github
/
codeql
зеркало из https://github.com/github/codeql.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
53 768 коммитов 1 541 ветка 130 Теги 480 MiB
Граф коммитов

688 Коммитов

Автор SHA1 Сообщение Дата
Tamas Vajk ad6e47be39 Apply code review findings 2021-06-24 09:13:08 +02:00
Tamas Vajk 7557b7a67d Add scheduled coverage job to open PR with changes 2021-06-24 09:13:08 +02:00
Alex Ford 8e1f2e6237 try fixing build.yml 2021-06-23 13:41:51 +01:00
Tamas Vajk 5657c215e9 Change workflow step name 2021-06-23 08:25:20 +02:00
Tamas Vajk a165cde808 Compute framework coverage diff in artifacts job 2021-06-23 08:25:20 +02:00
Tamas Vajk 0e91269a23 Refactor framework coverage job to download artifacts from python 2021-06-23 08:23:44 +02:00
Tamas Vajk 870e4125dc Fix framework coverage commenter to use merge commit parent instead of (old) base repo SHA 2021-06-22 13:24:26 +02:00
Tamas Vajk b3f44f457a Fix diff in the framework coverage PR comment 2021-06-18 16:33:50 +02:00
Tamás Vajk c532db58fd Apply suggestions from code review 
Co-authored-by: Aditya Sharad <6874315+adityasharad@users.noreply.github.com>
 2021-06-17 13:04:39 +02:00
Tamas Vajk e61f725196 Apply code review findings 2021-06-17 13:04:39 +02:00
Tamas Vajk 4abaa7870f Add CSV coverage PR commenter 2021-06-17 13:04:39 +02:00
Tamas Vajk 255e422172 Apply code review findings 2021-06-15 11:35:10 +02:00
Arthur Baars 909e6d5a62 Query pack: include .rb and .erb sample files from queries directory 
These are required by the qhelp files.
 2021-06-11 13:42:43 +02:00
Tamas Vajk 916780a452 Fix codeql CLI path 2021-06-10 15:07:54 +02:00
Tamas Vajk b067309909 Change artifact names 2021-06-10 11:26:07 +02:00
Tamas Vajk 73aaeb4c0d Change workflow names 2021-06-10 11:01:45 +02:00
Tamas Vajk c6cb7c6eed Rename time-series file to timeseries 2021-06-10 10:11:24 +02:00
Tamas Vajk 3353c3ecdd Add workflow to generate timeseries CSV coverage report 2021-06-10 10:11:24 +02:00
Tamas Vajk 270cf62f08 Fix variable reference 2021-06-10 10:11:23 +02:00
Tamas Vajk 49190615a7 Cleanup CSV coverage report generator 2021-06-10 10:11:23 +02:00
Nick Rolfe 8b987757c6 Merge upgrades qlpack into ql/src 2021-06-03 18:28:20 +01:00
Tamas Vajk 374adc8819 Temporarily disable CSV coverage PR file comparison step 2021-06-03 08:17:28 +02:00
Tamas Vajk bc02f28ddd Fix change note workflow to handle paginated results 2021-06-01 10:44:44 +02:00
Shati Patel 64d24c744a QL: Remove codeql-action placeholder file 
(Didn't get code scanning set up, so this file doesn't do anything useful)
 2021-05-28 18:03:13 +01:00
shati-patel 96a9c3446f QL: add codeql to path 2021-05-28 10:16:16 +01:00
shati-patel da6a915779 QL: Placeholder codeql workflow (wip) 2021-05-28 10:14:21 +01:00
Tom Hvitved ff591a0c57 QL: Update dataset_measure.yml 2021-05-27 10:39:51 +02:00
Arthur Baars 3f210865b2 Build workflow: create release 2021-05-26 15:55:34 +02:00
Tom Hvitved cacefbe075 QL: Update workflow files 2021-05-26 11:50:37 +02:00
Tom Hvitved 7bac6a07b6 Initial commit 2021-05-26 11:32:30 +02:00
Tamas Vajk b17ffbd2a4 Include all .ql and .qll files in PR path triggers 2021-05-25 13:33:26 +02:00
Tamas Vajk f09352620f Add comparison step to workflow 2021-05-25 13:33:26 +02:00
Tamas Vajk f1911e338d Move and generate files to documentation folder + clean up after the script is executed 2021-05-25 13:33:26 +02:00
Tamas Vajk dda401f62a Inline CSV table into RST page 2021-05-25 13:33:25 +02:00
Tamas Vajk 2e67a3216c Add option to manually trigger the workflow 2021-05-25 13:33:25 +02:00
Tamas Vajk 564fca0da4 Adjust workflow triggers and uploads 2021-05-25 13:33:25 +02:00
Tamas Vajk 979034a17f Add github action to generate CSV coverage report 2021-05-25 13:33:25 +02:00
Arthur Baars a02cfd27c9 Compile query packs with previous CodeQL versions too 2021-05-24 17:48:49 +02:00
Arthur Baars 78d9191526 Build query pack 2021-05-24 13:27:50 +02:00
Andrew Eisenberg 0376a13dd8 Actions: Fix code scanning workflow 2021-04-28 15:05:13 -07:00
Andrew Eisenberg 0e53ad33f6 Actions: Add permissions block to code scanning workflow 2021-04-26 10:53:29 -07:00
Andrew Eisenberg 3670c729c0 Actions: Use the main branch of the codeql action 
This commit switches to the bleeding edge, main branch of the
codeql action. This helps us test the action before merging all
of the new changes into main, which occurs roughly once a week.

If there are commits that introduce bugs in codeql-action, then
we will be more likely to catch it before releasing to the world
if we are using it in this extension.
 2021-04-26 08:43:28 -07:00
Andrew Eisenberg 5d827b6fc8 Actions: Change staleness calculation 
Calculate staleness on issues that have the
`Stale` label. Leave all other issues untouched.
 2021-04-15 10:14:13 -07:00
Andrew Eisenberg 392adf2a25
Workflows: Remove dry-run flag for labeller 2021-04-14 08:25:34 -07:00
Andrew Eisenberg e0fcb15739 Actions: Add workflow for marking stale questions 
This PR adds a workflow for marking and closing issues as stale. Issues must be labeled as _question_. PRs are never marked as stale.
 2021-04-12 13:05:53 -07:00
Aditya Sharad a0465d20cb
Actions: Remove docs-review workflow 
Being replaced by internal automation that polls the repo for open labelled PRs, since this workflow currently cannot tag the docs team in a comment.
 2021-03-24 11:26:00 -07:00
Aditya Sharad f4dc5b963b
Merge pull request #5335 from Marcono1234/patch-1 
Add name to check-change-note.yml workflow
 2021-03-18 10:44:53 -07:00
Aditya Sharad b1d0b9afbb
Merge pull request #5363 from github/adityasharad/actions/docs-review-fix 
Actions: Fix comment that tags the Docs team
 2021-03-09 07:17:24 -08:00
Taus Brock-Nannestad 3d0d280972 Merge remote-tracking branch 'upstream/rc/3.1' into mergeback-rc/3.1-to-main 2021-03-08 22:15:10 +01:00
Aditya Sharad 318ce47982
Actions: Fix comment that tags the Docs team 2021-03-08 09:17:19 -08:00
Nick Rolfe df8f7a30d7 Enable manual dispatch of stats workflow 2021-03-08 14:10:37 +00:00
Shati Patel 85205a21de Docs: Remove query help script 2021-03-05 16:02:53 +00:00
Marcono1234 879dbba8f0
Add name to check-change-note.yml workflow 2021-03-05 00:34:42 +01:00
Aditya Sharad 648910e974
Merge pull request #5285 from adityasharad/actions/docs-review 
Actions: Add workflow to request docs review
 2021-03-02 08:52:32 -08:00
Aditya Sharad dbed4a1a8b
Actions: Add workflow to request docs review 
When a PR is labelled with 'ready-for-docs-review',
this workflow comments on the PR to notify the GitHub CodeQL docs team.
Runs on `pull_request_target` events so it can write comments to the PR.
Since this runs in the context of the base repo, it must not check out the PR
or use untrusted data from the event payload.

Only runs when the PR base is github/codeql, to prevent notifications from forks.
 2021-03-01 17:15:03 -08:00
Tamas Vajk 1ecbbf6af3 C#: Fix codeql analysis workflow 2021-03-01 09:18:05 +01:00
Tamás Vajk 91928fa098
Merge pull request #5220 from tamasvajk/feature/limit-codescanning-csharp 
Limit C# codeql analysis to the csharp folder
 2021-02-23 21:05:38 +01:00
Taus Brock-Nannestad 439f9f1d90 Actions: More cleanup 
Removes the checkout action, as this is no longer needed, and folds
the `grep` into `jq`.
 2021-02-22 11:05:54 +01:00
Taus Brock-Nannestad 4680b25f23 Actions: Remove dependence on external actions 2021-02-21 15:14:33 +01:00
Taus Brock-Nannestad ca48e57e30 Actions: Peg external actions to specific SHAs 2021-02-19 16:50:08 +01:00
Tamas Vajk e1b90912de Limit C# codeql analysis to the csharp folder 2021-02-19 16:13:22 +01:00
Taus Brock-Nannestad 6095138acc Actions: Address comments on change note CI check 
- Fail the CI check if change note is missing.
- Disregards changes outside of `*/ql/src`.
- Runs the workflow on label changes, and upon moving the PR out of
  draft mode.
- Only fails the CI check if the PR is out of draft.
- Changes label to `no-change-note-required`.
 2021-02-19 13:55:35 +01:00
Taus Brock-Nannestad 03d3f2c8e8 Actions: Add change note checker 2021-02-19 10:16:50 +01:00
Shati Patel 6a46be2379 Install sphinx extension for building markdown tables 2021-02-05 12:07:06 +00:00
Julian Tibble 121ffbbfa8 Restrict triggers for CodeQL workflow 
Analysing all branches on both 'push' and 'pull request' events causes
duplicate analysis. It is only necessary to analyse the _target_
branches of pull requests on push.
 2021-02-04 11:49:15 +00:00
Julian Tibble ecfad6b5c7 Update CodeQL workflow 
Bring the CodeQL workflow up to date with the latest recommended
configuration, which analyses the merge commit of pull requests (not the
head of the PR branch).
 2021-02-04 11:45:15 +00:00
Tom Hvitved c11df1fe8c Add `sync-identical-files.py` 2021-01-18 17:34:51 +01:00
Arthur Baars 4ef4053385 Actions: apply CODEQL_THREADS to all steps 2021-01-08 10:25:25 +01:00
Nick Rolfe 83a28786a0 Use 4 threads for extraction and TRAP import in stats job 2021-01-07 11:17:07 +00:00
Nick Rolfe 5a54026bcc Add all the TRAP check flags in qltest workflow 2020-12-18 17:25:28 +00:00
Arthur Baars 91ae237434 Use latest CodeQL for CI 2020-12-17 11:04:57 +01:00
james a5c0802379 address review comments 2020-12-11 17:29:22 +00:00
James Fletcher 9c6962ec25
Update generate-query-help-docs.yml 2020-12-10 09:39:44 +00:00
James Fletcher 0640d2834d
Update generate-query-help-docs.yml 2020-12-10 09:19:44 +00:00
James Fletcher 66c756b7f5
Update generate-query-help-docs.yml 2020-12-10 09:07:30 +00:00
Arthur Baars c69f64fb4f Workaround for broken cache on OSX 2020-12-03 16:40:37 +01:00
Aditya Sharad 771425e860
Actions: Run query help workflow on PRs that modify it 2020-12-02 10:00:55 -08:00
Aditya Sharad 38ab87e5b1
Actions: Pin to fixed version of Sphinx Action 
Better for security to fix the commit SHA of the external Action, rather than specifying a branch or tag.
 2020-12-02 09:56:25 -08:00
Tom Hvitved a370cd8bdf Move `Generated.qll` to `ast/internal/TreeSitter.qll` 2020-12-01 20:53:41 +01:00
james 65a048b65c address docs review comments 2020-12-01 14:19:12 +00:00
Tom Hvitved 11927a930f
Merge pull request #53 from github/user-facing 
Add some user-facing AST classes
 2020-12-01 10:23:37 +01:00
Arthur Baars 49c97bd157 Collect database stats 2020-11-26 14:53:30 +01:00
Nick Rolfe c598dc6b5c Initial work on user-facing AST library 2020-11-26 13:45:45 +00:00
Tom Hvitved eceeb6a5fd Break up QL CI tests into separatly named steps 2020-11-24 11:47:59 +01:00
Tom Hvitved 74f0a8fdb7 Check query compilation and formatting in `qltest.yml` 2020-11-24 11:20:16 +01:00
james f5ae00865f rebase on rc/1.26 branch 2020-11-20 11:51:35 +00:00
james 4a9b61274a improve docs 2020-11-19 09:45:20 +00:00
james d6e9f4d6f2 remove unnecessary steps from work flow 2020-11-19 09:45:20 +00:00
james d70240c786 update conf.py for query help 2020-11-19 09:45:19 +00:00
james cb962a9ce0 tests 2020-11-19 09:45:19 +00:00
james 0fe0d067e9 copy more sphinx files 2020-11-19 09:45:19 +00:00
james 27f52851ca add sphinx step 2020-11-19 09:45:19 +00:00
james 2383960e0d copy folder correctly 2020-11-19 09:45:19 +00:00
james e9b2d771c2 add test steps 2020-11-19 09:45:19 +00:00
james bb1c0a184a fix path 2020-11-19 09:45:19 +00:00
james 1a60f961e6 add set up step 2020-11-19 09:45:19 +00:00
james fc848e553e fix working directory 2020-11-19 09:45:19 +00:00
james fe5979d92a add working-directory 2020-11-19 09:45:19 +00:00
james d25a0ef7e6 another test 2020-11-19 09:45:19 +00:00
james c775a27a22 test2 2020-11-19 09:45:19 +00:00
james 2d93b3a45a test 2020-11-19 09:45:19 +00:00
james 8504724dbb add generate-query-help workflow 2020-11-19 09:45:18 +00:00
Tom Hvitved 4dd4373b53 Initial CFG skeleton code 2020-11-18 20:12:42 +01:00
Arthur Baars 5fe3bf138c
Change cache key 2020-11-12 19:11:04 +01:00
Arthur Baars 402c348e37
Merge pull request #33 from github/aibaars/qltest 
Add QL test support
 2020-11-12 15:10:39 +01:00
Arthur Baars 557d990a0d Remove cargo fmt workaround on OSX 
The `fmt` component is now installed by default on OSX.
 2020-11-12 09:29:26 +01:00
Arthur Baars 44150600ab Add QLTest workflow 2020-11-11 21:57:50 +01:00
Arthur Baars 81ceb22b14 Restore cache before running cargo fmt 
It appears cargo fmt also downloads the git dependencies which takes quite a while. The cache should contain a copy of the cloned repo, so restoring the cache early should speed things up.
 2020-11-09 14:25:54 +01:00
Arthur Baars 638fd91e50 Update generator to write the ast.qll file directly into ql/src 2020-10-28 14:04:36 +01:00
Arthur Baars 28a99cfe83 Update path of generated dbscheme 2020-10-28 14:04:36 +01:00
Arthur Baars 88acbc883c Copy dbscheme stats into extractor pack 2020-10-28 14:04:36 +01:00
Arthur Baars 7e6c30b121 Check formatting and cache builds 2020-10-28 13:55:52 +01:00
Nick Rolfe 679ca6d0f1 Update Actions workflow to generate ruby_ast.qll 2020-10-28 11:04:09 +00:00
Nick Rolfe 59580d51bb Merge remote-tracking branch 'origin/main' into ql_gen 2020-10-28 10:30:36 +00:00
Douglas Creager 2663de86fb Don't clone submodules in Actions workflow 
Since we don't have any submodules anymore!
 2020-10-27 14:02:15 -04:00
Nick Rolfe ce8de3feba Update generator binary name in Actions workflow 2020-10-27 17:56:37 +00:00
Arthur Baars 53b97ff0fa Use release builds for the CodeQL package 2020-10-27 17:48:11 +01:00
Arthur Baars 9e6ccf558e Preserve permissions of Linux and OSX binaries 
The {upload,download}-artifact actions do not preserve
file permissions, so we need to patch things up.
 2020-10-27 17:17:44 +01:00
Arthur Baars 048f19edc1 Build a CodeQL extractor pack 2020-10-27 17:02:08 +01:00
Arthur Baars 73a090501a Add GitHub actions configuration 2020-10-27 16:34:17 +01:00
Asger F dd5fb6ce12
Exclude JS tests from code scanning 2020-10-06 08:46:43 +01:00
Bas van Schaik 31495b876e
Python script to generate lists of code scanning queries in CSV format (#4177) 
* Create a PowerShell script that can be used to report on the set of queries inside of a particular QL Suite.
* Translate PowerShell script into Python
* support running this script from anywhere within the CodeQL git repo
* print non-fatal error if metadata is not available
* make sure warning about missing pack is printed to stderr
* only run on pushes against main and rcs
* detect repo by checking remote, rather than first SHA
* specify full sha of dsaltares/fetch-gh-release-asset
* trigger workflow on PR that modifies paths of interest

Co-authored-by: Justin Hutchings <jhutchings1@users.noreply.github.com>
Co-authored-by: Aditya Sharad <6874315+adityasharad@users.noreply.github.com>
 2020-09-10 12:25:02 -07:00
Rasmus Wriedt Larsen 7e6ebfd636 Enable labeler action again 
This time using `pull_request_target`, so it will work properly with forks. See
https://docs.github.com/en/actions/reference/events-that-trigger-workflows#pull_request_target

This reverts commit d5d6093e75.
 2020-08-28 09:31:46 +02:00
Taus b99ec29f6e
Code Scanning: Additionally exclude Java and C++. 2020-07-03 13:56:25 +02:00
Taus 39bc978573
Code Scanning: Don't scan the Python directory. 
... Possibly some of the other language teams want to get on this? 🙂 
If so, give me a shout!
 2020-07-03 13:46:30 +02:00
Tom Hvitved 56670f3a5f
Disable analysis for JS and Python 2020-06-19 16:25:23 +02:00
Tom Hvitved 4b47483263 Add codeql-config.yml 2020-06-19 12:28:52 +00:00
Tom Hvitved ffe3f500d7
Restrict languages in codeql-analysis.yml 2020-06-19 13:01:28 +02:00
Tom Hvitved a285f6460c
Create codeql-analysis.yml 2020-06-19 11:34:31 +02:00
Taus Brock-Nannestad d5d6093e75 Actions: Disable labeler action. 
I've left the `labeler.yml` configuration file, in case this ever starts working
properly with forks.
 2019-12-16 13:53:00 +01:00
Taus c1b5389d96
Actions: Fix broken escaping in PR labeler action. 
TL;DR: YAML escaping is complicated. I think this should fix the problems.
 2019-12-12 22:24:23 +01:00
Taus Brock-Nannestad 2fec0d0294 Escape labels with potentially problematic characters. 2019-12-12 16:29:04 +01:00
Taus Brock-Nannestad 51315217ff Add `documentation` label to `docs/**/*`. 2019-12-12 15:10:21 +01:00
Taus Brock-Nannestad 558c0a440e Actions: Automatically add language-specific labels to pull requests. 2019-12-12 14:42:45 +01:00
alexey a2478296db Add general question issue template 2019-10-15 12:13:45 +01:00
AlexTereshenkov 49ee205b46 Update issue templates 2019-09-10 11:02:02 +01:00
AlexTereshenkov 77871f6d51
Update .github/ISSUE_TEMPLATE/lgtm-com---false-positive.md 
Co-Authored-By: Sam Lanning <sam@lanni.ng>
 2019-09-10 10:25:03 +01:00
AlexTereshenkov 523d055194 Add a new issue template for false positive in LGTM.com 
Add a new issue template for false positive in LGTM.com
 2019-09-06 14:39:06 +01:00