Граф коммитов

661 Коммитов

Автор SHA1 Сообщение Дата
Dave Bartolomeo 966be2727e Use correct bundle version for second init 2022-11-02 12:22:39 -04:00
Dave Bartolomeo 3507cdc796 Stop using `latest` for second init 2022-11-02 12:17:24 -04:00
Dave Bartolomeo bb0b0801dd Try again 2022-11-02 11:38:11 -04:00
Dave Bartolomeo 5d288d321a Use latest released bundle for QL-for-QL 2022-11-02 11:10:04 -04:00
Paolo Tranquilli 17012c1a45 Swift: fix workflow job dependencies 2022-11-02 14:35:23 +01:00
Paolo Tranquilli e6d4685109 Swift: split quick tests in separate action
Also, make the quick test list explicit in the action code, so we can
catch an inadvertant test deletion.
2022-11-02 14:32:45 +01:00
Jean Helie 37869e816b
Merge pull request #11067 from github/jhelie/add-atm-model-integration-tests-hello-world
ATM: add hello world workflow for development of model integration te…
2022-11-02 14:20:51 +01:00
Jean Helie c4b750002e
Merge branch 'main' into jhelie/add-atm-model-integration-tests-hello-world 2022-11-02 10:09:56 +01:00
Jean Helie e8549a413b rename workflow 2022-11-02 10:09:06 +01:00
Paolo Tranquilli 57a616262f Swift: fix run cwd 2022-11-02 06:27:09 +01:00
Paolo Tranquilli 0d9ecfc4de Swift: move small bazel tests to build action 2022-11-02 06:23:44 +01:00
Paolo Tranquilli 6e370beb92 Swift: turn on macOS QL tests with slicing 2022-11-02 06:07:55 +01:00
Jean Helie 3d1f75221b address @henrymercer's comments 2022-11-01 20:57:58 +01:00
Jean Helie 44bf8184fe ATM: add PR check running the boosted queries 2022-11-01 20:57:58 +01:00
Jean Helie 1d6db8db9a ATM: add hello world workflow for development of model integration tests workflow 2022-11-01 14:51:11 +01:00
Arthur Baars aba87a139d
Merge pull request #10668 from aibaars/ruby-deps
Ruby: update dependencies
2022-11-01 13:55:42 +01:00
Arthur Baars 8b39059d3a
Update .github/workflows/ruby-build.yml 2022-11-01 10:49:12 +01:00
Paolo Tranquilli 59284739dd Swift: reenable ql tests on macos 2022-10-31 17:07:56 +01:00
Paolo Tranquilli 80ea2b8c5e Swift: use macos-12-xl runners 2022-10-31 16:59:11 +01:00
Paolo Tranquilli 003866621f Swift: rework workflows
* A unique workflow file has been created merging all `swift-*.yml`
  workflows
* Change filtering at job level was added using [dorny/paths-filter][1]
* only one build of the extractor is made, and then shared via cache
  (not as an artifact because of [this longstading issue][2])
* integration tests are now run on on macOS
* qltests are not run any more on macOS to cut on feedback time
* autobuilder tests were moved to the macOS build step to avoid loading
  bazel twice

[1]: https://github.com/dorny/paths-filter#examples
[2]: https://github.com/actions/upload-artifact/issues/38
2022-10-31 16:59:11 +01:00
Paolo Tranquilli fd226c51c1
Merge pull request #10924 from github/redsun82/swift-fix-qltest-failure-reporting
Swift: add qltest tests and fix its failure reporting
2022-10-24 09:34:12 +02:00
Jean Helie c0593c945b ATM: add hello world version of workflow checking queries run 2022-10-21 16:37:43 +02:00
Paolo Tranquilli cf7a5f877b Swift: add `qltest.sh` tests 2022-10-21 12:54:09 +02:00
dependabot[bot] c3693f1a20 Swift: bump actions/setup-python from 3 to 4
Also fixes python version with a `.pythonversion` file.

Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-10-19 18:10:42 +02:00
Alex Denisov bb31ff7aef Swift: drop redundant workflow 2022-10-19 16:36:45 +02:00
Alex Denisov 7790abce22 Swift: better CI names 2022-10-19 16:31:27 +02:00
Alex Denisov f6cfeab357 Swift: add Xcode autobuilder to CI 2022-10-19 16:29:08 +02:00
Arthur Baars f7203bfcb8 CI: fix qhelp preview
The command to gather the changed files uses NULL character terminated "lines",
therefore we should supply the `-z` flag to `basename` as well. Otherwise we
end up calling `git grep -l "\n"` which would list all files containing a newline.
2022-10-10 15:27:48 +02:00
Arthur Baars ae7e6ef701 Ruby: update dependencies 2022-10-04 13:44:22 +02:00
Arthur Baars c7b01975c1
Run QLHelp preview for all languages 2022-09-30 12:08:05 +02:00
dependabot[bot] 5aecf0e31d
Bump actions/upload-artifact from 2 to 3
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-23 04:05:06 +00:00
dependabot[bot] f63381b98a
Bump actions/stale from 5 to 6
Bumps [actions/stale](https://github.com/actions/stale) from 5 to 6.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-09-22 03:58:17 +00:00
Tom Hvitved a9f2e5272f
Merge pull request #10376 from hvitved/ruby/no-ast-by-default
Ruby: Do not expose AST layer through `ruby.qll`
2022-09-21 13:15:30 +02:00
Paolo Tranquilli 9fb4ff70b4
Merge branch 'main' into redsun82/swift-action-triggers 2022-09-20 14:23:22 +02:00
Paolo Tranquilli 45fc1d5cdf Swift: fix version in integration tests 2022-09-20 12:51:48 +02:00
Paolo Tranquilli 9d3039f2b1 Swift: trigger workflows on bazel changes
The `*.bazel*` trigger currently matches
* `.bazelrc`
* `.bazelversion`
* `WORKSPACE.bazel`
* `BUILD.bazel`

It will match `MODULE.bazel` as well when we add that.
2022-09-20 10:44:16 +02:00
Tom Hvitved 007ab2b7ce Ruby: Do not expose AST layer through `ruby.qll` 2022-09-13 19:59:56 +02:00
Tom Hvitved b3653cc3d0
Merge pull request #10216 from hvitved/ssa/shared-lib
SSA: Create a new `codeql/shared-ssa` library pack and move implementation there
2022-09-08 15:39:29 +02:00
Tom Hvitved 66df44f8c9
Merge pull request #10310 from hvitved/csharp/docs/shared-compilation
Docs: No longer mention required `/p:UseSharedCompilation=false`
2022-09-06 13:20:59 +02:00
Tom Hvitved eff3747eb9 Docs: No longer mention required `/p:UseSharedCompilation=false` 2022-09-06 10:13:29 +02:00
Tom Hvitved 12015928c1
Merge pull request #10295 from hvitved/csharp/code-analysis-shared-compilation
C#: No longer manually disable shared compilation in `codeql-analysis.yml`
2022-09-06 09:45:31 +02:00
Tamás Vajk 1178dcb507
Merge pull request #10293 from tamasvajk/fix/ql4ql-pr-trigger
Workflow: Add paths filter to QL for QL workflow
2022-09-05 16:22:05 +02:00
Tom Hvitved e680d1a6ec C#: No longer manually disable shared compilation in `codeql-analysis.yml`
Instead, rely on the tracer to inject the flag.
2022-09-05 13:55:58 +02:00
Tamás Vajk 674305195a
Apply suggestions from code review
Co-authored-by: Erik Krogh Kristensen <erik-krogh@github.com>
2022-09-05 12:19:54 +02:00
Tamas Vajk d50e3c77e5 Workflow: Add paths filter to QL for QL workflow 2022-09-05 11:55:03 +02:00
Edoardo Pirovano 14dafefb79
QL4QL: Add `--search-path` to `codeql resolve languages` calls 2022-09-05 10:23:23 +01:00
Tom Hvitved 6b728acd9e Use specific `codeql/shared-ssa` pack for the SSA library 2022-09-01 21:23:33 +02:00
Tom Hvitved c6807f5c05 Update two Actions workflows 2022-09-01 09:36:50 +02:00
erik-krogh cddcea5d56
cache entire pack 2022-08-23 13:51:03 +02:00
erik-krogh e88d7d5027
simplify QL-for-QL action 2022-08-22 22:39:16 +02:00
Chris Smowton 25195bb0ba
Merge pull request #10103 from smowton/smowton/feature/golang-1.19-support
Go: support go 1.19
2022-08-22 16:49:11 +01:00
Erik Krogh Kristensen cede617840
Merge pull request #10012 from erik-krogh/update-ql-for-ql-action
QL: update codeql-action in QL-for-QL
2022-08-22 15:11:29 +02:00
Chris Smowton e5370a0caa
Set MacOS and Windows Go versions to 1.19 2022-08-19 21:19:13 +01:00
Chris Smowton 6ac6a81bfa
Update test action to use go 1.19 2022-08-19 18:37:39 +01:00
erik-krogh 37f6fecf51
don't check the formatting on the test files 2022-08-16 13:49:56 +02:00
erik-krogh b3adb62adb
move the pack cache to where it's read 2022-08-15 22:47:08 +02:00
erik-krogh d38d810677
include the workflow in the cache key 2022-08-15 22:47:08 +02:00
erik-krogh ae08130451
more threads 2022-08-15 22:47:05 +02:00
erik-krogh 427a607843
point codeql-action to the local QL-for-QL queries 2022-08-15 22:46:57 +02:00
erik-krogh 847934078c
update the version of codeql-action used by QL-for-QL 2022-08-15 22:28:05 +02:00
erik-krogh eb6c2882f9
cleanup pack in QL-for-QL 2022-08-11 10:22:32 +02:00
Tamas Vajk 2cab1ed076 Fix path of `fetch-codeql` 2022-08-09 07:59:25 +02:00
Arthur Baars 0be625f396
Merge pull request #9954 from aibaars/fix-triggers
CI: fix path triggers
2022-08-02 17:00:23 +02:00
Arthur Baars 64704057cb CI: fix path triggers 2022-08-02 16:33:21 +02:00
Arthur Baars c63afbf7be CI: remove left-over 'env' commands 2022-08-01 18:49:37 +02:00
Arthur Baars 7dc3d7d47e CI: remove unneeded PATH definitions 2022-08-01 18:17:04 +02:00
Arthur Baars 4d35d8da48 CI: fix Ruby build job 2022-08-01 16:15:04 +02:00
Arthur Baars 29381dc264 Use fetch-codeql in more places 2022-08-01 15:43:22 +02:00
Arthur Baars 2bbd2f36c9 Fix .github/workflows/query-list.yml 2022-08-01 12:56:07 +02:00
Arthur Baars 3b8eeb09bf Add fetch-codeql path to Actions triggers 2022-08-01 12:56:06 +02:00
Arthur Baars bc05cdaa4d Implement fetch-codeql using 'gh codeql' 2022-08-01 12:55:35 +02:00
Erik Krogh Kristensen a7a9428dc1 split the sarif file into languages 2022-07-14 13:20:52 +02:00
Erik Krogh Kristensen 47c9b446f0 exclude upgrade scripts from QL-for-QL 2022-07-14 13:01:40 +02:00
Erik Krogh Kristensen 380070f2e4 rewrite the QL-for-QL workflow to just do everything in one go 2022-07-14 12:54:27 +02:00
Erik Krogh Kristensen 878168384e remove tools:latest from codeql-action in QL-for-QL 2022-07-13 09:50:54 +02:00
Erik Krogh Kristensen 89043ec4ef Merge branch 'main' into param2 2022-07-12 23:21:11 +02:00
Paolo Tranquilli c393c9b03e Revert "Fix change note check to accept changes to itself"
This reverts commit 2dca78295d.
2022-07-01 16:41:09 +02:00
Paolo Tranquilli 2dca78295d Fix change note check to accept changes to itself
The file is not removed from the triggers, as we still want to check
that the workflow file itself is correct.
2022-07-01 16:35:30 +02:00
Paolo Tranquilli e88cc31468 Swift: disable change note checking for now 2022-07-01 16:16:21 +02:00
Paolo Tranquilli 24da81fdb0 Swift: disable integration tests on macOS for now
Also, add swift workflow to code owned by the C team
2022-07-01 15:00:05 +02:00
Paolo Tranquilli 901e066355 Swift: locally run integration tests
Minimal recreations of internal `integration-tests-runner.py` and
`create_database_utils.py` are provided to be able to run the
integration tests on the codeql repository with a released codeql CLI.

For the moment we skip the database checks by default, as we are still
producing inconsistent results.
2022-07-01 15:00:05 +02:00
Paolo Tranquilli 299e1af22e Merge main into redsun82/swift-code-reorg 2022-06-24 13:06:14 +02:00
Paolo Tranquilli 7334b4e03a Swift: autopep8 all python files
Additionally set up a pre-commit hook and a CI check for that.
2022-06-23 17:13:56 +02:00
Paolo Tranquilli 0957f63cc7 Swift: update codegen workflow to include all files 2022-06-23 14:31:48 +02:00
Erik Krogh Kristensen 1856e2b389 fixup the $schema in all .sarif files 2022-06-19 20:09:31 +02:00
Erik Krogh Kristensen 6e2f3e2fcb merge all .sarif files at the end of the QL-for-QL workflow 2022-06-19 20:09:31 +02:00
Erik Krogh Kristensen 638a886dfe move create-extractor-pack to a `scripts` folder 2022-06-19 20:09:31 +02:00
Paolo Tranquilli 1cb8e6130a Swift: show full diff in codegen check 2022-06-15 09:28:25 +02:00
dependabot[bot] b78f30b58d
Bump actions/setup-python from 3 to 4
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 3 to 4.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-13 19:33:33 +00:00
Rasmus Wriedt Larsen aa78ce3c75
Merge pull request #9413 from github/RasmusWL/query-list-cli-tags
Misc: query-list should run on `codeql-cli/*` tags
2022-06-03 11:36:52 +02:00
Rasmus Wriedt Larsen a3c4a2c3e0
Misc: query-list should run on `codeql-cli/*` tags
Since go doesn't need to be cloned with the same tag, that makes this change much easier to implement in practice 💪
2022-06-02 11:57:39 +02:00
Rasmus Wriedt Larsen b646195d14
Misc: Set permissions for labeler Action
Like in the example on 
https://github.com/actions/labeler#create-workflow
2022-06-02 10:27:48 +02:00
Paolo Tranquilli 77f7fe8dbc Swift: merge `codegen` and `cppcodegen`
Python code was simplified, and now a `--generate` option can be used
to drive what can be generated.

The extractor pack creation now will use an internally generated
dbscheme. This should be the same as the checked in one, but doing so
allows `bazel run create-extractor-pack` and `bazel run codegen` to be
run independently from one another, while previously the former had to
follow the latter in case of a schema change. This is the change that
triggered the above simplification, as in order for the two dbscheme
files to be identical, the first `// generated` line had to state the
same generator script.
2022-06-01 17:07:52 +02:00
Michael Nebel 9cc10e4511
Merge pull request #9257 from michaelnebel/java/mad-commons-io-sha
Java: Update commons-io SHA for model regeneration and update models.
2022-06-01 09:46:30 +02:00
Henry Mercer 99e6d2a925 Run relevant tests when `codeql-workspace.yml` is updated 2022-05-30 15:54:52 +01:00
Michael Nebel 61151d8980 Java: Update workflows and scripts usages to only generate summaries and sinks. 2022-05-30 13:53:44 +02:00
Michael Nebel ff928bbb45 Java: Update commons-io SHA for model regeneration. 2022-05-30 08:16:58 +02:00
Anna Railton 202d2e037d
Add `workflow_dispatch` to Action
This is so we can trigger scheduled runs of these tests
2022-05-26 13:07:57 +01:00
dependabot[bot] dfa9d9ff85
Bump actions/setup-go from 1 to 3
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 1 to 3.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v1...v3)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-05-24 03:39:16 +00:00
Arthur Baars 8248f607e4
Merge pull request #9277 from github/aibaars/go-test-workflow
Go: trigger CI jobs on Go related changes only
2022-05-23 23:51:34 +02:00
Aditya Sharad 7853ea607f
Merge pull request #9243 from github/adityasharad/merge-codeql-go-docs
Docs: Update references to github/codeql-go
2022-05-23 14:37:23 -07:00
Arthur Baars 7a85ab1690
Go: trigger CI jobs on Go related changes only 2022-05-23 21:25:27 +02:00
Chuan-kai Lin d3ebc814f5
Merge pull request #8631 from github/cklin/merge-codeql-go
Merge codeql-go repository into codeql
2022-05-23 09:22:28 -07:00
Paolo Tranquilli 06a8cf6f1e
Merge pull request #9198 from github/redsun82/swift-self-contained-cpp-code-gen
Swift: make C++ code generation more self-contained
2022-05-23 13:45:58 +02:00
Erik Krogh Kristensen 7971b54771
Merge pull request #8891 from erik-krogh/qlMergeFix
QL: point the dataset measure workflow to a merge_stats.py file that exists
2022-05-20 22:33:59 +02:00
Aditya Sharad 4d74282175
Actions: Avoid cloning codeql-go when building query list docs 2022-05-20 12:10:21 -07:00
Chuan-kai Lin 7f96319b37 Clean up direct references to codeql-go
This commit removes special handling of the github/codeql-go repository in the
ql-for-ql-dataset_measure.yml and the query-list.yml workflows.
2022-05-20 10:23:48 -07:00
Chuan-kai Lin 1276c41e83 codeql-go merge prep: integrate go/ into codeql 2022-05-20 10:22:47 -07:00
Paolo Tranquilli 3a46db3f81 Swift: make C++ code generation more self-contained
This is solving a papercut, where the C++ build was relying on the
local dbscheme file to be up-to-date, even if all the information for
building is actually in `schema.yml`. This made a pure C++ development
cycle with changes to `schema.yml` clumsy, as it required a further
dbscheme generation step.

Now for C++ the dbscheme is generated internally in the build files, and
thus a change in `schema.yml` is reflected immediately in the C++ build.

A `swift/codegen` step for checked in generated code (including the
dbscheme) is still required, but a developer can do it just before
running QL tests or committing, instead of during each C++
recompilation.

Some directory reorganization was also carried out, moving specific
generator modules to a new `generators` python package, and only leaving
the two drivers at the top level.
2022-05-17 17:05:16 +02:00
Paolo Tranquilli 7a8ab7d2f5 Swift: merge generated headers into one artifact 2022-05-13 12:25:48 +02:00
Paolo Tranquilli 8cb9fd7eec Swift: publish C++ generated code as artifacts 2022-05-13 11:48:27 +02:00
Henry Mercer 71d1069a0a
Fix typo 2022-05-09 14:31:05 +01:00
Henry Mercer 198c96982c
Add a comment to explain the unusual Action path 2022-05-09 14:30:41 +01:00
Henry Mercer 804ca3e1a7 Actions: Fetch CodeQL CLI using `gh` rather than third-party Action 2022-05-09 11:42:01 +01:00
Michael Nebel 94b046c554 C#: Upgrade dotnet to 6.0.202. 2022-05-03 16:36:32 +02:00
Henry Mercer 811a2c0053
Merge pull request #8957 from github/henrymercer/upgrade-codeql-action
Use codeql-action/upload-sarif@main in CSV coverage metrics workflow
2022-04-29 17:06:21 +01:00
Erik Krogh Kristensen 4585e8a874 QL: point the dataset measure workflow to a merge_stats.py file that exists 2022-04-29 15:31:07 +02:00
Alex Denisov 7332460268 Swift: teach bazel to install python dependencies 2022-04-29 14:05:36 +02:00
Henry Mercer 08b6b1d209 Use codeql-action/upload-sarif@main in CSV coverage metrics workflow 2022-04-29 11:26:32 +01:00
Paolo Tranquilli 2374e6b401
Merge pull request #8934 from redsun82/swift-trapgen
Swift: added trapgen
2022-04-28 16:00:46 +02:00
Michael Nebel 9d767b8ad8
Merge pull request #8869 from michaelnebel/csharp/frameworkcoverage
C#: Port the java FrameworkCoverage query.
2022-04-28 13:17:50 +02:00
Paolo Tranquilli 773ef62406 Swift: added trapgen
This checks in the trapgen script generating trap entries in C++.

The codegen suite has been slightly reorganized, moving the templates
directory up one level and chopping everything into smaller bazel
packages. Running tests is now done via
```
bazel run //swift/codegen/test
```

With respect to the PoC, the nested `codeql::trap` namespace has been
dropped in favour of a `Trap` prefix (or suffix in case of entries)
within the `codeql` namespace. Also, generated C++ code is not checked
in in git any more, and generated during build. Finally, labels get
printed in hex in the trap file.

`TrapLabel` is for the moment only default-constructible, so only one
single label is possible. `TrapArena`, that is responsible for creating
disjoint labels will come in a later commit.
2022-04-28 12:01:59 +02:00
Michael Nebel 150d9ba52c
Update .github/workflows/csv-coverage-metrics.yml
Co-authored-by: Henry Mercer <henry.mercer@me.com>
2022-04-28 11:57:53 +02:00
Henry Mercer 52a417b02d
Merge pull request #8921 from github/dependabot/github_actions/actions/setup-python-3
Bump actions/setup-python from 2 to 3
2022-04-28 10:57:02 +01:00
Henry Mercer 03c311181a
Merge pull request #8922 from github/dependabot/github_actions/actions/download-artifact-3
Bump actions/download-artifact from 2 to 3
2022-04-28 10:45:49 +01:00
Michael Nebel 57fc4d987f C#: Fix indentation. 2022-04-28 11:19:54 +02:00
Michael Nebel 583b9b61de C#: Add job for running the framework coverage query for C#. 2022-04-28 11:19:49 +02:00
dependabot[bot] 8c4e92d065
Bump actions/download-artifact from 2 to 3
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2 to 3.
- [Release notes](https://github.com/actions/download-artifact/releases)
- [Commits](https://github.com/actions/download-artifact/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/download-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-28 03:32:59 +00:00
dependabot[bot] c8fd94a830
Bump actions/setup-python from 2 to 3
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 2 to 3.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-28 03:32:57 +00:00
dependabot[bot] 6526ee797d
Bump actions/setup-dotnet from 1 to 2
Bumps [actions/setup-dotnet](https://github.com/actions/setup-dotnet) from 1 to 2.
- [Release notes](https://github.com/actions/setup-dotnet/releases)
- [Commits](https://github.com/actions/setup-dotnet/compare/v1...v2)

---
updated-dependencies:
- dependency-name: actions/setup-dotnet
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-28 03:32:55 +00:00
dependabot[bot] c63a0e7010
Bump actions/checkout from 2 to 3
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-27 14:13:33 +00:00
Henry Mercer 3e80c78612
Merge pull request #8903 from github/dependabot/github_actions/actions/stale-5
Bump actions/stale from 3 to 5
2022-04-27 15:13:03 +01:00
Henry Mercer b6a787d4a0
Merge pull request #8902 from github/dependabot/github_actions/actions/cache-3
Bump actions/cache from 2 to 3
2022-04-27 15:12:58 +01:00
Henry Mercer f876ef91a3
Merge pull request #8900 from github/dependabot/github_actions/actions/labeler-4
Bump actions/labeler from 2 to 4
2022-04-27 15:12:52 +01:00
Henry Mercer 52475cd917
Merge pull request #8899 from github/dependabot/github_actions/actions/upload-artifact-3
Bump actions/upload-artifact from 2 to 3
2022-04-27 15:12:39 +01:00
dependabot[bot] c71c6f6dbe
Bump actions/stale from 3 to 5
Bumps [actions/stale](https://github.com/actions/stale) from 3 to 5.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/stale/compare/v3...v5)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-27 13:17:41 +00:00
dependabot[bot] 2c1ee564aa
Bump actions/cache from 2 to 3
Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-27 13:17:37 +00:00
dependabot[bot] 70ba8e3a5c
Bump actions/labeler from 2 to 4
Bumps [actions/labeler](https://github.com/actions/labeler) from 2 to 4.
- [Release notes](https://github.com/actions/labeler/releases)
- [Commits](https://github.com/actions/labeler/compare/v2...v4)

---
updated-dependencies:
- dependency-name: actions/labeler
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-27 13:17:30 +00:00
dependabot[bot] e1e68e96dc
Bump actions/upload-artifact from 2 to 3
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 2 to 3.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](https://github.com/actions/upload-artifact/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-04-27 13:17:28 +00:00
Paolo Tranquilli 68231bfc27 Swift: bump python version to 3.8 in workflow 2022-04-27 08:55:27 +02:00
Paolo Tranquilli f171ce6341 Swift: add unit tests to code generation
Tests can be run with
```
bazel test //swift/codegen:tests
```

Coverage can be checked installing `pytest-cov` and running
```
pytest --cov=swift/codegen swift/codegen/test
```
2022-04-27 08:24:11 +02:00
SukkaW 0c4885caa7 Replace `git.io` link with the actual URL 2022-04-26 23:28:34 +08:00
Erik Krogh Kristensen f5e1aa7c98
QL: add swift to QL-for-QL 2022-04-25 16:29:44 +02:00
Paolo Tranquilli 643471f400 add temporary exception for Swift for QLdoc 2022-04-25 14:24:22 +02:00
Paolo Tranquilli cdb10a2151 Swift: fix codegen check 2022-04-25 14:03:48 +02:00
Paolo Tranquilli 9bf4c72085 Swift: split codegen action and fix dependencies 2022-04-25 14:00:41 +02:00
Paolo Tranquilli de0fa9e456 Swift: QL generation script
Also added code generation to the swift checks.
2022-04-25 13:23:36 +02:00
Harry Maclean 3ea6ba5398
Merge pull request #8618 from hmac/hmac/qlhelp-comment-workflow
Update existing qhelp comment, if it exists
2022-04-21 14:01:17 +12:00
Harry Maclean 942388e8bc Pipe to jq --arg instead of gh api --jq 2022-04-20 11:41:38 +12:00
Harry Maclean eba303dea7 Fix typo 2022-04-20 11:21:06 +12:00
Harry Maclean cf0611d1e7 Pass args to jq via --arg 2022-04-14 13:50:41 +12:00
Harry Maclean a90647798e Fail workflow if COMMENT_ID fails validation
And print an error message to STDERR.
2022-04-14 13:21:38 +12:00
Harry Maclean c9a5cb4bf6 Distinguish between validated and raw COMMENT_ID 2022-04-14 13:19:14 +12:00
Alex Denisov 60c6241382 Swift: run QL tests on macOS 2022-04-13 10:35:15 +02:00
Alex Denisov b8c1f1a6e1 Swift: run QL tests on Linux 2022-04-13 07:44:19 +02:00
Harry Maclean 1df1f42589 Fail workflow if files cannot be uploaded 2022-04-05 14:16:42 +12:00
Harry Maclean 5739a3b4e8 Fix typo 2022-04-05 14:14:39 +12:00
Harry Maclean 342bb17fb6 Simplify shell script 2022-04-05 14:03:29 +12:00
Harry Maclean de743418e2 Add more validations to workflow inputs 2022-04-05 13:36:34 +12:00
Harry Maclean 815c6f4113 Use env vars instead of contexts 2022-04-05 12:03:10 +12:00
Harry Maclean ee81bf2767 Use --paginate to get all comments 2022-04-04 10:21:26 +12:00
Harry Maclean 1cf2530feb Use environment variable instead of GH context 2022-04-04 10:18:41 +12:00
Harry Maclean c2b94e8d1d Rename workflow to reflect its generic nature
This workflow can (pretty much) be used by any other workflow that wants
to post a PR comment.
2022-04-04 10:16:48 +12:00
Harry Maclean e34911118f Use gh api instead of third-party actions
Also move more steps to the unprivileged workflow.
2022-04-04 10:16:48 +12:00
Harry Maclean 9116dbd670 Update QHelp PR comment if it already exists
If we've already commented on a PR with a preview of the QHelp changes,
then update the existing comment instead of creating a new one.
2022-04-04 10:16:48 +12:00
Chuan-kai Lin 1ff0fda5d1 QLdoc check: handle new languages gracefully 2022-03-30 14:58:13 -07:00
Erik Krogh Kristensen 21192b7593 use latest tools in codeql-action/init 2022-03-25 19:26:10 +01:00
Erik Krogh Kristensen 68c07fe1c0 pin the commit of `codeql-action` in the remaining steps/workflows 2022-03-25 14:35:44 +01:00
Erik Krogh Kristensen 8f377f4101
pin the commit
Co-authored-by: Esben Sparre Andreasen <esbena@github.com>
2022-03-25 14:19:29 +01:00
Erik Krogh Kristensen cf57eb825c update codeql-action version in QL-for-QL 2022-03-25 13:37:27 +01:00
Tamás Vajk 87e1641772
Revert "Fix MaD workflows to be more resilient to missing files" 2022-03-22 09:08:56 +01:00
Tamás Vajk 80fb021e32
Merge pull request #8294 from github/tamasvajk/fix/mad-adjustments
Fix MaD workflows to be more resilient to missing files
2022-03-22 09:02:37 +01:00
Arthur Baars f59f36b863
Use RUNNER_TEMP instead of runner.temp 2022-03-11 21:13:41 +01:00
Arthur Baars 7da0889813
Update check-qldoc.yml 2022-03-11 17:45:23 +01:00
Arthur Baars e1f9eca272
Update check-qldoc.yml 2022-03-11 17:44:55 +01:00
Arthur Baars 6aacc75a49 CI: add QLdoc test 2022-03-08 12:07:20 +01:00
Arthur Baars ea8187c771 Ruby: .github/workflows/ruby-qltest.yml: turn off fail-fast 2022-03-01 13:30:56 +01:00
Tamas Vajk 1538e89bd9 Use generate-report.py from base SHA 2022-02-28 20:36:23 +01:00
Tamas Vajk 714659c706 Change `cp` to `mv` in CSV coverage PR job 2022-02-28 20:07:23 +01:00
Henry Mercer 4f7604f0dd
Merge pull request #8151 from github/henrymercer/separate-atm-model-pack 2022-02-22 11:47:35 +00:00
Henry Mercer 02cce623a6 JS: Install pack dependencies in ML CI jobs 2022-02-21 16:10:15 +00:00
Andrew Eisenberg 0f3d780935
Merge pull request #7946 from github/aeisenberg/check-change-not
Workflows: Augment workflow to ensure failure with invalid change notes
2022-02-11 09:25:14 -08:00
Andrew Eisenberg 5092493160
Update .github/workflows/validate-change-notes.yml 2022-02-11 08:41:20 -08:00
Erik Krogh Kristensen 6639bdaf1e add qlpack.yml to the cache key for QL-for-QL query build 2022-02-11 16:04:39 +01:00
Erik Krogh Kristensen 1fa5265a2e fix pack name for ql-for-ql 2022-02-11 15:44:14 +01:00
Andrew Eisenberg cba9e0b267 Fix paths in check-change-note
Library pack changes were being ignored.
2022-02-10 14:36:23 -08:00
Andrew Eisenberg 9441ea940c Workflows: Augment workflow to ensure failure with invalid change notes 2022-02-10 13:52:54 -08:00
Benjamin Muskalla ff8a96b96d
Rename framework coverage query
Move it to the other summary queries, update all references.
2022-02-08 11:14:03 +01:00
Benjamin Muskalla 85a8efab63
Update .github/workflows/csv-coverage-metrics.yml
Co-authored-by: Henry Mercer <henry.mercer@me.com>
2022-02-08 11:07:56 +01:00
Benjamin Muskalla e7823a78ef
Update .github/workflows/csv-coverage-metrics.yml
Co-authored-by: Henry Mercer <henry.mercer@me.com>
2022-02-08 11:06:21 +01:00
Benjamin Muskalla 2f94356899
Run daily 2022-02-07 12:12:29 +01:00
Benjamin Muskalla bd417769ce
Add workflow to upload metrics 2022-02-07 12:08:18 +01:00
Arthur Baars ac03fab986
Merge pull request #7753 from aibaars/ruby-3.1
Ruby 3.1 features
2022-02-06 21:06:16 +01:00
Benjamin Muskalla eee03ebe3b
Merge pull request #7767 from bmuskalla/regenerateModelScript
Java: Regenerate framework models automatically
2022-02-04 13:29:46 +01:00
Benjamin Muskalla fcaead4004
Enable debugging action 2022-02-04 11:29:36 +01:00
Harry Maclean e328c6222a
Merge pull request #7797 from github/hmac/pin-rust
Ruby: Pin Rust to 1.54
2022-02-04 10:18:46 +13:00
Harry Maclean 912842623d Simplify cache key 2022-02-04 07:41:29 +13:00
Tom Hvitved ef227a4721
Merge pull request #7784 from hvitved/csharp/dotnet6
C#: Use .NET 6
2022-02-03 16:42:26 +01:00
Erik Krogh Kristensen 5284bbb6b3
Merge pull request #7821 from erik-krogh/upload-sarif
QL: upload sarif as part of the QL-for-QL workflow
2022-02-03 12:05:51 +01:00
Erik Krogh Kristensen 7ef051456a upload sarif as part of the QL-for-QL workflow 2022-02-02 20:32:22 +01:00
Tom Hvitved d7eeb1fec8 C#: Use .NET 6 2022-02-02 19:25:30 +01:00
Henry Mercer 2c17437092 JS: Run ML-powered queries tests on all PRs modifying relevant files 2022-02-02 18:11:25 +00:00
Arthur Baars a22868ba27
Merge branch 'main' into ruby-3.1 2022-02-02 19:00:03 +01:00
Henry Mercer e6745dc63a JS: Add Action to run tests for ML-powered queries 2022-02-02 13:15:12 +00:00
Benjamin Muskalla d4c4e75bac
Merge pull request #7268 from bmuskalla/modelDiffAction
Java: Produce diffs for model generator changes
2022-02-02 10:30:45 +01:00
Harry Maclean ce0354acb3 Include rust-toolchain.toml in Ruby cache keys
This ensures that if we change our Rust version, the caches will be
invalidated.
2022-02-02 08:08:11 +13:00
Arthur Baars 73d60550ce QL-QL: fix cache keys 2022-02-01 15:57:59 +01:00
Arthur Baars 6451a71a78 Ruby: use ruby specific cache key 2022-02-01 15:18:09 +01:00
Arthur Baars cada7ef1a4 Ruby: add downgrade scripts to prepare-db-upgrade.sh 2022-01-28 11:07:56 +01:00
Harry Maclean 0428b8ee20 Split Ruby CI into multiple parallel jobs
Run format, compile and db upgrade checks in parallel, along with the
main tests, which run in two parallel halves.
2022-01-28 21:23:34 +13:00
Benjamin Muskalla 5c9c83d331
Revert "Enable on my repo"
This reverts commit b9c3e6a052.
2022-01-27 14:24:41 +01:00
Benjamin Muskalla 39a853b5e4
Remove unused models 2022-01-27 12:27:37 +01:00
Benjamin Muskalla 1cfb088634
rely on defaults 2022-01-27 12:26:59 +01:00
Benjamin Muskalla e5acc6b54b
use default sha for pr 2022-01-27 12:26:59 +01:00
Benjamin Muskalla 3646ae0995
Skip diff install if not needed 2022-01-27 12:26:58 +01:00
Benjamin Muskalla 10aa7a7982
Better name 2022-01-27 12:02:42 +01:00
Benjamin Muskalla b9c3e6a052
Enable on my repo 2022-01-27 12:01:47 +01:00
Benjamin Muskalla 66b9974dd4
Simplify naming pattern 2022-01-27 12:00:29 +01:00
Benjamin Muskalla 4aa0002e97
Rename workflow 2022-01-27 11:43:25 +01:00
Benjamin Muskalla c1b5565e4d
Automation to regenerate framework models 2022-01-27 11:15:10 +01:00
Tom Hvitved 55f427ca0e Ruby: Use multiple threads in QL test CI job 2022-01-21 11:46:08 +01:00
Benjamin Muskalla 426f3117d6 Clarify model names and escape variables 2022-01-11 15:58:21 +01:00
Benjamin Muskalla 49d2fbfb5f Fixed slug references and PR skips 2022-01-11 11:47:28 +01:00
Erik Krogh Kristensen 8b53cca3e8
QL: use environment instead of dynamic shell script construction
Co-authored-by: Esben Sparre Andreasen <esbena@github.com>
2021-12-20 09:56:10 +01:00
Erik Krogh Kristensen 7a9e41c97d QL: split out analysis of each CodeQL language 2021-12-17 20:22:59 +01:00
Erik Krogh Kristensen f44f33788f QL: cache the compiled extractor 2021-12-17 20:22:55 +01:00
Erik Krogh Kristensen 380d238c31 QL: run the QL-for-QL tests when a nested folder is changed 2021-12-17 20:22:30 +01:00
Erik Krogh Kristensen d612687ae7 QL: don't require change notes for QL-for-QL 2021-12-17 20:22:23 +01:00
Erik Krogh Kristensen f7f9b4d3f4 QL: use erik-krogh/ql codeql-action 2021-12-17 20:22:20 +01:00
Nick Rolfe e6c60ebd41 QL for QL: add autobuilder that respects LGTM_INDEX_FILTERS 2021-12-17 16:05:21 +00:00
Erik Krogh Kristensen 2626b0b3dc QL: fix test workflow 2021-12-16 22:26:42 +01:00
Erik Krogh Kristensen 8eda061d2f add dbscheme and codeql version to query hash 2021-12-16 15:49:07 +01:00
Erik Krogh Kristensen 76dcfd479e more specific search path for dataset measure job 2021-12-15 14:36:43 +01:00
Erik Krogh Kristensen 0ac3e5c3ad Merge QL for QL into github/codeql 2021-12-15 14:19:53 +01:00
Erik Krogh Kristensen 8d91ba2a6e QL: fix Esbens workflow comments 2021-12-15 14:07:36 +01:00
Erik Krogh Kristensen 77cb822907 QL: fix search path for dataset measure 2021-12-15 13:34:33 +01:00
Erik Krogh Kristensen 24c2578540 QL: cache query compilation 2021-12-15 12:25:08 +01:00
Erik Krogh Kristensen 5d93309ada QL: call the product `QL for QL` (because it rolls nicely).
and update the readme.
2021-12-15 12:25:06 +01:00
Erik Krogh Kristensen dc9187778b QL: simplify the build/analyze workflow into a single workflow 2021-12-14 17:29:35 +01:00
Erik Krogh Kristensen f5788b9441 QL: adjust remaining workflows to work in the QL folder 2021-12-14 17:03:26 +01:00
Erik Krogh Kristensen fdb15d6073 QL: remove workflow that ran CodeQL with a published pack 2021-12-14 15:57:09 +01:00
Erik Krogh Kristensen 633597cc90 QL: remove the nightly ql-for-ql job 2021-12-14 15:57:09 +01:00
Benjamin Muskalla 557cb0a09e Add job name 2021-12-06 11:42:03 +01:00
Benjamin Muskalla 657c576186 Skip diffs if same branch 2021-12-06 11:30:14 +01:00
Benjamin Muskalla 38debc0b64 Remove push trigger 2021-12-06 11:21:15 +01:00
Benjamin Muskalla d181ee1701
Shorten workflow name
This will show up including the job name anyway
```
Models as Data / model-diff (apache/commons-codec)
```
2021-11-30 12:19:10 +01:00
Benjamin Muskalla 5e69eb491f
Generate diff and archive results 2021-11-30 12:19:10 +01:00
Benjamin Muskalla 734422f384
Generate the models for each variant 2021-11-30 12:19:10 +01:00
Benjamin Muskalla 9672128699
Download database 2021-11-30 12:19:10 +01:00
Benjamin Muskalla c0a3cd07a5
Add default projects 2021-11-30 12:19:09 +01:00