Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merge main into releases/v3 #2422

Merged
merged 33 commits into from
Aug 13, 2024
Merged
Show file tree
Hide file tree
Changes from 32 commits
Commits
Show all changes
33 commits
Select commit Hold shift + click to select a range
a6c4760
Add packs to init complete status report
rvermeulen Jul 26, 2024
25d2596
Add query-filters to the init complete status report
rvermeulen Jul 26, 2024
9f7e0af
Add registries to the init status complete report
rvermeulen Jul 26, 2024
060c11b
Reword comment
rvermeulen Jul 26, 2024
7ff117d
Address formatting issues
rvermeulen Jul 31, 2024
b7b85bb
Change removal of credentials to adhere to no-vars-unused
rvermeulen Jul 31, 2024
19a1da5
Update map and minified JS files
rvermeulen Jul 31, 2024
7be3a64
Move `cloneObject` into utilities and export it.
rvermeulen Aug 1, 2024
ba3ac6f
Clone packs from configuration to prevent modifications
rvermeulen Aug 1, 2024
e6c9383
Explicitly set value of `registries` and `query_filters` when undefined
rvermeulen Aug 2, 2024
0f24d46
Merge branch 'main' into rvermeulen/extend-init-complete-status-report
rvermeulen Aug 2, 2024
7c2bec0
Merge remote-tracking branch 'upstream/main' into rvermeulen/extend-i…
rvermeulen Aug 6, 2024
1c5b392
Update changelog and version after v3.26.0
github-actions[bot] Aug 6, 2024
ecf4658
Required checks script: Ignore skipped jobs
henrymercer Aug 6, 2024
50d1f40
Update checked-in dependencies
github-actions[bot] Aug 6, 2024
c056c18
Merge pull request #2412 from github/henrymercer/update-required-igno…
henrymercer Aug 6, 2024
3ec2588
Merge pull request #2411 from github/mergeback/v3.26.0-to-main-eb055d73
henrymercer Aug 6, 2024
a8ab493
Merge branch 'main' into rvermeulen/extend-init-complete-status-report
rvermeulen Aug 6, 2024
5c02493
Merge pull request #2394 from rvermeulen/rvermeulen/extend-init-compl…
rvermeulen Aug 6, 2024
6ef274e
Add details of supported versions for GHES 3.14
henrymercer Aug 8, 2024
def1e35
Improve consistency in supported version naming
henrymercer Aug 8, 2024
18c419e
Update default bundle to codeql-bundle-v2.18.2
github-actions[bot] Aug 8, 2024
5d9950f
Add changelog note
github-actions[bot] Aug 8, 2024
50357f5
Add telemetry for time spent extracting CodeQL bundle
henrymercer Aug 8, 2024
44ecae4
Fix matrixing of "submit SARIF after failure" check
henrymercer Aug 8, 2024
25ad3c8
Merge pull request #2418 from github/henrymercer/extraction-time-tele…
henrymercer Aug 8, 2024
d620faa
Bump the npm group with 4 updates (#2419)
dependabot[bot] Aug 12, 2024
41833c7
Log job run UUID
henrymercer Aug 13, 2024
c4c3c44
Merge pull request #2417 from github/update-bundle/codeql-bundle-v2.18.2
alexet Aug 13, 2024
da9ecb0
Merge pull request #2421 from github/henrymercer/log-job-run-uuid
henrymercer Aug 13, 2024
0d5982a
Merge pull request #2416 from github/henrymercer/ghes-3.14-compat-info
henrymercer Aug 13, 2024
18ac79e
Update changelog for v3.26.1
github-actions[bot] Aug 13, 2024
5b15b9e
Revert "Merge pull request #2417 from github/update-bundle/codeql-bun…
rvermeulen Aug 13, 2024
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions .github/workflows/__submit-sarif-failure.yml

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

3 changes: 1 addition & 2 deletions .github/workflows/script/update-required-checks.sh
Original file line number Diff line number Diff line change
Expand Up @@ -28,8 +28,7 @@ fi
echo "Getting checks for $GITHUB_SHA"

# Ignore any checks with "https://", CodeQL, LGTM, and Update checks.
# Also ignore the non-matrixed "Unit Tests" job that only runs on pushes to protected branches.
CHECKS="$(gh api repos/github/codeql-action/commits/"${GITHUB_SHA}"/check-runs --paginate | jq --slurp --compact-output --raw-output '[.[].check_runs | .[].name | select(contains("https://") or . == "CodeQL" or . == "Dependabot" or . == "check-expected-release-files" or . == "Unit Tests" or contains("Update") or contains("update") or contains("test-setup-python-scripts") | not)] | unique | sort')"
CHECKS="$(gh api repos/github/codeql-action/commits/"${GITHUB_SHA}"/check-runs --paginate | jq --slurp --compact-output --raw-output '[.[].check_runs.[] | select(.conclusion != "skipped") | .name | select(contains("https://") or . == "CodeQL" or . == "Dependabot" or . == "check-expected-release-files" or contains("Update") or contains("update") or contains("test-setup-python-scripts") | not)] | unique | sort')"

echo "$CHECKS" | jq

Expand Down
4 changes: 4 additions & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,10 @@ See the [releases page](https://github.com/github/codeql-action/releases) for th

Note that the only difference between `v2` and `v3` of the CodeQL Action is the node version they support, with `v3` running on node 20 while we continue to release `v2` to support running on node 16. For example `3.22.11` was the first `v3` release and is functionally identical to `2.22.11`. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers.

## 3.26.1 - 13 Aug 2024

- Update default CodeQL bundle version to 2.18.2. [#2417](https://github.com/github/codeql-action/pull/2417)

## 3.26.0 - 06 Aug 2024

- _Deprecation:_ Swift analysis on Ubuntu runner images is no longer supported. Please migrate to a macOS runner if this affects you. [#2403](https://github.com/github/codeql-action/pull/2403)
Expand Down
15 changes: 8 additions & 7 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -33,17 +33,18 @@ To provide the best experience to customers using older versions of GitHub Enter

For more information, see "[Code scanning: deprecation of CodeQL Action v2](https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/)."

## Supported versions of the CodeQL CLI and GitHub Enterprise Server
## Supported versions of the CodeQL Bundle and GitHub Enterprise Server

We typically release new minor versions of the CodeQL Action and CLI when a new minor version of GitHub Enterprise Server (GHES) is released. When a version of GHES is deprecated, the CodeQL Action and CLI releases that shipped with it are deprecated as well.
We typically release new minor versions of the CodeQL Action and Bundle when a new minor version of GitHub Enterprise Server (GHES) is released. When a version of GHES is deprecated, the CodeQL Action and Bundle releases that shipped with it are deprecated as well.

| Recommended CodeQL Action | Recommended CodeQL CLI Version | GitHub Environment |
| Recommended CodeQL Action | Recommended CodeQL Bundle Version | GitHub Environment |
|---------|----------|--------------|
| `v3` | default (do not pass a `tools` input) | GitHub.com |
| `v3.24.11` | `v2.16.6` | Enterprise Server 3.13 |
| `3.22.12` | `2.15.5` | Enterprise Server 3.12 |
| `2.22.1` | `2.14.6` | Enterprise Server 3.11 |
| `2.20.3` | `2.13.5` | Enterprise Server 3.10 |
| `v3.25.11` | `2.17.6` | Enterprise Server 3.14 |
| `v3.24.11` | `2.16.6` | Enterprise Server 3.13 |
| `v3.22.12` | `2.15.5` | Enterprise Server 3.12 |
| `v2.22.1` | `2.14.6` | Enterprise Server 3.11 |
| `v2.20.3` | `2.13.5` | Enterprise Server 3.10 |

CodeQL Action `v2` will stop receiving updates when GHES 3.11 is deprecated.

Expand Down
9 changes: 3 additions & 6 deletions lib/codeql.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/codeql.js.map

Large diffs are not rendered by default.

18 changes: 9 additions & 9 deletions lib/codeql.test.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/codeql.test.js.map

Large diffs are not rendered by default.

7 changes: 7 additions & 0 deletions lib/config-utils.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/config-utils.js.map

Large diffs are not rendered by default.

8 changes: 4 additions & 4 deletions lib/defaults.json
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
{
"bundleVersion": "codeql-bundle-v2.18.1",
"cliVersion": "2.18.1",
"priorBundleVersion": "codeql-bundle-v2.18.0",
"priorCliVersion": "2.18.0"
"bundleVersion": "codeql-bundle-v2.18.2",
"cliVersion": "2.18.2",
"priorBundleVersion": "codeql-bundle-v2.18.1",
"priorCliVersion": "2.18.1"
}
9 changes: 7 additions & 2 deletions lib/diagnostics.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/diagnostics.js.map

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

Loading
Loading