Anas Nashif
84c460ed7d
ci: move scheduled codeql offpeak
...
Move schedule to off peak hours
Signed-off-by: Anas Nashif <anas.nashif@intel.com>
2025-06-18 09:52:37 -04:00
dependabot[bot]
3172f85b08
ci: github: bump the actions-deps group across 1 directory with 8 updates
...
Bumps the actions-deps group with 8 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact ) | `9` | `10` |
| [EnricoMi/publish-unit-test-result-action](https://github.com/enricomi/publish-unit-test-result-action ) | `2.19.0` | `2.20.0` |
| [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials ) | `4.1.0` | `4.2.1` |
| [codecov/codecov-action](https://github.com/codecov/codecov-action ) | `5.4.2` | `5.4.3` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.28.17` | `3.28.18` |
| [zephyrproject-rtos/action-zephyr-setup](https://github.com/zephyrproject-rtos/action-zephyr-setup ) | `1.0.6` | `1.0.7` |
| [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions ) | `3.0.24` | `3.0.25` |
| [ossf/scorecard-action](https://github.com/ossf/scorecard-action ) | `2.4.1` | `2.4.2` |
Updates `dawidd6/action-download-artifact` from 9 to 10
- [Release notes](https://github.com/dawidd6/action-download-artifact/releases )
- [Commits](07ab29fd4a...4c1e823582https://github.com/enricomi/publish-unit-test-result-action/releases )
- [Commits](afb2984f4d...3a74b29574https://github.com/aws-actions/configure-aws-credentials/releases )
- [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md )
- [Commits](ececac1a45...b475783126https://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](ad3126e916...18283e04cehttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](60168efe1c...ff0a06e83cf7b70269a8...b2453c7296https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases )
- [Commits](2d6823da40...fc87bb5b5ahttps://github.com/ossf/scorecard-action/releases )
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md )
- [Commits](f49aabe0b5...05b42c6244
2025-06-10 08:51:26 +02:00
dependabot[bot]
f59a054ad7
ci: github: bump the actions-deps group across 1 directory with 8 updates
...
Bumps the actions-deps group with 8 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.4.0` | `5.6.0` |
| [EnricoMi/publish-unit-test-result-action](https://github.com/enricomi/publish-unit-test-result-action ) | `2.18.0` | `2.19.0` |
| [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) | `46.0.3` | `46.0.5` |
| [actions/download-artifact](https://github.com/actions/download-artifact ) | `4.2.1` | `4.3.0` |
| [codecov/codecov-action](https://github.com/codecov/codecov-action ) | `5.4.0` | `5.4.2` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.28.13` | `3.28.17` |
| [carpentries/actions](https://github.com/carpentries/actions ) | `0.14.0` | `0.15.0` |
| [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions ) | `3.0.23` | `3.0.24` |
Updates `actions/setup-python` from 5.4.0 to 5.6.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](https://github.com/actions/setup-python/compare/v5.4.0...a26af69be951a213d495a4c3e4e4022e16d87065 )
Updates `EnricoMi/publish-unit-test-result-action` from 2.18.0 to 2.19.0
- [Release notes](https://github.com/enricomi/publish-unit-test-result-action/releases )
- [Commits](170bf24d20...afb2984f4dhttps://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](823fcebdb3...ed68ef82c0https://github.com/actions/download-artifact/releases )
- [Commits](95815c38cf...d3f86a106ahttps://github.com/codecov/codecov-action/releases )
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md )
- [Commits](0565863a31...ad3126e916https://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](1b549b9259...60168efe1chttps://github.com/carpentries/actions/releases )
- [Commits](e27aa6c531...2e20fd5ee5https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases )
- [Commits](4830be28ce...2d6823da40
2025-05-07 21:21:05 +02:00
Benjamin Cabé
6f4bb7ef62
ci: github: bump the actions-deps group across 1 directory with 8 updates
...
Bumps the actions-deps group with 8 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| [actions/checkout](https://github.com/actions/checkout ) | `4.1.7` | `4.2.2` |
| [actions/setup-python](https://github.com/actions/setup-python ) | `5.4.0` | `5.5.0` |
| [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact ) | `8` | `9` |
| [tj-actions/changed-files](https://github.com/tj-actions/changed-files ) | `46.0.1` | `46.0.3` |
| [actions/upload-artifact](https://github.com/actions/upload-artifact ) | `4.3.5` | `4.6.2` |
| [actions/download-artifact](https://github.com/actions/download-artifact ) | `4.1.9` | `4.2.1` |
| [github/codeql-action](https://github.com/github/codeql-action ) | `3.28.11` | `3.28.13` |
| [zgosalvez/github-actions-ensure-sha-pinned-actions](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions ) | `3.0.22` | `3.0.23` |
Updates `actions/checkout` from 4.1.7 to 4.2.2
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v4.1.7...11bd71901bbe5b1630ceea73d27597364c9af683 )
Updates `actions/setup-python` from 5.4.0 to 5.5.0
- [Release notes](https://github.com/actions/setup-python/releases )
- [Commits](42375524e2...8d9ed9ac5chttps://github.com/dawidd6/action-download-artifact/releases )
- [Commits](20319c5641...07ab29fd4ahttps://github.com/tj-actions/changed-files/releases )
- [Changelog](https://github.com/tj-actions/changed-files/blob/main/HISTORY.md )
- [Commits](2f7c5bfce2...823fcebdb3https://github.com/actions/upload-artifact/releases )
- [Commits](https://github.com/actions/upload-artifact/compare/v4.3.5...ea165f8d65b6e75b540449e92b4886f43607fa02 )
Updates `actions/download-artifact` from 4.1.9 to 4.2.1
- [Release notes](https://github.com/actions/download-artifact/releases )
- [Commits](cc20338598...95815c38cfhttps://github.com/github/codeql-action/releases )
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md )
- [Commits](https://github.com/github/codeql-action/compare/v3.28.11...1b549b9259bda1cb5ddde3b41741a82a2d15a841 )
Updates `zgosalvez/github-actions-ensure-sha-pinned-actions` from 3.0.22
to 3.0.23
- [Release notes](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/releases )
- [Commits](25ed13d062...4830be28ce
2025-03-31 20:16:41 -04:00
Anas Nashif
be18415fc3
ci: codeql: enable on PRs
...
Enable CodeQL on PRs to catch issues before they are merged.
Signed-off-by: Anas Nashif <anas.nashif@intel.com>
2025-03-24 12:17:19 +01:00
Anas Nashif
3b6fe8677b
ci: Add codeql workflow for python, actions, js
...
Integrate codeql code scanning from github to do basic static code
analysis on python, actions, js.
c/cpp to be added later.
Signed-off-by: Anas Nashif <anas.nashif@intel.com>
2025-03-21 14:39:50 -04:00
Anas Nashif
dependabot[bot]
Benjamin Cabé