Merge branch 'main' into aeisenberg/remove-experiemental-message

2022-01-24 13:30:45 -08:00 · 2022-01-24 13:30:45 -08:00 · 1f7dab4ba2
commit 1f7dab4ba2
parent f8c38c1af3 8a36468d11
13 changed files with 42 additions and 41 deletions
--- a/src/analyze-action.ts
+++ b/src/analyze-action.ts
@ -111,12 +111,6 @@ async function run() {
      repositoryNwo,
      logger
    );
-    // We currently perform an API request in both the `init` and `analyze` Actions to determine
-    // what feature flags are enabled. At the time of writing, this redundant API call is acceptable
-    // to us, but if we wanted to avoid it, we could do so by serializing the feature flags as part
-    // of the config file.
-    void featureFlags.preloadFeatureFlags();
-
    await runFinalize(outputDir, threads, memory, config, logger);
    if (actionsUtil.getRequiredInput("skip-queries") !== "true") {
      runStats = await runQueries(
--- a/src/feature-flags.test.ts
+++ b/src/feature-flags.test.ts
@ -115,10 +115,13 @@ test("Feature flags exception is propagated if the API request errors", async (t

    mockFeatureFlagApiEndpoint(500, {});

-    await t.throwsAsync(async () => featureFlags.preloadFeatureFlags(), {
-      message:
-        "Encountered an error while trying to load feature flags: Error: some error message",
-    });
+    await t.throwsAsync(
+      async () => featureFlags.getValue(FeatureFlag.DatabaseUploadsEnabled),
+      {
+        message:
+          "Encountered an error while trying to load feature flags: Error: some error message",
+      }
+    );
  });
 });

--- a/src/feature-flags.ts
+++ b/src/feature-flags.ts
@ -42,10 +42,6 @@ export class GitHubFeatureFlags implements FeatureFlags {
    return response;
  }

-  async preloadFeatureFlags(): Promise<void> {
-    await this.getApiResponse();
-  }
-
  private async getApiResponse(): Promise<FeatureFlagsApiResponse> {
    const loadApiResponse = async () => {
      // Do nothing when not running against github.com
@ -66,13 +62,22 @@ export class GitHubFeatureFlags implements FeatureFlags {
        );
        return response.data;
      } catch (e) {
-        // Some feature flags, such as `ml_powered_queries_enabled` affect the produced alerts.
-        // Considering these feature flags disabled in the event of a transient error could
-        // therefore lead to alert churn. As a result, we crash if we cannot determine the value of
-        // the feature flags.
-        throw new Error(
-          `Encountered an error while trying to load feature flags: ${e}`
-        );
+        if (util.isHTTPError(e) && e.status === 403) {
+          this.logger.warning(
+            "This run of the CodeQL Action does not have permission to access Code Scanning API endpoints. " +
+              "As a result, it will not be opted into any experimental features. " +
+              "This could be because the Action is running on a pull request from a fork. If not, " +
+              `please ensure the Action has the 'security-events: write' permission. Details: ${e}`
+          );
+        } else {
+          // Some feature flags, such as `ml_powered_queries_enabled` affect the produced alerts.
+          // Considering these feature flags disabled in the event of a transient error could
+          // therefore lead to alert churn. As a result, we crash if we cannot determine the value of
+          // the feature flags.
+          throw new Error(
+            `Encountered an error while trying to load feature flags: ${e}`
+          );
+        }
      }
    };

--- a/src/init-action.ts
+++ b/src/init-action.ts
@ -143,7 +143,6 @@ async function run() {
    repositoryNwo,
    logger
  );
-  void featureFlags.preloadFeatureFlags();

  try {
    const workflowErrors = await validateWorkflow();