github/codeql-action
1
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2025-12-27 09:40:17 +08:00
Code Issues Packages Projects Releases Wiki Activity
4,863 Commits 297 Branches 500 Tags
codeql-bundle-v2.16.1
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Angela P Wen 65c74964a9 Respect Linux cgroup CPU number for --threads value (#2083) 
We want to respect cgroup constraints so that when we run in a container, we respect the limits set for the container rather than use the host OS's number of cores.

We check both `/sys/fs/cgroup/cpuset.cpus.effective` (`cgroup v2`) and `/sys/fs/cgroup/cpuset.cpus` (`cgroup v1`) to find the number of cores available. We also check `sys/fs/cgroup/cpu.max` (v1, v2) to calculate the number of cores from the limits set in this file.

The max threads value is set to the minimum of these values, and if no values were found in these files, we default to the original value of the host OS.
2024-01-23 14:50:06 +00:00
.github
Dependabot alerts for shield only
2024-01-10 08:34:15 -08:00
.vscode
VSCode settings: set default formatter for TS
2023-10-27 17:21:58 +01:00
analyze
remove dedundant single quotes from node version strings
2023-12-13 11:38:14 +00:00
autobuild
remove dedundant single quotes from node version strings
2023-12-13 11:38:14 +00:00
init
remove dedundant single quotes from node version strings
2023-12-13 11:38:14 +00:00
lib
Respect Linux cgroup CPU number for --threads value (#2083)
2024-01-23 14:50:06 +00:00
node_modules
Update checked-in dependencies
2024-01-22 17:53:57 +00:00
pr-checks
Remove deprecated CODEQL_PASS_CONFIG_TO_CLI env var from PR checks
2024-01-04 16:41:50 +00:00
python-setup
Bump urllib3 in /python-setup/tests/poetry/python-3.8 (#1957)
2023-10-17 15:34:08 -07:00
queries
Add RUNNER_ENVIRONMENT to the list of known default setup variables
2023-09-20 14:08:00 +02:00
resolve-environment
remove dedundant single quotes from node version strings
2023-12-13 11:38:14 +00:00
src
Respect Linux cgroup CPU number for --threads value (#2083)
2024-01-23 14:50:06 +00:00
tests
Remove unused test example
2024-01-04 18:30:27 +00:00
upload-sarif
remove dedundant single quotes from node version strings
2023-12-13 11:38:14 +00:00
.editorconfig
Add a .editorconfig with our chosen formatting options.
2020-06-23 14:38:30 +01:00
.eslintignore
Delete the runner
2022-11-14 16:23:14 +00:00
.eslintrc.json
Enable no cyclic dependencies eslint rule
2023-07-19 15:53:39 +01:00
.git-blame-ignore-revs
Ignore prior commit in git blame
2023-07-25 17:59:56 +02:00
.gitattributes
Refactor PR checks
2021-09-08 13:59:52 +01:00
.gitignore
Delete the runner
2022-11-14 16:23:14 +00:00
.npmrc
Add config file to support npm v8 and v9 simultaneously
2022-11-14 22:15:08 +00:00
.pre-commit-config.yaml
Add pre-commit configuration
2023-10-26 11:03:40 +02:00
CHANGELOG.md
Respect Linux cgroup CPU number for --threads value (#2083)
2024-01-23 14:50:06 +00:00
CODE_OF_CONDUCT.md
Initial commit (from f5274cbdce4ae7c9e4b937dcdf95ac70ae436d5f)
2020-04-28 17:23:37 +02:00
CODEOWNERS
Update CODEOWNERS
2022-04-12 16:34:35 +02:00
CONTRIBUTING.md
add note about backporting check changes to v2 branch
2023-12-20 20:00:52 +00:00
LICENSE
Initial commit (from f5274cbdce4ae7c9e4b937dcdf95ac70ae436d5f)
2020-04-28 17:23:37 +02:00
package-lock.json
Bump the npm group with 2 updates
2024-01-22 17:51:51 +00:00
package.json
Bump the npm group with 2 updates
2024-01-22 17:51:51 +00:00
README.md
Remove Node 16 deprecation note (#2076)
2024-01-09 21:19:07 -08:00
tsconfig.json
Upgrade TypeScript to 9.2.0
2023-01-18 20:59:57 +00:00

README.md

CodeQL Action

This action runs GitHub's industry-leading semantic code analysis engine, CodeQL, against a repository's source code to find security vulnerabilities. It then automatically uploads the results to GitHub so they can be displayed on pull requests and in the repository's security tab. CodeQL runs an extensible set of queries, which have been developed by the community and the GitHub Security Lab to find common vulnerabilities in your code.

For a list of recent changes, see the CodeQL Action's changelog.

License

This project is released under the MIT License.

The underlying CodeQL CLI, used in this action, is licensed under the GitHub CodeQL Terms and Conditions. As such, this action may be used on open source projects hosted on GitHub, and on private repositories that are owned by an organisation with GitHub Advanced Security enabled.

Usage

We recommend using default setup to configure CodeQL analysis for your repository. For more information, see "Configuring default setup for code scanning."

You can also configure advanced setup for a repository to find security vulnerabilities in your code using a highly customizable code scanning configuration. For more information, see "Configuring advanced setup for code scanning" and "Customizing your advanced setup for code scanning."

Troubleshooting

Read about troubleshooting code scanning.

Contributing

This project welcomes contributions. See CONTRIBUTING.md for details on how to build, install, and contribute.

Reference in New Issue View Git Blame Copy Permalink
Description
Actions for running CodeQL analysis
actionsadvanced-securitycicodeqlcode-scanningsemmle-ql
Readme MIT 998 MiB
Languages
TypeScript 94.8%
Python 2.6%
CodeQL 1.6%
JavaScript 0.6%
Shell 0.1%