github/codeql-action
0
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2026-04-02 17:52:19 +00:00
Code Issues Packages Projects Releases Wiki Activity
9,272 Commits 334 Branches 535 Tags
main
Commit Graph

9272 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael B. Gale
96e6b655c1 Add tool-specific setup steps 2026-02-28 16:32:32 +00:00
Michael B. Gale
57c7bc6885 Add analysisKinds 2026-02-28 16:32:32 +00:00
Michael B. Gale
d52917b510 Add useAllPlatformBundle 2026-02-28 16:32:32 +00:00
Michael B. Gale
b948e562f4 Add basic job steps 2026-02-28 16:32:31 +00:00
Michael B. Gale
c889588a2c Add env, container, and services 2026-02-28 16:32:31 +00:00
Michael B. Gale
b77ebbe4d8 Add CODEQL_ACTION_TEST_MODE 2026-02-28 16:32:31 +00:00
Michael B. Gale
9a0fe9e006 Add permissions 2026-02-28 16:32:31 +00:00
Michael B. Gale
dd78add36d Add matrix to job 2026-02-28 16:32:31 +00:00
Michael B. Gale
e62a268a73 Add job construction 2026-02-28 16:32:31 +00:00
Michael B. Gale
63b4776d64 Add matrix construction 2026-02-28 16:32:30 +00:00
Michael B. Gale
6932b1cda2 Add concurrency settings 2026-02-28 16:32:30 +00:00
Michael B. Gale
40aefb0faf Add basic workflow construction 2026-02-28 16:32:30 +00:00
Michael B. Gale
efe64e03d9 Add isTruthy helper 2026-02-28 16:32:30 +00:00
Michael B. Gale
898d46e783 Strip trailing whitespace in output 2026-02-28 16:32:30 +00:00
Michael B. Gale
04c1e601ab Add defaultTestVersions constant 2026-02-28 16:18:04 +00:00
Michael B. Gale
2f77cd04d4 Add specification types 2026-02-28 16:06:14 +00:00
Michael B. Gale
c7e378f003 Scaffold project for sync.ts script 2026-02-28 15:58:47 +00:00
Michael B. Gale
f3663cdc32 Fix typos in comments 2026-02-28 15:18:25 +00:00
Henry Mercer
0ec47d036c Merge pull request #3524 from github/henrymercer/checks-use-setup-codeql 
CI: Update CodeQL Action test to use `setup-codeql`
 2026-02-27 17:02:44 +00:00
Henry Mercer
59245fd159 Add missing permissions to access feature flags 2026-02-27 17:39:20 +01:00
Henry Mercer
05259a1d08 Add more changelog notes 2026-02-27 17:24:17 +01:00
Henry Mercer
389c8322d5 CI: Update CodeQL Action test to use setup-codeql 2026-02-27 17:06:16 +01:00
Henry Mercer
01ee2f785a Add changelog notes 2026-02-27 16:09:38 +01:00
github-actions[bot]
c72d9a4933 Update changelog for v4.32.5 2026-02-27 14:37:26 +00:00
Henry Mercer
ca42bf226a Merge pull request #3522 from github/henrymercer/update-supported-versions-table 
Update supported Action / Bundle / GHES version table
 2026-02-27 13:57:17 +00:00
Henry Mercer
6704d80ac6 Merge pull request #3520 from github/dependabot/npm_and_yarn/fast-xml-parser-5.4.1 
Bump fast-xml-parser from 5.3.6 to 5.4.1
 2026-02-27 13:57:12 +00:00
Henry Mercer
76348c0f12 Merge pull request #3521 from github/dependabot/npm_and_yarn/minimatch-3.1.5 
Bump minimatch from 3.1.3 to 3.1.5
 2026-02-27 13:57:06 +00:00
Henry Mercer
3a42a998ef Update supported Action / Bundle / GHES version table 2026-02-27 13:37:42 +00:00
Henry Mercer
8ab0431fc3 Merge pull request #3514 from github/dependabot/npm_and_yarn/globals-17.3.0 
Bump globals from 16.5.0 to 17.3.0
 2026-02-27 13:28:04 +00:00
Henry Mercer
2c92579346 Merge pull request #3513 from github/dependabot/npm_and_yarn/npm-minor-e1092f1102 
Bump eslint-plugin-jsdoc from 62.5.0 to 62.6.0 in the npm-minor group
 2026-02-27 13:27:19 +00:00
github-actions[bot]
2475286230 Rebuild 2026-02-27 13:23:45 +00:00
github-actions[bot]
236fbf7645 Rebuild 2026-02-27 13:23:30 +00:00
dependabot[bot]
29181f28d5 Bump minimatch from 3.1.3 to 3.1.5 
Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.1.3 to 3.1.5.
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v3.1.3...v3.1.5)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-version: 3.1.5
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-02-27 13:21:47 +00:00
dependabot[bot]
a0735d7c2a Bump fast-xml-parser from 5.3.6 to 5.4.1 
Bumps [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) from 5.3.6 to 5.4.1.
- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases)
- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md)
- [Commits](https://github.com/NaturalIntelligence/fast-xml-parser/compare/v5.3.6...v5.4.1)

---
updated-dependencies:
- dependency-name: fast-xml-parser
  dependency-version: 5.4.1
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-02-27 13:21:34 +00:00
Henry Mercer
b35e0349aa Merge pull request #3518 from github/mbg/ci/merge-queue-codeql 
Disable CodeQL upload for merge queue and exclude PR size workflow from required checks
 2026-02-27 12:56:04 +00:00
Michael B. Gale
e995ba3522 Add more tests/assertions 2026-02-27 12:52:54 +00:00
Michael B. Gale
1e7e52a330 Add tests where upload should get skipped 2026-02-27 12:40:04 +00:00
Michael B. Gale
383b86ddcb Refactor some test setup code into mockRiskAssessmentEnv 2026-02-27 12:27:32 +00:00
Michael B. Gale
4406eba03e Skip uploads in merge queue 2026-02-27 12:14:56 +00:00
Henry Mercer
1b897f3911 Fix conditions in code scanning config checks 
DIff-informed analysis isn't enabled in the merge queue.
 2026-02-27 12:10:38 +00:00
Henry Mercer
adf58cf166 Merge pull request #3515 from github/henrymercer/drop-ram-limit 
Skip overlay memory check for CodeQL 2.24.3 and later
 2026-02-27 11:17:11 +00:00
Michael B. Gale
ca32b84657 Ensure correct failed SARIF file names for CSRA 2026-02-26 19:56:07 +00:00
Michael B. Gale
ce97dfe405 Sanitise artifact name 2026-02-26 19:47:55 +00:00
Michael B. Gale
003044eb84 Add test 2026-02-26 19:18:32 +00:00
Michael B. Gale
5b9d1f4fdf Simplify prepareFailedSarif for risk assessments 2026-02-26 19:18:29 +00:00
Michael B. Gale
f265dd9392 Separate generateFailedSarif out of prepareFailedSarif 2026-02-26 18:44:50 +00:00
Michael B. Gale
44b66a8064 Upload failed SARIF as artifact for risk assessments 2026-02-26 18:40:00 +00:00
Michael B. Gale
b7d3fb98df Exclude "Label PR with size" from required checks 2026-02-26 18:25:26 +00:00
Michael B. Gale
4e8e79431d Run CodeQL with linked tools for merge queue 2026-02-26 18:25:26 +00:00
Michael B. Gale
60ca40ecd4 Refactor prepareFailedSarif out of maybeUploadFailedSarif 2026-02-26 18:07:00 +00:00