Skip to content

Commits

History for codeql-action/lib

Commits on May 7, 2021

  1. Fix lines of code mapping 

    We were inadvertently using codeql language ids instead of the action's
language ids. There is now a 3-way mapping between the ids used by
the lines counter library, the action, and codeql.
    Andrew Eisenberg committed May 7, 2021
    Copy the full SHA
    b6ae33f View commit details

Commits on May 6, 2021

  1. Merge branch 'main' into hmakholm/pr/fix-escaping

    Henning Makholm authored and GitHub committed May 6, 2021

    Unverified

    No user is associated with the committer email.
    Learn about vigilant mode
    Copy the full SHA
    ad98dc6 View commit details

  2. fix typos in logging

    Robert committed May 6, 2021
    Copy the full SHA
    031dc50 View commit details

  3. Merge branch 'main' into hmakholm/pr/fix-escaping

    Henning Makholm authored and GitHub committed May 6, 2021

    Unverified

    No user is associated with the committer email.
    Learn about vigilant mode
    Copy the full SHA
    ee062d3 View commit details

Commits on May 5, 2021

  1. Avoid fingerprinting directories

    Andrew Eisenberg committed May 5, 2021
    Copy the full SHA
    f584f94 View commit details

  2. Merge branch 'main' into hmakholm/pr/fix-escaping

    Andrew Eisenberg authored and GitHub committed May 5, 2021

    Unverified

    No user is associated with the committer email.
    Learn about vigilant mode
    Copy the full SHA
    b477190 View commit details

  3. Update src/runner.ts 

    Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>
    Henning Makholm and Andrew Eisenberg committed May 5, 2021
    Copy the full SHA
    a6ebb19 View commit details

  4. fix value escaping in codeql-env.sh

    Henning Makholm committed May 5, 2021
    Copy the full SHA
    e7e64d5 View commit details

  5. Merge branch 'main' into aeisenberg/warning-message

    Henry Mercer authored and GitHub committed May 5, 2021

    Unverified

    No user is associated with the committer email.
    Learn about vigilant mode
    Copy the full SHA
    c2ec5a2 View commit details

  6. Log each query as it's interpreted when calling codeql database analyze

    Henry Mercer committed May 5, 2021
    Copy the full SHA
    2c0a857 View commit details

  7. Clarify the missing baseline lines of code warning message

    Andrew Eisenberg committed May 5, 2021
    Copy the full SHA
    e04c62b View commit details

Commits on May 4, 2021

  1. Change from metric to rule 

    The SARIF that we are interpreting has moved away from using `metric`
to the more general term, `rule`. We need to adapt our baseline lines of
code counting to use `rule` as well.
    Andrew Eisenberg committed May 4, 2021
    Copy the full SHA
    a2312a0 View commit details

Commits on May 3, 2021

  1. Update CodeQL bundle to 20210503 / 2.5.4

    Aditya Sharad committed May 3, 2021

    Unverified

    No user is associated with the committer email.
    Learn about vigilant mode
    Copy the full SHA
    c3e98fb View commit details

Commits on Apr 30, 2021

  1. update bundle to 20210430

    Henning Makholm committed Apr 30, 2021
    Copy the full SHA
    7ab95f6 View commit details

Commits on Apr 28, 2021

  1. Avoid analyzing excluded language files for line counting 

    This change passes in a list of file types to the line counting
analysis. These are the languages for the databases being analyzed.
Line count analysis is restricted to these files.
    Andrew Eisenberg committed Apr 28, 2021
    Copy the full SHA
    ee23462 View commit details

Commits on Apr 26, 2021

  1. Add baseline metrics for lines of code 

    This commit uses a third party library to estimate the lines of code in
a database that is to be analyzed by codeql.

The estimate uses the same includes and excludes globs for determining
which files should be counted.

The lines of code count is returned by language and injected into the
SARIF as `baseline` property in the `${language}/summary/lines-of-code`
metric.
    Andrew Eisenberg committed Apr 26, 2021
    Copy the full SHA
    998f472 View commit details

Commits on Apr 23, 2021

  1. fix typo

    Robert committed Apr 23, 2021
    Copy the full SHA
    27bf3a2 View commit details

  2. use safeWhich

    Robert committed Apr 23, 2021
    Copy the full SHA
    ce467e7 View commit details

Commits on Apr 22, 2021

  1. Introduce our own toolcache implementation for use by the runnner

    Robert committed Apr 22, 2021
    Copy the full SHA
    8c91ba8 View commit details

Commits on Apr 21, 2021

  1. Merge remote-tracking branch 'origin/main' into hmakholm/pr/2.5.2

    Henning Makholm committed Apr 21, 2021
    Copy the full SHA
    cb4c96b View commit details

  2. Add external git repositories to search path for custom queries

    Edoardo Pirovano authored and Edoardo Pirovano committed Apr 21, 2021
    Copy the full SHA
    578f9fc View commit details

  3. update bundle to 20210421 (CLI 2.5.2)

    Henning Makholm committed Apr 21, 2021
    Copy the full SHA
    46517cf View commit details

Commits on Apr 20, 2021

  1. Ignore non-string values in populateRunAutomationDetails

    David Verdeguer committed Apr 20, 2021
    Copy the full SHA
    496bf0e View commit details

Commits on Apr 19, 2021

  1. Merge branch 'main' into daverlo/runAutomationDetails

    David Verdeguer authored and GitHub committed Apr 19, 2021

    Unverified

    No user is associated with the committer email.
    Learn about vigilant mode
    Copy the full SHA
    bc14da9 View commit details

  2. Add test for existing automationDetails

    David Verdeguer committed Apr 19, 2021
    Copy the full SHA
    351d36f View commit details

Commits on Apr 16, 2021

  1. [Runner] Throw error on unknown option in init command 

    And explicitly document the advanced --trace-process-name and
--trace-process-level args.
    Andrew Eisenberg committed Apr 16, 2021
    Copy the full SHA
    c87ee1c View commit details

  2. Fix populateRunAutomationDetails for null environments

    David Verdeguer committed Apr 16, 2021
    Copy the full SHA
    0ece0d0 View commit details

  3. Prevent the automationDetails to be regenerated if it already exists

    David Verdeguer committed Apr 16, 2021
    Copy the full SHA
    de611b2 View commit details

Commits on Apr 15, 2021

  1. Add automationdetails id to runs

    David Verdeguer committed Apr 15, 2021
    Copy the full SHA
    47755f0 View commit details

Commits on Apr 9, 2021

  1. Use externalRepoAuth when getting a remote config 

    This allows users to specify a different token for retrieving the
codeql config from a different repository.

Fixes https://github.com/github/advanced-security-field/issues/185
    Andrew Eisenberg authored and Andrew Eisenberg committed Apr 9, 2021
    Copy the full SHA
    534192f View commit details

Commits on Mar 31, 2021

  1. fix grammar / punctuation

    Robert committed Mar 31, 2021
    Copy the full SHA
    ca27066 View commit details

Commits on Mar 30, 2021

  1. check push event

    Robert committed Mar 30, 2021
    Copy the full SHA
    2f93805 View commit details

  2. Add special dependabot error message

    Robert committed Mar 30, 2021
    Copy the full SHA
    d4edded View commit details

Commits on Mar 26, 2021

  1. Update CodeQL bundle to 20210326

    Henning Makholm committed Mar 26, 2021
    Copy the full SHA
    1d93ad9 View commit details

Commits on Mar 25, 2021

  1. Rewrite the ref to correctly point to refs/remotes 

    Fixes the rev-parse issues caused by https://github.com/github/codeql-action/pull/428
    Simon Engledew committed Mar 25, 2021

    Unverified

    No user is associated with the committer email.
    Learn about vigilant mode
    Copy the full SHA
    ba14abb View commit details
Older