robojerk/codeql-action
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
6358 commits 0 branches 1 tag 471 MiB
Commit graph

82 commits

Author SHA1 Message Date
Henry Mercer
9cd802ec12 Give only read-level security-events permission where possible 2025-01-24 13:27:33 +00:00
Henry Mercer
bd76a92ebe PR checks: Remove code for unsupported versions 2025-01-15 17:50:02 +00:00
Andrew Eisenberg
5f0a4d3e67 Bump the minimum supported version of CodeQL to 2.15.5 2024-12-16 15:39:28 -08:00
Andrew Eisenberg
1489c9c992
Exclude Swift on macos for version 2.14.6 2024-11-07 16:06:21 -08:00
Andrew Eisenberg
45a6057506
Move to macos-13 runners 
Macos-12 runners are deprecated and are refusing to run.
 2024-11-06 15:15:22 -08:00
Josh Soref
756aa649df spelling: macos 
Signed-off-by: Josh Soref <2119212+jsoref@users.noreply.github.com>
 2024-11-06 06:43:41 -05:00
Henry Mercer
619f0d628b Update CodeQL versions tested in generated checks 2024-10-15 19:43:56 +01:00
Henry Mercer
136f5a589b Add CodeQL v2.17.6 to default test versions 2024-08-05 19:28:35 +01:00
Henry Mercer
a1404425d9 Remove 2.12.6 from tests 2024-08-05 19:28:35 +01:00
Angela P Wen
9c646c24a4
Add warning and update PR checks for Swift on Linux (#2399) 
* PR checks: Only run Swift build command on MacOS
* PR checks: update to only test Swift on MacOS
* Log warning if workflow is running Swift on Ubuntu
---------

Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>
 2024-08-02 16:27:45 +02:00
Angela P Wen
495201e69c PR check generator: add excludeOsAndVersionCombination 2024-06-24 13:33:24 +02:00
Andrew Eisenberg
79f6e84e69
Ensure string argument instead of boolean 2024-06-14 14:59:22 -07:00
Andrew Eisenberg
3f41e06a52
Merge remote-tracking branch 'upstream/main' into aeisenberg/enable-kotlin-tests 2024-06-14 13:20:03 -07:00
Angela P Wen
67d5a9a476 PR Checks: Use tools: linked rather than tools: latest 
Also changes the input and output in the `prepare-test` Action to use `linked`.
 2024-05-31 11:49:47 +02:00
Angela P Wen
445165beea PR Checks: disable tests for Swift on Linux until CLI 2.17.4 2024-05-17 15:08:08 -07:00
Henry Mercer
c59e05245f Disable fail fast in generated workflows 2024-05-10 16:24:22 +01:00
Angela P Wen
ac2f82a1ff
Log warning if SIP is disabled and CLI version is < 2.15.1 (#2261) 
* PR Checks: use `macos-12` runners for CLI v. < 2.15.1

Prior to CLI v2.15.1, MacOS ARM runners were not supported by the build tracer. "macos-latest" is now an ARM runner, so we run these tests on the old CLIs on Intel runners instead.

* Log a warning if SIP is disabled and CLI is < 2.15.1

* Add changenote for SIP-disabled support on old CLI versions

* Set up Python 3.11 for all MacOS checks
 2024-04-25 22:20:13 +00:00
Henry Mercer
5e9199f7b4 Update language autodetect Swift check 2024-04-09 18:25:58 +01:00
Henry Mercer
2f0d0eaebd Update PR checks 2024-04-09 12:19:26 +01:00
Angela P Wen
f421cda8e7
Run integration test PR checks nightly (#2222) 
* Run integration test PR checks nightly

Scheduled for 5AM UTC. This will assist in catching bugs introduced with new runner images.

* Specify generated YAML indentations

For consistency with our non-autogenerated files and GitHub documentation, we should further indent items in lists (`sequence`).
 2024-04-04 10:30:18 -07:00
Andrew Eisenberg
72f5fb9a00
Merge branch 'main' into aeisenberg/enable-kotlin-tests 2024-04-01 11:27:17 -07:00
Josh Soref
932a7d5a59
Remove stray trailing spaces (#2122) 2024-02-08 09:48:13 +00:00
Henry Mercer
35b10b5ff7 Merge branch 'main' into henrymercer/drop-codeql-v2.11.5 2024-01-02 18:03:32 +00:00
dependabot[bot]
596b173a4e
Bump the actions group with 2 updates (#2056) 
* Bump the actions group with 2 updates

Bumps the actions group with 2 updates: [actions/setup-python](https://github.com/actions/setup-python) and [actions/setup-go](https://github.com/actions/setup-go).


Updates `actions/setup-python` from 4 to 5
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v4...v5)

Updates `actions/setup-go` from 4 to 5
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>

* Bump `setup-python` and `setup-go` to v5

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Angela P Wen <angelapwen@github.com>
 2023-12-27 17:12:00 -08:00
nickfyson
0e9a210226 update workflows to run on all release branches 2023-12-06 15:57:43 +00:00
Henry Mercer
649145214e Update PR checks 
Stop testing `stable-20220908` bundle as this is no longer supported.
 2023-11-27 12:41:44 +00:00
Andrew Eisenberg
7c60ff7ad6 Use setup-python@v4 2023-11-02 07:49:59 -07:00
Andrew Eisenberg
9ef69a2c7a Be more precise about when to use python 3.11 
Only run use 3.11 on versions of of the CLI that we know don't support
3.12.
 2023-11-01 18:10:09 -07:00
Andrew Eisenberg
bd4005aa6a Force python 3.11 for macos 
3.12 does not work.
 2023-11-01 16:01:27 -07:00
Andrew Eisenberg
fcf7c47f2f Explicitly setup a kotlin version 
Change the `prepare-test` action to conditionally setup kotlin.
 2023-10-13 15:25:37 -07:00
Andrew Eisenberg
7feb9a04fd Re-enable kotlin tests 
Reverts https://github.com/github/codeql-action/pull/1473
 2023-10-10 16:08:54 -07:00
Henry Mercer
467bfa1cff Update CodeQL versions tested in PR checks 2023-09-27 16:21:16 +01:00
dependabot[bot]
321d3e057d
Bump the actions group with 1 update 
Bumps the actions group with 1 update: [actions/checkout](https://github.com/actions/checkout).

- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: actions
...

Signed-off-by: dependabot[bot] <support@github.com>
 2023-09-04 18:00:31 +00:00
Angela P Wen
1f63aba653
PR Checks: Test codeql-bundle.tar.gz (#1822) 2023-08-03 15:38:21 +00:00
Henry Mercer
49e0fc2ba1 PR checks: Rename cached to default 2023-08-02 18:02:10 +01:00
Henry Mercer
9f45792756 Update autogenerated notice to refer to specific ruamel.yaml version 2023-06-12 13:28:11 +01:00
Henry Mercer
f1c4784a3f Update checks 2023-06-12 11:26:55 +01:00
Angela P Wen
cdcdbb5797
PR checks: stop setting experimental Swift var for new CLI versions (#1718) 
Now that `latest` and `cached` are both 2.13.3, which is the version in which we GA'ed Swift, we should stop setting this experimental variable when we test these CLI versions so we can test the case where the variable is unset.
 2023-06-06 08:49:09 -07:00
Henry Mercer
1023a086ae
Merge pull request #1694 from jsoref/fixes 
Fix running tests on forks, and handle invalid URIs when fingerprinting
 2023-05-25 15:41:27 +01:00
Josh Soref
dba4f66682 Grant security-events: write permissions 2023-05-24 18:14:01 -04:00
Josh Soref
8f9b20ba50 Clarify how to update workflows 2023-05-24 18:14:01 -04:00
Angela P Wen
570734c55c
Remove unnecessary conditional for Ruby autodetect (#1699) 
We should check language autodetect for Ruby unconditionally. We can now move it into the step that checks all other languages.
 2023-05-24 18:33:06 +00:00
Angela P Wen
8c923c00a3
Fix Swift PR Checks on nightly-latest CLI (#1696) 2023-05-24 17:59:40 +01:00
Henry Mercer
5da64f56c0 Set up Swift in unset environment workflow 2023-04-05 20:27:02 +01:00
Henry Mercer
f7a67e4341 Merge branch 'main' into henrymercer/remove-legacy-tracing 2023-04-05 18:39:27 +01:00
Henry Mercer
e85546ccca Move internal Actions into .github/actions 
This is a more standard location for these custom Actions.
 2023-04-03 18:29:29 +01:00
Henry Mercer
72d018e267 Improve serialization of Swift environment variable if expression 2023-03-29 13:15:59 +01:00
Henry Mercer
6ef37003ca Update CodeQL releases used in PR checks 2023-03-28 20:07:09 +01:00
Angela P Wen
760583e70d
Bump setup-go from v3 to v4 (#1595) 
* Bump actions/setup-go from 3 to 4

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update autogenerated workflows

* Bump setup-go from v3 to v4

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-03-21 10:22:27 -07:00
Andrew Eisenberg
c208575433 Avoid uploading databases after integration tests 
We are still getting coverage of the upload capability through the
standard codeql analysis workflow.
 2023-03-14 14:55:58 -07:00