Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: github/codeql-action
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v2.21.8
Choose a base ref
...
head repository: github/codeql-action
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v2.21.9
Choose a head ref

Commits on Sep 19, 2023

  1. Copy the full SHA
    eac8f8c View commit details
  2. Copy the full SHA
    74e25cd View commit details
  3. Merge pull request #1894 from github/mergeback/v2.21.8-to-main-6a28655e

    Mergeback v2.21.8 refs/heads/releases/v2 into main
    henrymercer authored Sep 19, 2023
    Copy the full SHA
    01b8760 View commit details
  4. Copy the full SHA
    8e0b1c7 View commit details

Commits on Sep 20, 2023

  1. Copy the full SHA
    5897cf7 View commit details
  2. Copy the full SHA
    59aaff8 View commit details
  3. C++: introduce automatic installation of dependencies in the autobuilder

    This introduces the possibility to automatically install dependencies
    when running the C++ autobuilder on an Ubuntu runner, that will be
    available with upcoming version 2.15.0.
    
    An experimental `cpp-autoinstall-dependencies` input is added to the
    `autobuild` action. When not set, the default is driven by a feature
    flag.
    redsun82 committed Sep 20, 2023
    Copy the full SHA
    c4c0678 View commit details
  4. Copy the full SHA
    bf21875 View commit details
  5. Copy the full SHA
    765807b View commit details
  6. Add changelog entry

    redsun82 committed Sep 20, 2023
    Copy the full SHA
    ab81590 View commit details

Commits on Sep 21, 2023

  1. Apply suggestions from code review

    Co-authored-by: Henry Mercer <henry.mercer@me.com>
    redsun82 and henrymercer authored Sep 21, 2023
    Copy the full SHA
    53bed11 View commit details
  2. Lint and build

    redsun82 committed Sep 21, 2023
    Copy the full SHA
    c21e1dd View commit details
  3. Merge pull request #1889 from github/redsun82/cpp-autoinstall-depende…

    …ncies
    
    C++: introduce automatic installation of dependencies in the autobuilder
    redsun82 authored Sep 21, 2023
    Copy the full SHA
    49aaa9a View commit details

Commits on Sep 22, 2023

  1. Bump min. version for evaluator parallelism feature flag

    Since we suspect fine-grained parallelism may make the OOM issues worse,
    we don't want to enable it on 2.14.0-2.14.5, even though they support
    it.
    nickrolfe committed Sep 22, 2023
    Copy the full SHA
    724d643 View commit details
  2. Copy the full SHA
    d0c18ba View commit details
  3. Merge pull request #1900 from github/nickrolfe/fine-grained-version

    Bump min. version for evaluator parallelism feature flag
    nickrolfe authored Sep 22, 2023
    Copy the full SHA
    3078f51 View commit details
  4. Copy the full SHA
    431174f View commit details
  5. Copy the full SHA
    d1a917f View commit details
  6. Add a changelog note

    henrymercer committed Sep 22, 2023
    Copy the full SHA
    0dfaf4e View commit details
  7. Copy the full SHA
    0de36d4 View commit details

Commits on Sep 25, 2023

  1. Merge pull request #1901 from github/henrymercer/check-for-duplicated…

    …-languages
    
    Warn when workflow analyzes the same language twice
    henrymercer authored Sep 25, 2023
    Copy the full SHA
    650a85e View commit details

Commits on Sep 26, 2023

  1. Copy the full SHA
    41d2ffa View commit details
  2. Add changelog note

    henrymercer committed Sep 26, 2023
    Copy the full SHA
    c95737b View commit details
  3. Copy the full SHA
    cc65420 View commit details
  4. Merge pull request #1897 from github/update-bundle/codeql-bundle-v2.14.6

    Update default bundle to 2.14.6
    alexet authored Sep 26, 2023
    Copy the full SHA
    e548601 View commit details
  5. Merge pull request #1903 from github/henrymercer/sublanguage-file-cov…

    …erage
    
    Enable sub-language file coverage behind a feature flag
    henrymercer authored Sep 26, 2023
    Copy the full SHA
    4818fdd View commit details
  6. Bump the npm group with 6 updates (#1902)

    * Bump the npm group with 6 updates
    
    Bumps the npm group with 6 updates:
    
    | Package | From | To |
    | --- | --- | --- |
    | [@octokit/types](https://github.com/octokit/types.ts) | `11.1.0` | `12.0.0` |
    | [@types/adm-zip](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/adm-zip) | `0.5.1` | `0.5.2` |
    | [@types/semver](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/semver) | `7.5.2` | `7.5.3` |
    | [@types/sinon](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/sinon) | `10.0.16` | `10.0.17` |
    | [eslint](https://github.com/eslint/eslint) | `8.49.0` | `8.50.0` |
    | [eslint-import-resolver-typescript](https://github.com/import-js/eslint-import-resolver-typescript) | `3.6.0` | `3.6.1` |
    
    
    Updates `@octokit/types` from 11.1.0 to 12.0.0
    - [Release notes](https://github.com/octokit/types.ts/releases)
    - [Commits](octokit/types.ts@v11.1.0...v12.0.0)
    
    Updates `@types/adm-zip` from 0.5.1 to 0.5.2
    - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
    - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/adm-zip)
    
    Updates `@types/semver` from 7.5.2 to 7.5.3
    - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
    - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/semver)
    
    Updates `@types/sinon` from 10.0.16 to 10.0.17
    - [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
    - [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/sinon)
    
    Updates `eslint` from 8.49.0 to 8.50.0
    - [Release notes](https://github.com/eslint/eslint/releases)
    - [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md)
    - [Commits](eslint/eslint@v8.49.0...v8.50.0)
    
    Updates `eslint-import-resolver-typescript` from 3.6.0 to 3.6.1
    - [Release notes](https://github.com/import-js/eslint-import-resolver-typescript/releases)
    - [Changelog](https://github.com/import-js/eslint-import-resolver-typescript/blob/master/CHANGELOG.md)
    - [Commits](import-js/eslint-import-resolver-typescript@v3.6.0...v3.6.1)
    
    ---
    updated-dependencies:
    - dependency-name: "@octokit/types"
      dependency-type: direct:production
      update-type: version-update:semver-major
      dependency-group: npm
    - dependency-name: "@types/adm-zip"
      dependency-type: direct:development
      update-type: version-update:semver-patch
      dependency-group: npm
    - dependency-name: "@types/semver"
      dependency-type: direct:development
      update-type: version-update:semver-patch
      dependency-group: npm
    - dependency-name: "@types/sinon"
      dependency-type: direct:development
      update-type: version-update:semver-patch
      dependency-group: npm
    - dependency-name: eslint
      dependency-type: direct:development
      update-type: version-update:semver-minor
      dependency-group: npm
    - dependency-name: eslint-import-resolver-typescript
      dependency-type: direct:development
      update-type: version-update:semver-patch
      dependency-group: npm
    ...
    
    Signed-off-by: dependabot[bot] <support@github.com>
    
    * Update checked-in dependencies
    
    ---------
    
    Signed-off-by: dependabot[bot] <support@github.com>
    Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
    Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
    dependabot[bot] and github-actions[bot] authored Sep 26, 2023
    Copy the full SHA
    27cb1e1 View commit details

Commits on Sep 27, 2023

  1. Copy the full SHA
    d8cb5a2 View commit details
  2. Merge pull request #1905 from github/update-v2.21.9-27cb1e1de

    Merge main into releases/v2
    alexet authored Sep 27, 2023
    Copy the full SHA
    ddccb87 View commit details
Showing with 118,743 additions and 1,439 deletions.
  1. +7 −0 CHANGELOG.md
  2. +58 −0 lib/autobuild.js
  3. +1 −1 lib/autobuild.js.map
  4. +6 −0 lib/codeql.js
  5. +1 −1 lib/codeql.js.map
  6. +1 −1 lib/debug-artifacts.js
  7. +1 −1 lib/debug-artifacts.js.map
  8. +4 −4 lib/defaults.json
  9. +20 −3 lib/feature-flags.js
  10. +1 −1 lib/feature-flags.js.map
  11. +2 −2 lib/init-action.js
  12. +1 −1 lib/init-action.js.map
  13. +49 −3 lib/workflow.js
  14. +1 −1 lib/workflow.js.map
  15. +148 −92 lib/workflow.test.js
  16. +1 −1 lib/workflow.test.js.map
  17. +29 −24 node_modules/.package-lock.json
  18. +1 −1 node_modules/@eslint/js/package.json
  19. +1 −1 node_modules/@eslint/js/src/configs/eslint-all.js
  20. +1 −1 node_modules/@octokit/types/dist-types/VERSION.d.ts
  21. +815 −791 node_modules/@octokit/types/dist-types/generated/Endpoints.d.ts
  22. +7 −0 node_modules/@octokit/types/node_modules/@octokit/openapi-types/LICENSE
  23. +17 −0 node_modules/@octokit/types/node_modules/@octokit/openapi-types/README.md
  24. +20 −0 node_modules/@octokit/types/node_modules/@octokit/openapi-types/package.json
  25. +115,824 −0 node_modules/@octokit/types/node_modules/@octokit/openapi-types/types.d.ts
  26. +5 −5 node_modules/@octokit/types/package.json
  27. 0 node_modules/@types/adm-zip/LICENSE
  28. +1 −1 node_modules/@types/adm-zip/README.md
  29. +2 −3 node_modules/@types/adm-zip/index.d.ts
  30. +3 −3 node_modules/@types/adm-zip/package.json
  31. +24 −24 node_modules/@types/adm-zip/util.d.ts
  32. +1 −1 node_modules/@types/semver/README.md
  33. +3 −3 node_modules/@types/semver/classes/comparator.d.ts
  34. +3 −3 node_modules/@types/semver/classes/range.d.ts
  35. +1 −1 node_modules/@types/semver/classes/semver.d.ts
  36. +1 −1 node_modules/@types/semver/functions/clean.d.ts
  37. +2 −2 node_modules/@types/semver/functions/cmp.d.ts
  38. +2 −2 node_modules/@types/semver/functions/coerce.d.ts
  39. +2 −2 node_modules/@types/semver/functions/compare-build.d.ts
  40. +1 −1 node_modules/@types/semver/functions/compare-loose.d.ts
  41. +2 −2 node_modules/@types/semver/functions/compare.d.ts
  42. +2 −2 node_modules/@types/semver/functions/diff.d.ts
  43. +2 −2 node_modules/@types/semver/functions/eq.d.ts
  44. +2 −2 node_modules/@types/semver/functions/gt.d.ts
  45. +2 −2 node_modules/@types/semver/functions/gte.d.ts
  46. +4 −4 node_modules/@types/semver/functions/inc.d.ts
  47. +2 −2 node_modules/@types/semver/functions/lt.d.ts
  48. +2 −2 node_modules/@types/semver/functions/lte.d.ts
  49. +2 −2 node_modules/@types/semver/functions/major.d.ts
  50. +2 −2 node_modules/@types/semver/functions/minor.d.ts
  51. +2 −2 node_modules/@types/semver/functions/neq.d.ts
  52. +2 −2 node_modules/@types/semver/functions/parse.d.ts
  53. +2 −2 node_modules/@types/semver/functions/patch.d.ts
  54. +2 −2 node_modules/@types/semver/functions/prerelease.d.ts
  55. +2 −2 node_modules/@types/semver/functions/rcompare.d.ts
  56. +2 −2 node_modules/@types/semver/functions/rsort.d.ts
  57. +3 −3 node_modules/@types/semver/functions/satisfies.d.ts
  58. +2 −2 node_modules/@types/semver/functions/sort.d.ts
  59. +2 −2 node_modules/@types/semver/functions/valid.d.ts
  60. +62 −62 node_modules/@types/semver/index.d.ts
  61. +2 −2 node_modules/@types/semver/package.json
  62. +1 −1 node_modules/@types/semver/preload.d.ts
  63. +3 −3 node_modules/@types/semver/ranges/gtr.d.ts
  64. +2 −2 node_modules/@types/semver/ranges/intersects.d.ts
  65. +3 −3 node_modules/@types/semver/ranges/ltr.d.ts
  66. +3 −3 node_modules/@types/semver/ranges/max-satisfying.d.ts
  67. +3 −3 node_modules/@types/semver/ranges/min-satisfying.d.ts
  68. +3 −3 node_modules/@types/semver/ranges/min-version.d.ts
  69. +4 −4 node_modules/@types/semver/ranges/outside.d.ts
  70. +2 −2 node_modules/@types/semver/ranges/simplify.d.ts
  71. +2 −2 node_modules/@types/semver/ranges/subset.d.ts
  72. +2 −2 node_modules/@types/semver/ranges/to-comparators.d.ts
  73. +2 −2 node_modules/@types/semver/ranges/valid.d.ts
  74. 0 node_modules/@types/sinon/LICENSE
  75. +1 −1 node_modules/@types/sinon/README.md
  76. +28 −22 node_modules/@types/sinon/index.d.ts
  77. +3 −3 node_modules/@types/sinon/package.json
  78. +3 −2 node_modules/eslint-import-resolver-typescript/lib/index.cjs
  79. +3 −2 node_modules/eslint-import-resolver-typescript/lib/index.es2020.mjs
  80. +2 −1 node_modules/eslint-import-resolver-typescript/lib/index.js
  81. +1 −1 node_modules/eslint-import-resolver-typescript/lib/index.js.map
  82. +4 −4 node_modules/eslint-import-resolver-typescript/package.json
  83. +1 −1 node_modules/eslint/README.md
  84. +11 −1 node_modules/eslint/lib/config/flat-config-schema.js
  85. +172 −57 node_modules/eslint/lib/linter/linter.js
  86. +50 −5 node_modules/eslint/lib/rule-tester/flat-rule-tester.js
  87. +78 −20 node_modules/eslint/lib/rule-tester/rule-tester.js
  88. +139 −14 node_modules/eslint/lib/rules/array-callback-return.js
  89. +1 −0 node_modules/eslint/lib/rules/index.js
  90. +65 −15 node_modules/eslint/lib/rules/no-misleading-character-class.js
  91. +7 −0 node_modules/eslint/lib/rules/no-new-object.js
  92. +118 −0 node_modules/eslint/lib/rules/no-object-constructor.js
  93. +350 −3 node_modules/eslint/lib/source-code/source-code.js
  94. +2 −2 node_modules/eslint/package.json
  95. +36 −31 package-lock.json
  96. +7 −7 package.json
  97. +1 −1 queries/default-setup-environment-variables.ql
  98. +53 −2 src/autobuild.ts
  99. +14 −0 src/codeql.ts
  100. +1 −0 src/debug-artifacts.ts
  101. +4 −4 src/defaults.json
  102. +20 −2 src/feature-flags.ts
  103. +2 −3 src/init-action.ts
  104. +296 −116 src/workflow.test.ts
  105. +67 −2 src/workflow.ts
7 changes: 7 additions & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -2,6 +2,13 @@

See the [releases page](https://github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs.

## 2.21.9 - 27 Sep 2023

- Update default CodeQL bundle version to 2.14.6. [#1897](https://github.com/github/codeql-action/pull/1897)
- We are rolling out a feature in October 2023 that will improve the success rate of C/C++ autobuild. [#1889](https://github.com/github/codeql-action/pull/1889)
- We are rolling out a feature in October 2023 that will provide specific file coverage information for C and C++, Java and Kotlin, and JavaScript and TypeScript. Currently file coverage information for each of these pairs of languages is grouped together. [#1903](https://github.com/github/codeql-action/pull/1903)
- Add a warning to help customers avoid inadvertently analyzing the same CodeQL language in multiple matrix jobs. [#1901](https://github.com/github/codeql-action/pull/1901)

## 2.21.8 - 19 Sep 2023

- Add a deprecation warning for customers using CodeQL version 2.10.4 and earlier. These versions of CodeQL were discontinued on 12 September 2023 alongside GitHub Enterprise Server 3.6, and will be unsupported by the next minor release of the CodeQL Action. [#1884](https://github.com/github/codeql-action/pull/1884)
58 changes: 58 additions & 0 deletions lib/autobuild.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/autobuild.js.map

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 6 additions & 0 deletions lib/codeql.js

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

Loading