github/codeql-action
0
0
Fork 0
mirror of https://github.com/github/codeql-action.git synced 2026-04-26 16:58:47 +00:00
Code Issues Packages Projects Releases Wiki Activity
6,519 Commits 341 Branches 538 Tags
v3.28.10
Commit Graph

873 Commits

Author SHA1 Message Date
Henry Mercer a07454207a Tweak whitespace in checklist for consistency 
Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>
 2022-08-22 09:52:06 +01:00
Henry Mercer 2927215a2b Apply suggestions from code review 
Co-authored-by: Edoardo Pirovano <6748066+edoardopirovano@users.noreply.github.com>
 2022-08-19 18:37:55 +01:00
Henry Mercer c145823103 Make "Update release branch" workflow fail if npm version fails 2022-08-19 18:22:44 +01:00
Henry Mercer ff9d53b61a Dump GitHub event in debug artifacts failure workflow 
This should help us debug failures on `main` like this
https://github.com/github/codeql-action/actions/runs/2875586196.
 2022-08-17 14:49:23 +01:00
Henry Mercer 416ad3d847 Merge branch 'main' into henrymercer/bypass-toolcache-feature-flag 2022-08-17 11:39:33 +01:00
Angela P Wen 9b7fa3dd99 Add expect-error input to force PR check green on expected failure (#1177) 2022-08-16 16:27:14 -07:00
Henry Mercer 96a8424f0c Don't bypass the toolcache in test mode 2022-08-16 16:18:12 +01:00
Rasmus Wriedt Larsen 909e2fd56a Disable python2 + pipenv tests 
Just like we did for poetry and Python 2 in https://github.com/github/codeql-action/pull/1124

From looking at changelogs, Python2 has not been supported in Pipenv since [v2021.11.5](https://pipenv.pypa.io/en/latest/changelog/#id149)
 2022-08-15 16:52:11 +02:00
Andrew Eisenberg fa2bc211fd Merge branch 'aeisenberg/unrevert-query-filters' into aeisenberg/fix-config-files 2022-08-11 14:57:16 -07:00
Andrew Eisenberg 072cd929a3 Merge remote-tracking branch 'upstream/main' into aeisenberg/unrevert-query-filters 2022-08-11 10:00:12 -07:00
Andrew Eisenberg d74f663ed4 Merge remote-tracking branch 'upstream/main' into aeisenberg/fix-config-files 2022-08-11 09:57:45 -07:00
Andrew Eisenberg 0403fb7d8c Merge branch 'main' into aeisenberg/fix-config-files 2022-08-10 15:39:35 -07:00
Andrew Eisenberg 44f42da9ca Merge branch 'main' into aeisenberg/unrevert-query-filters 2022-08-10 15:22:40 -07:00
Angela P Wen ff7a29dd72 Clarify expected failure for upload job 2022-08-09 15:24:14 +02:00
Angela P Wen 8903097982 Remove database init test for success case 2022-08-09 15:21:49 +02:00
Angela P Wen 4993f1e1fc Remove downloaded files structure display 2022-08-08 15:52:49 +02:00
Angela P Wen 27df4c2a47 Fix directory name of artifacts 2022-08-08 15:16:15 +02:00
Angela P Wen 1c82b1bb73 Display downloaded files structure 2022-08-08 14:53:25 +02:00
Angela P Wen 05176bcd41 Add continue-on-error for expected failing job 2022-08-08 14:25:43 +02:00
Angela P Wen b952980043 Add integration test for failed analyze step 2022-08-08 14:00:23 +02:00
Angela P Wen 2a582eb53d Merge branch 'main' into angelapwen/refactor-debug-artifacts-pr-check 2022-08-04 10:02:20 +02:00
Angela P Wen 4ec485d633 bash syntax fixup per review 2022-08-03 17:57:05 +02:00
Angela P Wen e16d085a47 Remove ls check, log formatting 2022-08-03 11:24:18 +02:00
Angela P Wen f51da8688a Add script to check in appropriate directories 2022-08-03 10:55:10 +02:00
Angela P Wen f7a7ac1799 bash syntax fixup 2022-08-03 10:23:41 +02:00
Angela P Wen ef145d6884 Display downloaded file structure 2022-08-03 09:35:32 +02:00
Angela P Wen 64d83c75f0 Fix syntax error 2022-08-02 11:38:33 +02:00
Angela P Wen 13e7a528eb Change download job to only run on linux 2022-08-02 11:37:27 +02:00
Angela P Wen cc047a34ce Condense matrix syntax 2022-08-02 11:37:18 +02:00
Angela P Wen 81c5b2d993 New debug artifacts workflow with separate jobs 2022-08-01 11:09:29 +02:00
Aditya Sharad 2f739fcd04 CI: Combine verify-pr-checks and check-for-conflicts jobs 
Reduce the number of concurrent jobs by 1.
Run these checks in succession instead, as the
`check-file-contents` job in the PR checks workflow.
 2022-07-29 12:07:38 -07:00
Andrew Eisenberg 907f1deb5b Merge branch 'main' into aeisenberg/fix-config-files 2022-07-28 16:43:03 -07:00
Aditya Sharad ceea66834a CI: Move Runner checks into their own workflow 
Refactor the PR checks workflow into two workflows:
PR checks and Runner checks.

This does not change the actual check jobs that are run.
It also does not change the expected check names
(which rely only on the job name, not the workflow name).

This makes it easier to inspect workflow run summaries in the UI
and to separately retry subsets of failed jobs in case of flakiness.

In future we will clean up the Runner checks,
since this is a deprecated component.
 2022-07-28 16:35:51 -07:00
Aditya Sharad 992d011666 CI: Combine JS lint and JS check jobs 
Reduce the number of concurrent jobs.
This will require a branch protection rule update,
renaming `check-js` to Check JS` and removing `Lint`.
 2022-07-28 15:37:55 -07:00
Aditya Sharad bf24993f0c CI: Add scheduled and manual triggers to python-deps workflow 2022-07-27 13:22:10 -07:00
Aditya Sharad 0d16d70d87 CI: Add path filters to python-deps workflow 
No need to run this workflow on all PRs, only those that
change the Python dependency installation mechanism.
 2022-07-27 13:16:40 -07:00
Aditya Sharad caa2a0df0a Runner tests: Attempt to source the tracer env, display the binary path 2022-07-27 12:05:31 -07:00
Aditya Sharad a2f4d66a8b Runner tests: Read CODEQL_RUNNER from the stored JSON 
This test workflow does not source the environment from the init step,
so we need to manually read in the variable.
 2022-07-25 15:33:52 -07:00
Aditya Sharad 58faf9d60c Actions: Disable the CLR tracer in C# autobuild test 
Ensure that this succeeds even if the legacy CLR tracer is not enabled.
The combination of the regular tracer and the SIP workaround within Actions
should be sufficient for this to pass.
 2022-07-25 15:02:42 -07:00
Aditya Sharad dc1c51db28 Actions: Fix failing Runner autobuild test on macOS 
Add the missing `$CODEQL_RUNNER` prefix to the autobuild command line.
This intermediate process works around System Integrity Protection,
allowing the tracer to start the C# extractor for the dotnet builds
within the autobuild process.

The test used to pass without this because the legacy CLR tracer bypassed SIP
while dotnet 5 was used on the Actions virtual environment.
Now that the virtual environment uses dotnet 6, the CLR tracer no longer works,
and we need to explicitly work around SIP.

This test will eventually be replaced by an internal integration test for the
equivalent functionality in the CLI. For now, this change makes the test
continue to pass.
 2022-07-25 14:06:23 -07:00
Aditya Sharad 2d2dfa3424 Remove duplicate CI workflow 2022-07-25 14:01:12 -07:00
Cornelius Riemenschneider ceec52c4bc Address review. 2022-07-21 17:03:57 +00:00
Cornelius Riemenschneider a32664975f autobuild-action: Run autobuilders with $CODEQL_RUNNER set. 
Without this, the tracer will not be injected on MacOS, as we need the
runner to circumvent SIP.
Also add a test that tests the autobuild-action to exercise this code path.
 2022-07-21 15:51:54 +00:00
Andrew Eisenberg 01d16b1e01 Merge branch 'main' into aeisenberg/fix-config-files 2022-07-13 14:05:48 -07:00
Henry Mercer 816b3e91bc Update failure message 
Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>
 2022-07-12 17:52:15 +01:00
Henry Mercer fbbd1dcd52 Fix extra double quote 
Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>
 2022-07-12 17:44:51 +01:00
Henry Mercer 0a5dad3c83 Allow authenticating via the GitHub CLI 
We no longer run this script within Actions for security reasons, and
when running locally we can authenticate with the GitHub CLI instead
of a PAT.
 2022-07-12 17:33:24 +01:00
Henry Mercer d61e3fdf02 Fix shellcheck errors 
Avoid trying to evaluate `github/codeql-action`.
 2022-07-12 17:31:31 +01:00
Henry Mercer 79ec03f3e5 Run npm scripts on using bash so Windows can find commands 2022-06-29 18:58:38 +01:00
Henry Mercer 7ebbfcbbdd Run unit tests on Windows too 2022-06-29 10:07:31 +01:00