From 73f3a2489679791d2f83b3e6e3aa8917cac56150 Mon Sep 17 00:00:00 2001 From: Aditya Sharad <6874315+adityasharad@users.noreply.github.com> Date: Thu, 14 Oct 2021 12:17:06 -0700 Subject: [PATCH 1/7] upload-sarif: Link to docs on upload limits --- upload-sarif/action.yml | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/upload-sarif/action.yml b/upload-sarif/action.yml index 21997efe3..bb9b2b8c3 100644 --- a/upload-sarif/action.yml +++ b/upload-sarif/action.yml @@ -3,7 +3,10 @@ description: 'Upload the analysis results' author: 'GitHub' inputs: sarif_file: - description: The SARIF file or directory of SARIF files to be uploaded. Each upload should contain a maximum of 1000 results, any additional results are ignored. + description: | + The SARIF file or directory of SARIF files to be uploaded to GitHub code scanning. + See https://docs.github.com/en/code-security/code-scanning/integrating-with-code-scanning/uploading-a-sarif-file-to-github#uploading-a-code-scanning-analysis-with-github-actions + for information on the maximum number of results and maximum file size supported by code scanning. required: false default: '../results' checkout_path: From 1a3e71aa9a4d96b48f3f8e195aea7da70c765a35 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Mon, 25 Oct 2021 16:50:10 +0000 Subject: [PATCH 2/7] Update changelog and version after v1.0.20 --- CHANGELOG.md | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 463a1f14d..edc95417a 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,9 @@ # CodeQL Action and CodeQL Runner Changelog +## [UNRELEASED] + +No user facing changes. + ## 1.0.20 - 25 Oct 2021 No user facing changes. From 4647e20bb51c1b3aada6843d115021630342a9ea Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Mon, 25 Oct 2021 16:50:12 +0000 Subject: [PATCH 3/7] 1.0.21 --- package-lock.json | 2 +- package.json | 2 +- runner/package-lock.json | 2 +- runner/package.json | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/package-lock.json b/package-lock.json index d78a90960..ab39afa78 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,6 +1,6 @@ { "name": "codeql", - "version": "1.0.20", + "version": "1.0.21", "lockfileVersion": 2, "requires": true, "packages": { diff --git a/package.json b/package.json index dc16df590..a3cc5ca81 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "codeql", - "version": "1.0.20", + "version": "1.0.21", "private": true, "description": "CodeQL action", "scripts": { diff --git a/runner/package-lock.json b/runner/package-lock.json index 8000c2a6d..09a034ddf 100644 --- a/runner/package-lock.json +++ b/runner/package-lock.json @@ -1,6 +1,6 @@ { "name": "codeql-runner", - "version": "1.0.20", + "version": "1.0.21", "lockfileVersion": 1, "requires": true, "dependencies": { diff --git a/runner/package.json b/runner/package.json index 7ed18bb37..79a138d04 100644 --- a/runner/package.json +++ b/runner/package.json @@ -1,6 +1,6 @@ { "name": "codeql-runner", - "version": "1.0.20", + "version": "1.0.21", "private": true, "description": "CodeQL runner", "scripts": { From d3f5d485b3ba3a5a0b717a366269789eb88c52d9 Mon Sep 17 00:00:00 2001 From: Edoardo Pirovano Date: Mon, 25 Oct 2021 18:09:40 +0100 Subject: [PATCH 4/7] Further fix to update dependencies workflow --- .github/workflows/update-dependencies.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/update-dependencies.yml b/.github/workflows/update-dependencies.yml index 44c5c1ec1..a1657e7fe 100644 --- a/.github/workflows/update-dependencies.yml +++ b/.github/workflows/update-dependencies.yml @@ -35,5 +35,5 @@ jobs: git config --global user.name "github-actions[bot]" git add node_modules git commit -am "Update checked-in dependencies" - git push origin "$BRANCH" + git push origin "HEAD:$BRANCH" fi From c3b8b48b7697d5b448a38774671c92f0bac06f53 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Mon, 25 Oct 2021 18:15:07 +0000 Subject: [PATCH 5/7] Update checked-in dependencies --- node_modules/.package-lock.json | 2 +- package-lock.json | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/node_modules/.package-lock.json b/node_modules/.package-lock.json index 263c93fde..dfa272e9f 100644 --- a/node_modules/.package-lock.json +++ b/node_modules/.package-lock.json @@ -1,6 +1,6 @@ { "name": "codeql", - "version": "1.0.20", + "version": "1.0.21", "lockfileVersion": 2, "requires": true, "packages": { diff --git a/package-lock.json b/package-lock.json index ab39afa78..a2bd79df8 100644 --- a/package-lock.json +++ b/package-lock.json @@ -6,7 +6,7 @@ "packages": { "": { "name": "codeql", - "version": "1.0.20", + "version": "1.0.21", "license": "MIT", "dependencies": { "@actions/artifact": "^0.5.2", From 22747bcb77b2aaeb5b2a1d255464a907c9e244ab Mon Sep 17 00:00:00 2001 From: Chuan-kai Lin Date: Mon, 25 Oct 2021 13:45:26 -0700 Subject: [PATCH 6/7] Update CodeQL bundle to 20211025 / 2.7.0 --- CHANGELOG.md | 2 +- lib/defaults.json | 2 +- src/defaults.json | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index edc95417a..c61f6452c 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -2,7 +2,7 @@ ## [UNRELEASED] -No user facing changes. +- Update default CodeQL bundle version to 2.7.0. [#795](https://github.com/github/codeql-action/pull/795) ## 1.0.20 - 25 Oct 2021 diff --git a/lib/defaults.json b/lib/defaults.json index 1ad81bce0..3c74f0e2d 100644 --- a/lib/defaults.json +++ b/lib/defaults.json @@ -1,3 +1,3 @@ { - "bundleVersion": "codeql-bundle-20211013" + "bundleVersion": "codeql-bundle-20211025" } diff --git a/src/defaults.json b/src/defaults.json index ce7dab7ca..fd7047b2e 100644 --- a/src/defaults.json +++ b/src/defaults.json @@ -1,3 +1,3 @@ { - "bundleVersion": "codeql-bundle-20211013" + "bundleVersion": "codeql-bundle-20211025" } From bd48dc5be5d880c2711750bb8988bddbf52f79b1 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Thu, 28 Oct 2021 20:46:17 +0000 Subject: [PATCH 7/7] 1.0.21 --- CHANGELOG.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index c61f6452c..02aefcbea 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,6 +1,6 @@ # CodeQL Action and CodeQL Runner Changelog -## [UNRELEASED] +## 1.0.21 - 28 Oct 2021 - Update default CodeQL bundle version to 2.7.0. [#795](https://github.com/github/codeql-action/pull/795)