f3b55862ea Check out the right branch in rebuild.yml 2023-10-26 19:56:04 +01:00
Henry Mercer
3fc281e079 Add workflow to rebuild the Action on a label 2023-10-26 14:01:43 +01:00
Paolo Tranquilli
f1b64d85e4 Sync PR checks 2023-10-25 13:34:17 +02:00
Paolo Tranquilli
838be48ce0 C++: tweak deptrace checks 2023-10-24 11:31:04 +02:00
Paolo Tranquilli
8779d91384 Merge branch 'main' into redsun82/cpp-deptrace-pr-checks 2023-10-24 11:27:38 +02:00
Paolo Tranquilli
959337a156 C++: fix autobuild pr-checks for macOS 2023-10-24 11:10:13 +02:00
dependabot[bot]
9734ecd5b5 Bump the actions group with 1 update (#1965) 
Bumps the actions group with 1 update: [actions/setup-node](https://github.com/actions/setup-node).

- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-10-23 11:55:44 -07:00
Paolo Tranquilli
54e4af648d C++: fix autobuild pr-checks to latest codeql-cli version 2023-10-23 17:42:59 +02:00
Paolo Tranquilli
d53a59d051 C++: add deptrace pr-checks 2023-10-23 10:57:55 +02:00
Angela P Wen
bad341350a Add workflow_dispatch manual trigger (#1952) 2023-10-17 19:56:42 +00:00
Henry Mercer
346d5c4b07 Test sub-language file coverage in file baseline information check 
We can do this now that the nightly has a version number starting with
2.15.0.
 2023-10-12 11:58:09 +01:00
Henry Mercer
d52a751f8f Only run ref and sha input checks against a single CLI version 
These checks aren't affected by the CLI version, so just run them with
the default CLI.
 2023-10-09 12:09:21 +01:00
Andrew Eisenberg
669c61022c Add a feature flag to turn this off for newer versions of codeql 2023-10-06 14:17:01 -07:00
Andrew Eisenberg
028bacb8e9 Add integration test 
Also:

- Update changelog
- Fix comments in check_python script
 2023-10-06 13:52:34 -07:00
Henry Mercer
27235304e0 Merge pull request #1923 from github/henrymercer/fix-resolve-environment-aliases 
Fix using the `resolve-environment` Action with language aliases
 2023-10-05 18:48:18 +01:00
Henry Mercer
f243294ab7 Extend PR check to test resolve-environment works with language alias 2023-10-05 15:57:53 +01:00
Michael B. Gale
4154eb799b Fix: workflow name and description 2023-10-05 13:29:18 +01:00
Michael B. Gale
faf7528b44 Add integration test for Go workaround diagnostic 2023-10-05 13:11:37 +01:00
Michael B. Gale
c8dd2bc90f Add integration test for workaround 2023-10-05 10:46:10 +01:00
Michael B. Gale
8ac187720c Allow other patch versions of Go in workflows 2023-10-04 19:46:36 +01:00
Michael B. Gale
d718153f0a Use Go 1.21 for Go tracing checks 2023-10-04 17:23:51 +01:00
Henry Mercer
37a2d1fe3c Remove ML-powered queries PR checks 2023-10-02 17:29:54 +01:00
Henry Mercer
f59bf3c458 Fix expected artifact directory name for semver versions 2023-09-27 19:44:41 +01:00
Henry Mercer
6e3f5b0184 Prompt maintainers to start process when GHES version deprecated 2023-09-27 19:40:26 +01:00
Henry Mercer
219066c343 Fix error in generated workflow 2023-09-27 16:41:29 +01:00
Henry Mercer
467bfa1cff Update CodeQL versions tested in PR checks 2023-09-27 16:21:16 +01:00
Henry Mercer
253d9cf358 Matrix CodeQL CI job over all runner images 2023-09-18 12:56:35 +01:00