STACKITGit/cli
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
7109 commits 87 branches 0 tags 160 MiB
Commit graph

10 commits

Author SHA1 Message Date
dependabot[bot]
f9df89da0f
build(deps): bump actions/checkout from 3 to 4 (#7937) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2023-09-05 04:06:24 +02:00
dependabot[bot]
2ef6d83939
Bump github/codeql-action from 1 to 2 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-04-25 14:24:46 +00:00
neilnaveen
07e0e52edd
Fixed permission for workflow (#5279) 
https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

Co-authored-by: Mislav Marohnić <mislav@github.com>
 2022-03-14 14:18:21 +01:00
dependabot[bot]
0cce0e1543
Bump actions/checkout from 2 to 3 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2022-03-02 14:29:49 +00:00
Mislav Marohnić
dabaa5ad7d CodeQL-Dependabot compatibility 
Configure the CodeQL workflow to avoid running for pushes on all pull
requests because that causes problems with Dependabot PRs.

https://github.com/cli/cli/pull/4475/checks?check_run_id=3857074760
 2021-10-11 11:27:54 +02:00
Robin Neatherway
6ebafb55ae
Extend query suite with quality queries 2021-08-19 15:05:28 +01:00
Robin Neatherway
3ab01661e4 Add on: pull_request trigger to CodeQL workflow 
From February 2021, in order to provide feedback on pull requests, Code Scanning workflows must be configured with both `push` and `pull_request` triggers. This is because Code Scanning compares the results from a pull request against the results for the base branch to tell you only what has changed between the two.

Early in the beta period we supported displaying results on pull requests for workflows with only `push` triggers, but have discontinued support as this proved to be less robust.

See https://docs.github.com/en/free-pro-team@latest/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#scanning-pull-requests for more information on how best to configure your Code Scanning workflows.
 2021-01-13 11:09:00 +00:00
Mislav Marohnić
c62c00761e Tweak CodeQL workflow 2020-05-06 10:16:08 +02:00
Justin Hutchings
e0071329f5
Remove strategy, remove autobuild 2020-05-05 13:45:06 -07:00
Justin Hutchings
0a86be0ba7
Rename .github/workflows/workflows/codeql.yml to .github/workflows/codeql.yml 2020-05-04 17:49:39 -07:00
Renamed from .github/workflows/workflows/codeql.yml (Browse further)