Skip to content

Send tool names to upload endpoint #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
kevinsawicki merged 4 commits into from
Apr 29, 2020
Merged

Send tool names to upload endpoint #2

kevinsawicki merged 4 commits into from
Apr 29, 2020

Conversation

@kevinsawicki
Copy link
Contributor

@kevinsawicki kevinsawicki commented Apr 28, 2020
edited
Loading

This pull request sends an array of all the tool names included in the sarif files to the upload endpoint.

Merge / deployment checklist

  • Run test builds as necessary. Can be on this repository or elsewhere as needed in order to test the change - please include links to tests in otehr repos!
    • CodeQL using init/finish actions
    • 3rd party tool using upload action
  • Confirm this change is backwards compatible with existing workflows.
  • Confirm the readme has been updated if necessary.

@kevinsawicki kevinsawicki requested a review from a team April 28, 2020 18:30
robertbrignull
robertbrignull reviewed Apr 29, 2020
View reviewed changes
Copy link
Contributor

@robertbrignull robertbrignull left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Implementation LGTM but I think this PR is missing the file with the new tests

@kevinsawicki
Copy link
Contributor Author

kevinsawicki commented Apr 29, 2020

Implementation LGTM but I think this PR is missing the file with the new tests

Thanks for mentioning that, I've pushed it up now 👍

@kevinsawicki
Copy link
Contributor Author

kevinsawicki commented Apr 29, 2020

@robertbrignull should I target v1 or master with this pull request?

@robertbrignull
Copy link
Contributor

robertbrignull commented Apr 29, 2020

Target master for now. I believe the plan is to merge into v1 periodically.

@robertbrignull
Copy link
Contributor

robertbrignull commented Apr 29, 2020
edited
Loading

What tests have you run? Did you try with a third party tool or with an upload that contains multiple tools?

I'll start a run on https://github.com/Anthophila/test-electron as that should try all those options.
See https://github.com/Anthophila/test-electron/actions?query=branch%3Asend-tool-names

@kevinsawicki
Copy link
Contributor Author

kevinsawicki commented Apr 29, 2020

Run test builds as necessary

Apologies I misread this as CI passes, not manual tests.

@robertbrignull
Copy link
Contributor

robertbrignull commented Apr 29, 2020

I thought the sast-scan action uploaded multiple files but unfortuantely it doesn't. I'm adding a new workflow to that repo that runs multiple tools. You can see it at https://github.com/Anthophila/test-electron/runs/630193543?check_suite_focus=true
If that's green then I'm totally happy with this PR.

@robertbrignull
Copy link
Contributor

robertbrignull commented Apr 29, 2020

I had to reduce the number of tools because it wasn't finishing, but I got a run to succeed: https://github.com/Anthophila/test-electron/runs/630367911?check_suite_focus=true
So this PR is good to go from my point of view.

@kevinsawicki
Copy link
Contributor Author

kevinsawicki commented Apr 29, 2020

I had to reduce the number of tools because it wasn't finishing, but I got a run to succeed:

Thanks for confirming, merging 👍

@kevinsawicki kevinsawicki merged commit bbc0dc8 into master Apr 29, 2020
@kevinsawicki kevinsawicki deleted the send-tool-names branch April 29, 2020 19:22
marcogario added a commit that referenced this pull request Sep 9, 2020
@marcogario
# This is a combination of 4 commits.
3f5bb98 
# This is the 1st commit message:

Add logic to download codeql platform-language pkg

* Add `bundleName` argument to `getCodeQLBundleDownloadURL`
* Add `languages` argument to `setupCodeQL`.

The logic now tries to find the platform-language pkg before defaulting
to the full bundle. We keep the toolcache clean by adding the pl version
to the tool version.

# The commit message #2 will be skipped:

# Add simple fallback logic for download

# The commit message #3 will be skipped:

# wip linter

# The commit message #4 will be skipped:

# linter
marcogario added a commit that referenced this pull request Sep 9, 2020
@marcogario
# This is a combination of 4 commits.
d3d7dd4 
# This is the 1st commit message:

Add logic to download codeql platform-language pkg

* Add `bundleName` argument to `getCodeQLBundleDownloadURL`
* Add `languages` argument to `setupCodeQL`.

The logic now tries to find the platform-language pkg before defaulting
to the full bundle. We keep the toolcache clean by adding the pl version
to the tool version.

# The commit message #2 will be skipped:

# add test

# The commit message #3 will be skipped:

# cleanup

# The commit message #4 will be skipped:

# linter
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@robertbrignull robertbrignull robertbrignull approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kevinsawicki @robertbrignull