openmct/.github/workflows/codeql-analysis.yml

name: 'CodeQL'

on:
  push:
    branches: [master, 'release/*']
  pull_request:
    branches: [master, 'release/*']
    paths-ignore:
      - '**/*Spec.js'
      - '**/*.md'
      - '**/*.txt'
      - '**/*.yml'
      - '**/*.yaml'
      - '**/*.spec.js'
      - '**/*.config.js'
  schedule:
    - cron: '28 21 * * 3'

jobs:
  analyze:
    name: Analyze
    runs-on: ubuntu-latest
    permissions:
      actions: read
      contents: read
      security-events: write

    steps:
      - name: Checkout repository
        uses: actions/checkout@v4

      # Initializes the CodeQL tools for scanning.
      - name: Initialize CodeQL
        uses: github/codeql-action/init@v3
        with:
          config-file: ./.github/codeql/codeql-config.yml
          languages: javascript
          queries: security-and-quality

      - name: Autobuild
        uses: github/codeql-action/autobuild@v3

      - name: Perform CodeQL Analysis
        uses: github/codeql-action/analyze@v3
4417 fix codeql issues (#5793) * Add release to codeql and queries to match lgtm * Add lgtm config file * Custom codeQL config to ignore app.js * Custom config for lgtm * Remove query filter for lgtm * Updated the security test docs * Remove lgtm.yml and delete app.js references * Update codeql-config.yml Co-authored-by: Alize Nguyen <alizenguyen@gmail.com> Co-authored-by: Andrew Henry <akhenry@gmail.com> 2022-10-07 16:30:09 +00:00			`name: 'CodeQL'`
Add automated security scanning to our repo (#4166) 2021-08-30 22:44:25 +00:00
			`on:`
			`push:`
4417 fix codeql issues (#5793) * Add release to codeql and queries to match lgtm * Add lgtm config file * Custom codeQL config to ignore app.js * Custom config for lgtm * Remove query filter for lgtm * Updated the security test docs * Remove lgtm.yml and delete app.js references * Update codeql-config.yml Co-authored-by: Alize Nguyen <alizenguyen@gmail.com> Co-authored-by: Andrew Henry <akhenry@gmail.com> 2022-10-07 16:30:09 +00:00			`branches: [master, 'release/*']`
Inspect PRs (#4395) 2021-10-28 19:57:48 +00:00			`pull_request:`
4417 fix codeql issues (#5793) * Add release to codeql and queries to match lgtm * Add lgtm config file * Custom codeQL config to ignore app.js * Custom config for lgtm * Remove query filter for lgtm * Updated the security test docs * Remove lgtm.yml and delete app.js references * Update codeql-config.yml Co-authored-by: Alize Nguyen <alizenguyen@gmail.com> Co-authored-by: Andrew Henry <akhenry@gmail.com> 2022-10-07 16:30:09 +00:00			`branches: [master, 'release/*']`
Inspect PRs (#4395) 2021-10-28 19:57:48 +00:00			`paths-ignore:`
			`- '*/Spec.js'`
			`- '*/.md'`
			`- '*/.txt'`
Dependabot for linting and GHA (#4397) * Dependabot for linting and GHA * Update dependabot.yml * Real-time updates were removed from dependabot beta * label GHA bumps * Ignore yaml changes on security scans 2021-10-29 16:22:02 +00:00			`- '*/.yml'`
			`- '*/.yaml'`
Implement e2e functional smoke testing and visual regression testing with playwright (#4456) * First example of playwright * Move config * set junit output * fix config and update version * staged changes * new files * update to remote dir * remove remote * smoke * Update smoke.spec.js * Add eslint for playwright * Add dependabot rule for playwright * Add adhoc GHA for playwright * Update tests and fix eslint * move playwright eslint config to e2e dir * Add to circle config * store artifacts * wrong location for storing artifacts * slash? * build before start * increase timeouts in circle * remove duplicate build step * timeout values * add retries * reduce retries * add percy emblem * added percy * Adds GHA for adhoc trigger and baseline visual * Bump and Rev dependabot separte from karma * update e2e label for additional pr logic * Ignore playwright changes for codeql * Update documentation * Add ability to run all tests on pr label * eof * yamlamlaml * issue instead of pull api * archive results and include a link in the PR comment * log context and attempt string concat * concat fix * add success/failure options * add alure reporting * lock playwright image Co-authored-by: unlikelyzero <jchill2@gmail.com> 2021-11-30 00:34:47 +00:00			`- '*/.spec.js'`
			`- '*/.config.js'`
Add automated security scanning to our repo (#4166) 2021-08-30 22:44:25 +00:00			`schedule:`
			`- cron: '28 21 * * 3'`

			`jobs:`
			`analyze:`
			`name: Analyze`
			`runs-on: ubuntu-latest`
			`permissions:`
			`actions: read`
			`contents: read`
			`security-events: write`

			`steps:`
4417 fix codeql issues (#5793) * Add release to codeql and queries to match lgtm * Add lgtm config file * Custom codeQL config to ignore app.js * Custom config for lgtm * Remove query filter for lgtm * Updated the security test docs * Remove lgtm.yml and delete app.js references * Update codeql-config.yml Co-authored-by: Alize Nguyen <alizenguyen@gmail.com> Co-authored-by: Andrew Henry <akhenry@gmail.com> 2022-10-07 16:30:09 +00:00			`- name: Checkout repository`
chore(deps): bump actions/checkout from 3 to 4 (#7034) Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v3...v4) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Jesse Mazzella <ozyx@users.noreply.github.com> 2023-11-02 23:39:54 +00:00			`uses: actions/checkout@v4`
Add automated security scanning to our repo (#4166) 2021-08-30 22:44:25 +00:00
4417 fix codeql issues (#5793) * Add release to codeql and queries to match lgtm * Add lgtm config file * Custom codeQL config to ignore app.js * Custom config for lgtm * Remove query filter for lgtm * Updated the security test docs * Remove lgtm.yml and delete app.js references * Update codeql-config.yml Co-authored-by: Alize Nguyen <alizenguyen@gmail.com> Co-authored-by: Andrew Henry <akhenry@gmail.com> 2022-10-07 16:30:09 +00:00			`# Initializes the CodeQL tools for scanning.`
			`- name: Initialize CodeQL`
chore(deps): bump github/codeql-action from 2 to 3 (#7296) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v2...v3) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> 2023-12-14 14:03:20 +00:00			`uses: github/codeql-action/init@v3`
4417 fix codeql issues (#5793) * Add release to codeql and queries to match lgtm * Add lgtm config file * Custom codeQL config to ignore app.js * Custom config for lgtm * Remove query filter for lgtm * Updated the security test docs * Remove lgtm.yml and delete app.js references * Update codeql-config.yml Co-authored-by: Alize Nguyen <alizenguyen@gmail.com> Co-authored-by: Andrew Henry <akhenry@gmail.com> 2022-10-07 16:30:09 +00:00			`with:`
			`config-file: ./.github/codeql/codeql-config.yml`
			`languages: javascript`
			`queries: security-and-quality`
Add automated security scanning to our repo (#4166) 2021-08-30 22:44:25 +00:00
4417 fix codeql issues (#5793) * Add release to codeql and queries to match lgtm * Add lgtm config file * Custom codeQL config to ignore app.js * Custom config for lgtm * Remove query filter for lgtm * Updated the security test docs * Remove lgtm.yml and delete app.js references * Update codeql-config.yml Co-authored-by: Alize Nguyen <alizenguyen@gmail.com> Co-authored-by: Andrew Henry <akhenry@gmail.com> 2022-10-07 16:30:09 +00:00			`- name: Autobuild`
chore(deps): bump github/codeql-action from 2 to 3 (#7296) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v2...v3) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> 2023-12-14 14:03:20 +00:00			`uses: github/codeql-action/autobuild@v3`
Add automated security scanning to our repo (#4166) 2021-08-30 22:44:25 +00:00
4417 fix codeql issues (#5793) * Add release to codeql and queries to match lgtm * Add lgtm config file * Custom codeQL config to ignore app.js * Custom config for lgtm * Remove query filter for lgtm * Updated the security test docs * Remove lgtm.yml and delete app.js references * Update codeql-config.yml Co-authored-by: Alize Nguyen <alizenguyen@gmail.com> Co-authored-by: Andrew Henry <akhenry@gmail.com> 2022-10-07 16:30:09 +00:00			`- name: Perform CodeQL Analysis`
chore(deps): bump github/codeql-action from 2 to 3 (#7296) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](https://github.com/github/codeql-action/compare/v2...v3) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> 2023-12-14 14:03:20 +00:00			`uses: github/codeql-action/analyze@v3`