github/codeql-action
0
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2026-05-04 12:50:14 +00:00
Code Issues Packages Projects Releases Wiki Activity
5,662 Commits 342 Branches 541 Tags
954566eac225887f2abaff4c2b487daae8662501
Commit Graph

5662 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Angela P Wen 954566eac2 Unset DYLD_INSERT_BINARIES when unneeded 
Previously, the tracer environment variables were set for the
current process, and for future steps, in the init action. In
certain scenarios (such as on MacOS ARM runners with System
Integrity Protection disabled), these environment variables are
not unset by the system. In particular, the `DYLD_INSERT_BINARIES`
variable interferes with later system calls.

This change unsets the `DYLD_INSERT_BINARIES` variable for the
current process in init. It also unsets the variables either at the
beginning of autobuild, or analyze, if autobuild has not run.
 2024-08-14 17:28:40 -07:00
Henry Mercer a93f8c2fd1 Merge pull request #2423 from github/mergeback/v3.26.1-to-main-29d86d22 
Mergeback v3.26.1 refs/heads/releases/v3 into main
 2024-08-14 16:48:32 +01:00
Remco Vermeulen af1f2e89e3 Address incorrect CHANGELOG.md 
The bundle update was removed from 3.26.1 and but back for the next release.

Co-authored-by: Henry Mercer <henrymercer@github.com>
 2024-08-14 08:30:08 -07:00
github-actions[bot] 2bc3b8381e Update checked-in dependencies 2024-08-13 20:52:52 +00:00
Remco Vermeulen dd9700c166 Reapply "Merge pull request #2417 from github/update-bundle/codeql-bundle-v2.18.2" 
This reverts commit 5b15b9edeb.
 2024-08-13 13:49:54 -07:00
github-actions[bot] ece28a826b Update changelog and version after v3.26.1 2024-08-13 20:33:30 +00:00
Remco Vermeulen 29d86d22a3 Merge pull request #2422 from github/update-v3.26.1-0d5982aa3 
Merge main into releases/v3
v3.26.1 		2024-08-13 13:32:18 -07:00
Remco Vermeulen 5b15b9edeb Revert "Merge pull request #2417 from github/update-bundle/codeql-bundle-v2.18.2" 
This reverts commit c4c3c4421f, reversing
changes made to d620faa0b4.
 2024-08-13 11:22:12 -07:00
github-actions[bot] 18ac79e766 Update changelog for v3.26.1 2024-08-13 17:18:51 +00:00
Henry Mercer 0d5982aa33 Merge pull request #2416 from github/henrymercer/ghes-3.14-compat-info 
Add details of supported versions for GHES 3.14
 2024-08-13 15:45:22 +01:00
Henry Mercer da9ecb0f40 Merge pull request #2421 from github/henrymercer/log-job-run-uuid 
Log job run UUID
 2024-08-13 15:39:17 +01:00
Alexander Eyers-Taylor c4c3c4421f Merge pull request #2417 from github/update-bundle/codeql-bundle-v2.18.2 
Update default bundle to 2.18.2
 2024-08-13 14:58:23 +01:00
Henry Mercer 41833c77c6 Log job run UUID 2024-08-13 11:50:31 +01:00
dependabot[bot] d620faa0b4 Bump the npm group with 4 updates (#2419) 
* Bump the npm group with 4 updates

Bumps the npm group with 4 updates: [adm-zip](https://github.com/cthackers/adm-zip), [@eslint/js](https://github.com/eslint/eslint/tree/HEAD/packages/js), [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) and [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser).


Updates `adm-zip` from 0.5.14 to 0.5.15
- [Release notes](https://github.com/cthackers/adm-zip/releases)
- [Changelog](https://github.com/cthackers/adm-zip/blob/master/history.md)
- [Commits](https://github.com/cthackers/adm-zip/compare/v0.5.14...v0.5.15)

Updates `@eslint/js` from 9.8.0 to 9.9.0
- [Release notes](https://github.com/eslint/eslint/releases)
- [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
- [Commits](https://github.com/eslint/eslint/commits/v9.9.0/packages/js)

Updates `@typescript-eslint/eslint-plugin` from 8.0.1 to 8.1.0
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.1.0/packages/eslint-plugin)

Updates `@typescript-eslint/parser` from 8.0.1 to 8.1.0
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.1.0/packages/parser)

---
updated-dependencies:
- dependency-name: adm-zip
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: npm
- dependency-name: "@eslint/js"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
- dependency-name: "@typescript-eslint/parser"
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update checked-in dependencies

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2024-08-12 11:04:43 -07:00
Henry Mercer 25ad3c8e40 Merge pull request #2418 from github/henrymercer/extraction-time-telemetry 
Add telemetry for time spent extracting CodeQL bundle
 2024-08-08 19:09:02 +01:00
Henry Mercer 44ecae4896 Fix matrixing of "submit SARIF after failure" check 2024-08-08 18:09:12 +01:00
Henry Mercer 50357f5d12 Add telemetry for time spent extracting CodeQL bundle 2024-08-08 17:46:21 +01:00
github-actions[bot] 5d9950fd02 Add changelog note 2024-08-08 15:39:55 +00:00
github-actions[bot] 18c419ea04 Update default bundle to codeql-bundle-v2.18.2 2024-08-08 15:39:51 +00:00
Henry Mercer def1e359d7 Improve consistency in supported version naming 2024-08-08 10:55:33 +01:00
Henry Mercer 6ef274e152 Add details of supported versions for GHES 3.14 
The release candidate is [now out](https://github.blog/changelog/2024-08-07-the-github-enterprise-server-3-14-release-candidate-is-available/).
 2024-08-08 10:52:29 +01:00
Remco Vermeulen 5c02493ebf Merge pull request #2394 from rvermeulen/rvermeulen/extend-init-complete-status-report 
Extend init complete status report
codeql-bundle-v2.18.2 		2024-08-06 15:24:48 -07:00
Remco Vermeulen a8ab493c76 Merge branch 'main' into rvermeulen/extend-init-complete-status-report 2024-08-06 14:51:42 -07:00
Henry Mercer 3ec2588ed0 Merge pull request #2411 from github/mergeback/v3.26.0-to-main-eb055d73 
Mergeback v3.26.0 refs/heads/releases/v3 into main
 2024-08-06 22:02:01 +01:00
Henry Mercer c056c182c0 Merge pull request #2412 from github/henrymercer/update-required-ignore-skipped 
Required checks script: Ignore skipped jobs
 2024-08-06 22:01:44 +01:00
github-actions[bot] 50d1f406e9 Update checked-in dependencies 2024-08-06 17:08:17 +00:00
Henry Mercer ecf465891a Required checks script: Ignore skipped jobs 2024-08-06 17:40:25 +01:00
github-actions[bot] 1c5b392677 Update changelog and version after v3.26.0 2024-08-06 16:39:18 +00:00
Henry Mercer eb055d739a Merge pull request #2410 from github/update-v3.26.0-c24926b73 
Merge main into releases/v3
v3.26.0 		2024-08-06 17:37:39 +01:00
Remco Vermeulen 7c2bec0cc3 Merge remote-tracking branch 'upstream/main' into rvermeulen/extend-init-complete-status-report 2024-08-06 09:11:17 -07:00
github-actions[bot] 3884d04c11 Update changelog for v3.26.0 2024-08-06 15:23:33 +00:00
Henry Mercer c24926b734 Merge pull request #2407 from github/dependabot/npm_and_yarn/npm-7954a73ad2 
Bump the npm group across 1 directory with 2 updates
 2024-08-06 15:03:29 +01:00
Henry Mercer 68ba39bacf Merge branch 'main' into dependabot/npm_and_yarn/npm-7954a73ad2 2024-08-06 14:02:21 +01:00
Henry Mercer 8dd1773467 Merge pull request #2408 from github/henrymercer/deprecate-codeql-2.13.4 
Remove support for CodeQL 2.13.4 and earlier
 2024-08-06 13:52:10 +01:00
Henry Mercer 441c9d90e4 Merge pull request #2409 from github/henrymercer/fix-required-checks 
Exclude push-only unit tests job from required PR checks script
 2024-08-06 13:50:57 +01:00
Henry Mercer f03da13454 Exclude push-only unit tests job from required PR checks script 2024-08-05 20:38:18 +01:00
Henry Mercer 29a5cfc75d Bump version to 3.26.0 2024-08-05 19:28:35 +01:00
Henry Mercer 9e440ad4c7 Add changelog note 2024-08-05 19:28:35 +01:00
Henry Mercer 136f5a589b Add CodeQL v2.17.6 to default test versions 2024-08-05 19:28:35 +01:00
Henry Mercer 0407820509 Remove CLI version lookup based on release assets 
This is now superseded by semantically versioned bundles
 2024-08-05 19:28:35 +01:00
Henry Mercer 48c11ed2ba Remove supporting code for CodeQL 2.13.0 through 2.13.4 2024-08-05 19:28:35 +01:00
Henry Mercer a1404425d9 Remove 2.12.6 from tests 2024-08-05 19:28:35 +01:00
Henry Mercer ecb9ccfcb1 Fix new linter errors 2024-08-05 19:22:26 +01:00
github-actions[bot] acb243eabd Update checked-in dependencies 2024-08-05 17:52:52 +00:00
dependabot[bot] 8612c175f8 Bump the npm group across 1 directory with 2 updates 
Bumps the npm group with 2 updates in the / directory: [@typescript-eslint/eslint-plugin](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin) and [@typescript-eslint/parser](https://github.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/parser).


Updates `@typescript-eslint/eslint-plugin` from 7.17.0 to 8.0.1
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/eslint-plugin/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.0.1/packages/eslint-plugin)

Updates `@typescript-eslint/parser` from 7.17.0 to 8.0.1
- [Release notes](https://github.com/typescript-eslint/typescript-eslint/releases)
- [Changelog](https://github.com/typescript-eslint/typescript-eslint/blob/main/packages/parser/CHANGELOG.md)
- [Commits](https://github.com/typescript-eslint/typescript-eslint/commits/v8.0.1/packages/parser)

---
updated-dependencies:
- dependency-name: "@typescript-eslint/eslint-plugin"
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: npm
- dependency-name: "@typescript-eslint/parser"
  dependency-type: direct:development
  update-type: version-update:semver-major
  dependency-group: npm
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-05 17:51:58 +00:00
Henry Mercer 0763ccfe11 Remove unneeded code for 2.13.4 and earlier 2024-08-05 17:48:55 +01:00
Henry Mercer 4be318a22d Bump minimum CodeQL version to 2.13.5 2024-08-05 17:44:17 +01:00
Henry Mercer 84f2bfe7be Remove GHES 3.9 from supported versions 2024-08-05 17:43:55 +01:00
Remco Vermeulen 0f24d46599 Merge branch 'main' into rvermeulen/extend-init-complete-status-report 
Signed-off-by: Remco Vermeulen <rvermeulen@github.com>
 2024-08-02 15:12:59 -07:00
Remco Vermeulen e6c9383ca6 Explicitly set value of registries and query_filters when undefined 
Both are arrays, so we will use an empty array if they are undefined.
 2024-08-02 15:02:48 -07:00