github/codeql-action
0
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2026-05-08 14:50:21 +00:00
Code Issues Packages Projects Releases Wiki Activity

more cleanup

Browse Source
This commit is contained in:
anaarmas
2020-04-27 21:54:36 +02:00
parent 8c5a0430b3
commit 3f6d759e8c
2 changed files with 2 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/pull_request_template.md
+2 -5
View File
@@ -1,10 +1,7 @@
### Merge / deployment checklist
- Run test builds as necessary. Can be on this repository or [elsewhere](https://github.com/github/turbo-scan/#testing-changes-to-codeql-action) as needed in order to test the change.
- Run test builds as necessary. Can be on this repository or elsewhere as needed in order to test the change - please include links to tests in otehr repos!
- [ ] CodeQL using init/finish actions
- [ ] 3rd party tool using upload action
- [ ] Confirm this change is backwards compatible with existing workflows.
- [ ] Confirm the [readme](https://github.com/github/codeql-action/blob/master/README.md) and [sarif-demo](https://github.com/Anthophila/sarif-demo) have been updated if necessary.
### Rollout plan for codeql-action
https://github.com/github/dsp-code-scanning/blob/master/docs/code-scanning-action-rollout-plan.md
- [ ] Confirm the [readme](https://github.com/github/codeql-action/blob/master/README.md) has been updated if necessary.
.github/workflows/integration-testing.yml
-14
View File
@@ -2,20 +2,6 @@ name: "Integration Testing"
on: [push]
# Adding new repositories to be integration tested
# 0) Repo needs to be set up with the codeql action working (e.g. have a CODEQL_SSH_KEY as a secret)
# https://github.com/github/dsp-code-scanning/issues/312#issuecomment-577631601
# 1) Add the `codeql-testuser` to the repository with WRITE permissions (Important!)
# 2) Put a copy of the workflow as `.github/workflows/integration-test.yml` in the target repo. You can find a copy of the workflow here: https://raw.githubusercontent.com/Anthophila/amazon-cognito-js-copy/master/.github/workflows/integration-test.ym
# 3) Copy and paste the block below filling in the repo owner/name
# curl -X POST \
# -H "Authorization: Bearer ${{ secrets.CODEQL_TESTING_TOKEN }}" \
# -H "Accept: application/vnd.github.everest-preview+json" \
# https://api.github.com/repos/OWNER/NAME/dispatches \
# -d '{"event_type":"codeql-integration","client_payload": {"sha": "${{ github.sha }}"}}'
# add another job that creates a new check suite using the API, send check suite id in our payload
jobs:
dispatch-events:
if: github.event.repository.full_name == 'github/codeql-action'