Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merge main into releases/v2 #1088

Merged
merged 14 commits into from Jun 1, 2022
Merged

Merge main into releases/v2 #1088

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
14 commits
Select commit Hold shift + click to select a range
9e9a842
Introduce a feature-flag to enable/disable lua-based tracing.
criemen May 5, 2022
db50ada
Add tests for the Lua feature flag.
criemen May 9, 2022
970e087
Fix linter errors.
criemen May 16, 2022
c88cf91
Update changelog and version after v2.1.11
invalid-email-address May 17, 2022
6f285ad
Update checked-in dependencies
invalid-email-address May 17, 2022
aaff818
Merge pull request #1079 from github/mergeback/v2.1.11-to-main-a3a6c128
edoardopirovano May 17, 2022
2faa3e1
Remove outdated guidance on missing analysis
marcogario May 17, 2022
f0705a6
Merge pull request #1081 from github/clarify_missing_base
marcogario May 19, 2022
4b77568
Choose the correct version to enable the Lua tracer for.
criemen May 25, 2022
255ffd4
Merge branch 'main' into criemen/lua-tracing-ff
criemen May 25, 2022
822fe5e
Merge pull request #1057 from github/criemen/lua-tracing-ff
criemen May 25, 2022
b36688d
Update default CodeQL to 2.9.3
cklin May 27, 2022
dbe6f21
Merge pull request #1084 from github/cklin/codeql-bundle-2.9.3
cklin May 31, 2022
3f00a12
Update changelog for v2.1.12
invalid-email-address Jun 1, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
4 changes: 4 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
@@ -1,5 +1,9 @@
# CodeQL Action Changelog

## 2.1.12 - 01 Jun 2022

- Update default CodeQL bundle version to 2.9.3. [#1084](https://github.com/github/codeql-action/pull/1084)

## 2.1.11 - 17 May 2022

- Update default CodeQL bundle version to 2.9.2. [#1074](https://github.com/github/codeql-action/pull/1074)
Expand Down
7 changes: 0 additions & 7 deletions README.md
View file
Open in desktop
Expand Up @@ -139,10 +139,3 @@ By default, this will override any queries specified in a config file. If you wi

Read about [troubleshooting code scanning](https://help.github.com/en/github/finding-security-vulnerabilities-and-errors-in-your-code/troubleshooting-code-scanning).

### Note on "missing analysis" message

The very first time code scanning is run and if it is on a pull request, you will probably get a message mentioning a "missing analysis". This is expected.

After code scanning has analyzed the code in a pull request, it needs to compare the analysis of the topic branch (the merge commit of the branch you used to create the pull request) with the analysis of the base branch (the branch into which you want to merge the pull request). This allows code scanning to compute which alerts are newly introduced by the pull request, which alerts were already present in the base branch, and whether any existing alerts are fixed by the changes in the pull request. Initially, if you use a pull request to add code scanning to a repository, the base branch has not yet been analyzed, so it's not possible to compute these details. In this case, when you click through from the results check on the pull request you will see the "Missing analysis for base commit SHA-HASH" message.

For more information and other causes of this message, see [Reasons for the "Analysis not found" message](https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/setting-up-code-scanning-for-a-repository#reasons-for-the-analysis-not-found-message)
12 changes: 11 additions & 1 deletion lib/codeql.js
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/codeql.js.map
View file
Open in desktop

Large diffs are not rendered by default.

51 changes: 51 additions & 0 deletions lib/codeql.test.js
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/codeql.test.js.map
View file
Open in desktop

Large diffs are not rendered by default.

2 changes: 1 addition & 1 deletion lib/defaults.json
View file
Open in desktop
@@ -1,3 +1,3 @@
{
"bundleVersion": "codeql-bundle-20220512"
"bundleVersion": "codeql-bundle-20220527"
}
1 change: 1 addition & 0 deletions lib/feature-flags.js
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/feature-flags.js.map
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 5 additions & 1 deletion lib/feature-flags.test.js
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.