Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Benito Matheoz #234

Open
wants to merge 30 commits into
base: revert-26-fix-licenses
Choose a base branch
from
Open

Benito Matheoz #234

wants to merge 30 commits into from

Conversation

Benimat
Copy link

@Benimat Benimat commented May 12, 2023

Comparación

David Kale and others added 30 commits October 27, 2020 17:37
Revert "update licenses and added package-lock (#26)" (#27)
bd33205 
This reverts commit fd47e65.
@tacaswell
DOC: adjust the example to show a full yaml file
6dc4929
@hross
Create CODEOWNERS
55b296e
@TingluoHuang
Create codeql-analysis.yml
07f2b50
@TingluoHuang
Merge pull request #73 from actions/TingluoHuang-patch-1
dafa9ae 
Create codeql-analysis.yml to enable code scan
@Alirezaaraby
Update README.md
668eef3
@thyeggman
Updating bundled toolkit packages and fix error
6b06292
@thyeggman
Update licenses
01781a8
@thboop
Merge pull request #103 from thyeggman/thyeggman/fix-octokit-error
51a6bff 
Updating bundled toolkit packages and fix error
1.1.1
92b3521
Merge branch 'main' of github.com:actions/first-interaction
6a9caa2
@cory-miller
Merge pull request #104 from actions/releases/v1.1.1
1d8459c 
Update package version
Use first-interaction in the repository
ba7d609
@cory-miller
Merge pull request #105 from actions/users/cory-miller/add-first-inte…
64bdb23 
…raction

Use first-interaction in the repository
@TheGuptaEmpire
installed @actions/core
0ae396c
@pje
Upgrade codeql actions to v2
cc18bea 
Currently we're using v1, and there have been some important changes since then.

In particular, the latest version, v2.14.4, contains an important security patch:

> The CodeQL CLI no longer supports the `SEMMLE_JAVA_ARGS` environment variable. All previous versions of the CodeQL CLI perform command substitution on the `SEMMLE_JAVA_ARGS` value (for example, replacing `'$(echo foo)'` with `'foo'`) when starting a new Java virtual machine, which, depending on the execution environment, may have security implications. Users are advised to check their environments for possible `SEMMLE_JAVA_ARGS` misuse.

See the [codeql-action release notes](https://github.com/github/codeql-cli-binaries/releases/tag/v2.14.4) for full details.
@pje
Merge pull request #275 from actions/pje/upgrade-codeql-actions-to-v2
75f2492 
Upgrade codeql actions to v2
@pje
1.2.0
15b3c5f
@pje
Merge pull request #276 from actions/releases/v1.1.1
1dbfe1b 
Update package.json version to v1.2.0
@AllanGuigou
Update base image to node:18.18.2-buster-slim
c23c7ec 
Add dependency on @octokit/rest to satisfy build requirements.
@AllanGuigou
Update licensed cache
f3836b2
@AllanGuigou
Update license to MIT
3aee370
@AllanGuigou
Update to node 20.10
625b194
@AllanGuigou
Merge pull request #287 from actions/bump-node-to-v18
001cc8d 
Update base image to node:20.10-buster-slim
@AllanGuigou
1.3.0
3c71ce7
@AllanGuigou
Merge pull request #288 from actions/allanguigou/bump-minor-version
34f15e8 
Bump Version to 1.3.0
@ncalteen
Merge pull request #274 from TheGuptaEmpire/first-contributor
c1f2042 
Installed @actions/core
@ncalteen
Merge pull request #75 from Alirezaaraby/patch-2
de709c3 
Update README.md
@ncalteen
Merge branch 'main' into doc_complete_example
fe1cfc1
@ncalteen
Merge pull request #36 from tacaswell/doc_complete_example
41ddf9c 
DOC: adjust the example to show a full yaml file
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.