Merge main into v1 #913
Merge main into v1 #913
Commits on Jan 29, 2022
-
Bump trim-off-newlines from 1.0.2 to 1.0.3
Bumps [trim-off-newlines](https://github.com/stevemao/trim-off-newlines) from 1.0.2 to 1.0.3. - [Release notes](https://github.com/stevemao/trim-off-newlines/releases) - [Commits](stevemao/trim-off-newlines@v1.0.2...v1.0.3) --- updated-dependencies: - dependency-name: trim-off-newlines dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>
Commits on Jan 31, 2022
-
Merge pull request #893 from github/dependabot/npm_and_yarn/trim-off-…
…newlines-1.0.3 Bump trim-off-newlines from 1.0.2 to 1.0.3
-
-
Bumps [long](https://github.com/dcodeIO/long.js) from 4.0.0 to 5.2.0. - [Release notes](https://github.com/dcodeIO/long.js/releases) - [Commits](dcodeIO/long.js@4.0.0...v5.2.0) --- updated-dependencies: - dependency-name: long dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
-
Merge pull request #900 from github/mergeback/v1.0.31-to-main-1a927e93
Mergeback v1.0.31 refs/heads/v1 into main
Commits on Feb 1, 2022
-
Add a permissions block for generated workflows
Ensure that all workflows are able to write security events.
-
-
Apply documentation suggestions from code review
Co-authored-by: Andrew Eisenberg <aeisenberg@github.com>
-
-
-
-
-
-
-
-
-
-
-
Merge pull request #901 from github/dependabot/npm_and_yarn/long-5.2.0
Bump long from 4.0.0 to 5.2.0
-
Bump @ava/typescript from 2.0.0 to 3.0.1
Bumps [@ava/typescript](https://github.com/avajs/typescript) from 2.0.0 to 3.0.1. - [Release notes](https://github.com/avajs/typescript/releases) - [Commits](avajs/typescript@v2.0.0...v3.0.1) --- updated-dependencies: - dependency-name: "@ava/typescript" dependency-type: direct:development update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
-
-
-
-
-
Update the description of new inputs
These new inputs will not work on pull requests from forks.
-
-
Merge pull request #902 from github/aeisenberg/permissions
Add a permissions block for generated workflows
-
-
Merge pull request #3 from aeisenberg/aeisenberg/add-ref-input
Update the description of new inputs
Commits on Feb 2, 2022
-
-
Merge pull request #904 from cw-acroteau/add-ref-input
Add ref input
-
Move a couple of entries for #889 that should have been in the unreleased section but were inadvertently moved into the 1.0.31 release.
-
Merge pull request #905 from github/henrymercer/fix-changelog
Fix changelog
-
-
-
Merge pull request #906 from github/aibaars/fix-typo
Fix typo in error message
-
Merge pull request #822 from github/dependabot/npm_and_yarn/ava/types…
…cript-3.0.1 Upgrade AVA to v4
Commits on Feb 3, 2022
-
-
Add ML-powered queries enablement to
initstatus reportWe report this information in the `init` status report rather than the `analyze` status report so we can gather data about timeouts.
Commits on Feb 4, 2022
-
-
Merge pull request #858 from github/use-better-base-sha
Declare the merge base as base for code scanning comparisons
-
Add "multiple" report for ML-powered JS query enablement
When multiple ML-powered JS packs are in scope (an unsupported scenario), the status report is "multiple".
-
-
-
Merge pull request #911 from github/cklin/codeql-cli-2.8.0
Update default CodeQL version to 2.8.0
Commits on Feb 7, 2022
-
-
Limit cardinality of ML-powered JS queries status report
Some platforms that ingest this status report charge based on the cardinality of the fields, so here we restrict the version strings we support to a fixed set.
-
Add more documentation for ML-powered JS queries status report
Also be more explicit about which version strings are reportable in the code.
-
Merge pull request #907 from github/henrymercer/report-ml-powered-que…
…ry-enablement Report ML-powered query enablement in the `init` status report