github/codeql-action
0
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2026-04-28 09:58:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,422 Commits 342 Branches 538 Tags
8d31b533a271fcac59e4170c0f978ec15302d4e1
Commit Graph

247 Commits

Author SHA1 Message Date
Michael B. Gale 5d822f13cd Rename getDbAnalysisKind and getDbAnalysisConfig 2025-09-05 12:39:34 +01:00
Michael B. Gale 38f1a70179 Add runInterpretResultsFor to de-duplicate code for interpret-results 2025-09-04 12:25:50 +01:00
Michael B. Gale d08e9a2e04 Make conditions for interpret-results more robust 2025-09-04 12:14:12 +01:00
Michael B. Gale ae2df70629 Make code that builds the list of queries for run-queries more robust in the event of future changes 2025-09-04 12:03:24 +01:00
Michael B. Gale 86275f6e9a Fix addSarifExtension and add tests 2025-09-04 11:43:54 +01:00
Michael B. Gale 8ea50b8f82 Add and use helpers for determining analysis config the DB is initialised with 2025-09-04 11:39:22 +01:00
Michael B. Gale 6d2d2042ff Add note for getPerQueryAlertCounts 2025-09-04 11:39:21 +01:00
Michael B. Gale ff57bbf22c Handle different permutations of analysis kinds in analyze action 2025-09-04 11:39:21 +01:00
Michael B. Gale e4ffe6f3e5 Only specify queries for run-queries if both analysis kinds are enabled 2025-09-04 11:39:21 +01:00
Michael B. Gale ac9b91e745 Move overlay db settings from AugmentationProperties to Config 2025-09-02 18:02:12 +01:00
Michael B. Gale 7f8f88e227 Use hard-coded list of quality queries, rather than quality-queries input 2025-09-02 17:31:57 +01:00
Henry Mercer 09839488db Update del 2025-08-29 19:22:46 +01:00
Michael B. Gale d6621b9f4e Refactor check whether CQ is enabled 
This will make it easier to replace in the future
 2025-08-21 15:20:19 +01:00
Chuan-kai Lin 8dbcef50df Extract getGeneratedSuitePath() 2025-08-08 08:53:04 -07:00
Henry Mercer 8e6104d51e Merge branch 'main' into henrymercer/prefer-injecting-codeql 2025-08-07 15:32:20 +01:00
Henry Mercer b7beff905a Merge branch 'main' into henrymercer/cleanup-for-mrva 2025-08-07 15:06:26 +01:00
Henry Mercer f8c2086872 Prefer providing CodeQL via dependency injection 2025-08-07 12:16:00 +01:00
Henry Mercer c7884c6fd8 Clean up the database if it will be uploaded 2025-08-07 11:47:45 +01:00
Michael B. Gale 2d082457bf Update src/analyze.ts 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-06 16:33:06 +01:00
Michael B. Gale 72770345eb Fix legacy SARIF categories for CQ in default setup 2025-08-06 10:14:36 +01:00
Michael B. Gale f5d3601aaa Make SARIF category a parameter of runInterpretResults 2025-08-06 09:58:48 +01:00
Michael B. Gale 06e521573a Log qualityAnalysisSummary after analysisSummary 2025-08-06 09:58:31 +01:00
Henry Mercer cfb8d07200 Remove unnecessary String initializations 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2025-08-05 11:18:46 +01:00
Henry Mercer c481481d7d Merge branch 'main' into henrymercer/language-extensibility 2025-08-05 11:07:39 +01:00
Chuan-kai Lin 19075c4376 Overlay: report overlay analysis mode 2025-07-18 07:18:38 -07:00
Chuan-kai Lin 6a51e635a5 Add "overlay" to SARIF incrementalMode run property 2025-07-03 12:35:25 -07:00
Chuan-kai Lin 60a2a7d623 Add isAnalyzingPullRequest() 2025-07-03 12:35:24 -07:00
Michael B. Gale 768fc170da Rename resolveQuerySuiteAlias parameter 2025-06-26 11:32:48 +01:00
Michael B. Gale 79049d92c6 Fix config-queries.qls location 2025-06-25 14:42:24 +01:00
Michael B. Gale e382508853 Prototyping adding quality queries when running queries 2025-06-25 14:24:34 +01:00
Michael B. Gale 9b9286a835 Add test for resolveQuerySuiteAlias 2025-06-24 13:42:52 +01:00
Michael B. Gale f7fbaa019f Support all default query suites and resolve them 2025-06-24 13:08:56 +01:00
Michael B. Gale 320f7b0fd6 Resolve code-quality alias 2025-06-23 18:19:42 +01:00
Michael B. Gale 3963bf423a Interpret results for quality queries and store as separate SARIF file 2025-06-23 18:19:40 +01:00
Henry Mercer 932be8feda Rename Language enum and use generic Language where possible 2025-05-30 18:02:15 +01:00
Henry Mercer 3b57965c44 Remove per-language hardcoded traced/scanned info 2025-05-30 17:58:19 +01:00
Henry Mercer c7f3c79ac0 Remove guards for fully enabled tool features 2025-05-30 17:52:01 +01:00
Henry Mercer 2f70a988e7 Skip validating SARIF produced by CodeQL 2025-05-14 15:11:16 +01:00
Henry Mercer 62fbeb66b3 Merge branch 'main' into henrymercer/fix-diff-informed-multiple-analyze 2025-05-01 12:05:02 +01:00
Henry Mercer 083772aae4 Do not fail diff informed analyses when analyze is run twice in the same job 2025-05-01 12:00:46 +01:00
Andrew Eisenberg 3ca9a88941 Add actions-specific telemetry fields 2025-04-29 16:14:46 -07:00
Chuan-kai Lin 94102d99b0 Set checkPresence in diff-range data extension 
This commit updates the diff-range data extension to use the new
checkPresence field being introduced in CodeQL CLI 2.21.0, so that
diff-informed analysis no longer fails when a query pack does not have
the restrictAlertsTo extensible predicate.
 2025-04-04 08:41:50 -07:00
Chuan-kai Lin 3c4533916b Call shouldPerformDiffInformedAnalysis() outside setupDiffInformedQueryRun() 2025-03-27 10:27:24 -07:00
Chuan-kai Lin 1994ea768e Move shouldPerformDiffInformedAnalysis() 2025-03-27 10:27:24 -07:00
Chuan-kai Lin 534bc63d5e Rename diff-filtering-utils.ts to diff-informed-analysis-utils.ts 2025-03-27 10:27:23 -07:00
Chuan-kai Lin 3fbee52426 Extract shouldPerformDiffInformedAnalysis() 2025-03-27 10:27:23 -07:00
Chuan-kai Lin c1fc897eb2 getFileDiffsWithBasehead(): use CODE_SCANNING_REPOSITORY if present 2025-03-27 08:50:31 -07:00
Chuan-kai Lin f88459c0a3 Use getRepositoryNwo() 2025-03-26 10:18:40 -07:00
Chuan-kai Lin b361a91508 Diff-informed analysis: fix empty PR handling 2025-03-21 14:18:25 -07:00
Chuan-kai Lin d109dd5d33 Detect PR branches for Default Setup 2025-03-21 09:25:08 -07:00