robojerk/codeql-action

Merge pull request #1009 from github/henrymercer/run-pr-checks-on-v2-branch

Browse source 
Run all PR checks on the `v2` branch
This commit is contained in:
Henry Mercer 2022-03-30 16:53:09 +01:00 committed by GitHub
commit 4d339ae3ec
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
25 changed files with 23 additions and 132 deletions
Download patch file Download diff file Expand all files Collapse all files

1
.github/workflows/__analyze-ref-input.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__debug-artifacts.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__extractor-ram-threads.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__go-custom-queries.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__go-custom-tracing-autobuild.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__go-custom-tracing.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__javascript-source-root.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__multi-language-autodetect.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__packaging-config-inputs-js.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__packaging-config-js.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__packaging-inputs-js.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__remote-config.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__rubocop-multi-language.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__split-workflow.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__test-local-codeql.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__test-proxy.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__test-ruby.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__unset-environment.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__upload-ref-sha-input.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

1
.github/workflows/__with-checkout-path.yml generated vendored
View file

@ -12,6 +12,7 @@ on:
branches:
- main
- v1
- v2
pull_request:
types:
- opened

2
.github/workflows/pr-checks.yml vendored
View file

@ -2,7 +2,7 @@ name: PR Checks (Basic Checks and Runner)
on:
push:
branches: [main, v1]
branches: [main, v1, v2]
pull_request:
# Run checks on reopened draft PRs to support triggering PR checks on draft PRs that were opened
# by other workflows.

2
.github/workflows/python-deps.yml vendored
View file

@ -2,7 +2,7 @@ name: Test Python Package Installation on Linux and Mac
on:
push:
branches: [main, v1]
branches: [main, v1, v2]
pull_request:
# Run checks on reopened draft PRs to support triggering PR checks on draft PRs that were opened
# by other workflows.

55
.github/workflows/release-runner.yml vendored
View file

@ -1,55 +0,0 @@
name: Release runner
on:
workflow_dispatch:
inputs:
bundle-tag:
description: 'Tag of the bundle release (e.g., "codeql-bundle-20200826")'
required: false
jobs:
release-runner:
timeout-minutes: 45
runs-on: ubuntu-latest
env:
RELEASE_TAG: "${{ github.event.inputs.bundle-tag }}"
strategy:
matrix:
extension: ["linux", "macos", "win.exe"]
steps:
- uses: actions/checkout@v2
- name: Build runner
run: |
cd runner
npm install
npm run build-runner
- uses: actions/upload-artifact@v2
with:
name: codeql-runner-${{matrix.extension}}
path: runner/dist/codeql-runner-${{matrix.extension}}
- name: Resolve Upload URL for the release
if: ${{ github.event.inputs.bundle-tag != null }}
id: save_url
run: |
UPLOAD_URL=$(curl -sS \
"https://api.github.com/repos/${GITHUB_REPOSITORY}/releases/tags/${RELEASE_TAG}" \
-H "Accept: application/json" \
-H "Authorization: Bearer ${{ secrets.GITHUB_TOKEN }}" | jq .upload_url | sed s/\"//g)
echo ${UPLOAD_URL}
echo "::set-output name=upload_url::${UPLOAD_URL}"
- name: Upload Platform Package
if: ${{ github.event.inputs.bundle-tag != null }}
uses: actions/upload-release-asset@v1
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
upload_url: ${{ steps.save_url.outputs.upload_url }}
asset_path: runner/dist/codeql-runner-${{matrix.extension}}
asset_name: codeql-runner-${{matrix.extension}}
asset_content_type: application/octet-stream

74
.github/workflows/split.yml vendored
View file

@ -1,74 +0,0 @@
#
# Split the CodeQL Bundle into platform bundles
#
# Instructions:
# 1. Upload the new codeql-bundle (codeql-bundle.tar.gz) as an asset of the
# release (codeql-bundle-20200826)
# 2. Take note of the CLI Release used by the bundle (e.g., v2.2.5)
# 3. Manually launch this workflow file (via the Actions UI) specifying
# - The CLI Release (e.g., v2.2.5)
# - The release tag (e.g., codeql-bundle-20200826)
# 4. If everything succeeds you should see 3 new assets.
#
name: Split Bundle
on:
workflow_dispatch:
inputs:
cli-release:
description: 'CodeQL CLI Release (e.g., "v2.2.5")'
required: true
bundle-tag:
description: 'Tag of the bundle release (e.g., "codeql-bundle-20200826")'
required: true
jobs:
build:
runs-on: ubuntu-latest
timeout-minutes: 45
env:
CLI_RELEASE: "${{ github.event.inputs.cli-release }}"
RELEASE_TAG: "${{ github.event.inputs.bundle-tag }}"
strategy:
fail-fast: false
matrix:
platform: ["linux64", "osx64", "win64"]
steps:
- name: Resolve Upload URL for the release
id: save_url
run: |
UPLOAD_URL=$(curl -sS \
"https://api.github.com/repos/${GITHUB_REPOSITORY}/releases/tags/${RELEASE_TAG}" \
-H "Accept: application/json" \
-H "Authorization: Bearer ${{ secrets.GITHUB_TOKEN }}" | jq .upload_url | sed s/\"//g)
echo ${UPLOAD_URL}
echo "::set-output name=upload_url::${UPLOAD_URL}"
- name: Download CodeQL CLI and Bundle
run: |
wget --no-verbose "https://github.com/${GITHUB_REPOSITORY}/releases/download/${RELEASE_TAG}/codeql-bundle.tar.gz"
wget --no-verbose "https://github.com/github/codeql-cli-binaries/releases/download/${CLI_RELEASE}/codeql-${{matrix.platform}}.zip"
- name: Create Platform Package
# Replace the codeql-binaries with the platform specific ones
run: |
gunzip codeql-bundle.tar.gz
tar -f codeql-bundle.tar --delete codeql
unzip -q codeql-${{matrix.platform}}.zip
tar -f codeql-bundle.tar --append codeql
gzip codeql-bundle.tar
mv codeql-bundle.tar.gz codeql-bundle-${{matrix.platform}}.tar.gz
du -sh codeql-bundle-${{matrix.platform}}.tar.gz
- name: Upload Platform Package
uses: actions/upload-release-asset@v1
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
upload_url: ${{ steps.save_url.outputs.upload_url }}
asset_path: ./codeql-bundle-${{matrix.platform}}.tar.gz
asset_name: codeql-bundle-${{matrix.platform}}.tar.gz
asset_content_type: application/tar+gzip

2
pr-checks/sync.py
View file

@ -108,7 +108,7 @@ for file in os.listdir('checks'):
},
'on': {
'push': {
'branches': ['main', 'v1']
'branches': ['main', 'v1', 'v2']
},
'pull_request': {
'types': ["opened", "synchronize", "reopened", "ready_for_review"]