Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merge releases/v2 into releases/v1 #1478

Merged
merged 52 commits into from
Jan 12, 2023
Merged

Conversation

github-actions[bot]
Copy link
Contributor

@github-actions github-actions bot commented Jan 12, 2023

Merging 515828d into releases/v1

Conductor for this PR is @henrymercer.

Contains the following pull requests:

Please do the following:

  • Ensure the CHANGELOG displays the correct version and date.
  • Ensure the CHANGELOG includes all relevant, user-facing changes since the last release.
  • Check that there are not any unexpected commits being merged into the releases/v1 branch.
  • Ensure the docs team is aware of any documentation changes that need to be released.
  • Remove and re-add the "Update dependencies" label to the PR to trigger just this workflow.
  • Wait for the "Update dependencies" workflow to push a commit updating the dependencies.
  • Mark the PR as ready for review to trigger the full set of PR checks.
  • Approve and merge this PR. Make sure Create a merge commit is selected rather than Squash and merge or Rebase and merge.

github-actions[bot] and others added 30 commits December 14, 2022 14:06
Mergeback v2.1.37 refs/heads/releases/v2 into main
…ests

Remove tests with old certifi dependency
This doesn’t affect the overall behaviour, but means we can
short-circuit slightly more quickly when `analyze` is passed
`upload: false`.
We now report errors via telemetry, and this feature will shortly be
enabled by default.
Test results directly via return value of `testFailedSarifUpload` vs
via checking log messages.
Ensure we are regularly running code scanning using
the latest CodeQL and remain up to date with the
internal security scorecard, even if we have a period
longer than a week with no pushes to the repo.
…ng-schedule

Code scanning: Add scheduled trigger to workflow
…-improvements

Improve reporting failed runs via SARIF
)

* Add CLI version field to `defaults` file

* Add fields for prior CLI version
This commit does a few related things:

1. Bumps the minimum version for cli config parsing to 2.10.6
2. Ensures that if cli config parsing is enabled, then remove repos
   are _not_ downloaded by the action. It happens in the CLI.
3. Passes the `--external-repository-token-stdin` option to the CLI
   and passes the appropriate token via stdin if cli config parsing is
   enabled.
…tream

Use a stream when uploading database contents
@github-actions github-actions bot added the Update dependencies Trigger PR workflow to update dependencies label Jan 12, 2023
@henrymercer henrymercer added Update dependencies Trigger PR workflow to update dependencies and removed Update dependencies Trigger PR workflow to update dependencies labels Jan 12, 2023
@github-actions github-actions bot removed the Update dependencies Trigger PR workflow to update dependencies label Jan 12, 2023
@henrymercer henrymercer marked this pull request as ready for review January 12, 2023 10:42
@henrymercer henrymercer requested review from a team as code owners January 12, 2023 10:42
Comment on lines +50 to +61
{
owner: repositoryNwo.owner,
repo: repositoryNwo.repo,
language,
name: `${language}-database`,
data: bundledDbReadStream,
headers: {
authorization: `token ${apiDetails.auth}`,
"Content-Type": "application/zip",
"Content-Length": bundledDbSize,
},
}

Check warning

Code scanning / CodeQL

File data in outbound network request

Outbound network request depends on [file data](1).
@henrymercer henrymercer merged commit ef51ec1 into releases/v1 Jan 12, 2023
@henrymercer henrymercer deleted the update-v1.1.38-515828d9 branch January 12, 2023 12:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

6 participants