Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merge main into releases/v2 #1345

Merged
merged 8 commits into from Nov 4, 2022
Merged

Merge main into releases/v2 #1345

Show file tree
Hide file tree
Changes from 7 commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
60c8cda
Update changelog and version after v2.1.30
invalid-email-address Nov 2, 2022
81a1ec0
Update checked-in dependencies
invalid-email-address Nov 2, 2022
7151077
Merge pull request #1342 from github/mergeback/v2.1.30-to-main-18fe527f
henrymercer Nov 2, 2022
862a512
Prune results of Ruby query from SARIF
edoardopirovano Nov 4, 2022
a8cabaf
Merge pull request #1344 from github/edoardo/prune-ruby
edoardopirovano Nov 4, 2022
e260194
Update changelog for v2.1.31
invalid-email-address Nov 4, 2022
29a5553
Update CHANGELOG.md
aeisenberg Nov 4, 2022
8aa42f1
Update CHANGELOG.md
aeisenberg Nov 4, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
4 changes: 4 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
@@ -1,5 +1,9 @@
# CodeQL Action Changelog

## 2.1.31 - 04 Nov 2022

- The `rb/weak-cryptographic-algorithm` Ruby query has been updated to no longer report uses of hash functions such as `MD5` and `SHA1` even if they are known to be weak. These hash algorithms are used very often in non-sensitive contexts, making the query too imprecise in practice. [#1344](https://github.com/github/codeql-action/pull/1344)
aeisenberg marked this conversation as resolved.
Show resolved Hide resolved

## 2.1.30 - 02 Nov 2022

- Improve the error message when using CodeQL bundle version 2.7.2 and earlier in a workflow that runs on a runner image such as `ubuntu-22.04` that uses glibc version 2.34 and later. [#1334](https://github.com/github/codeql-action/pull/1334)
Expand Down
37 changes: 36 additions & 1 deletion lib/upload-lib.js
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/upload-lib.js.map
View file
Open in desktop

Large diffs are not rendered by default.

100 changes: 100 additions & 0 deletions lib/upload-lib.test.js
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion lib/upload-lib.test.js.map
View file
Open in desktop

Large diffs are not rendered by default.