Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

QL: update codeql-action in QL-for-QL #10012

Merged
merged 5 commits into from
Aug 22, 2022
Merged

QL: update codeql-action in QL-for-QL #10012

merged 5 commits into from
Aug 22, 2022

Conversation

erik-krogh
Copy link
Contributor

@erik-krogh erik-krogh commented Aug 10, 2022
edited
Loading

The previous version was from back in March.

The updated version of codeql-action is the latest main + a commit that adds ql as a supported language.

I had to update how we do the config file to support the changes that has happened in codeql-action.

@erik-krogh erik-krogh marked this pull request as ready for review August 10, 2022 18:40
@erik-krogh erik-krogh requested a review from a team as a code owner August 10, 2022 18:40
@erik-krogh erik-krogh force-pushed the update-ql-for-ql-action branch from 425c38e to 32e3ec0 Compare August 10, 2022 18:49
@erik-krogh erik-krogh marked this pull request as draft August 10, 2022 18:51
@erik-krogh erik-krogh force-pushed the update-ql-for-ql-action branch 8 times, most recently from 00448bb to a72a49b Compare August 12, 2022 18:52
@erik-krogh erik-krogh force-pushed the update-ql-for-ql-action branch 3 times, most recently from f4604ce to 28087a5 Compare August 15, 2022 20:43
@erik-krogh erik-krogh force-pushed the update-ql-for-ql-action branch from 28087a5 to b3adb62 Compare August 15, 2022 20:47
@erik-krogh erik-krogh marked this pull request as ready for review August 15, 2022 20:54
@calumgrant calumgrant requested a review from esbena August 22, 2022 12:50
esbena
esbena approved these changes Aug 22, 2022
View reviewed changes
.github/workflows/ql-for-ql-build.yml
@@ -17,7 +17,7 @@ jobs:
- uses: actions/checkout@v3
- name: Find codeql
id: find-codeql
uses: github/codeql-action/init@aa93aea877e5fb8841bcb1193f672abf6e9f2980
uses: github/codeql-action/init@71a8b35ff4c80fcfcd05bc1cd932fe3c08f943ca
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could we point this at a tag to make similar updates simpler.

I.e. create a tag for 71a8b35ff4c80fcfcd05bc1cd932fe3c08f943ca on gitub/codeql-action titled v2-with-ql-language, and use that instead of the explicit sha.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I prefer pinned commits.

In the beginning we had it point to a branch, but then I broke the workflow by updating the branch (the workflow needed updating).
After that I've preferred using a commit SHA.

@erik-krogh erik-krogh merged commit cede617 into github:main Aug 22, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@esbena esbena esbena approved these changes

Assignees
No one assigned
Labels
QL-for-QL
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@erik-krogh @esbena