ivuorinen/gh-codeql-report
1
0
Fork 0
mirror of https://github.com/ivuorinen/gh-codeql-report.git synced 2026-01-26 03:34:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: ivuorinen:v1.0.0
Branches Tags
ivuorinen:main ivuorinen:renovate/major-4-vitest-monorepo ivuorinen:renovate/actions-checkout-6.x ivuorinen:renovate/node-24.x ivuorinen:renovate/actions-setup-node-6.x ivuorinen:renovate/stefanzweifel-git-auto-commit-action-7.x ivuorinen:renovate/major-5-github-artifact-actions ivuorinen:renovate/major-6-github-artifact-actions ivuorinen:renovate/major-7-github-artifact-actions
ivuorinen:v1.0.1 ivuorinen:v1.0.0
...
compare: ivuorinen:renovate/major-7-github-artifact-actions
Branches Tags
ivuorinen:renovate/major-4-vitest-monorepo ivuorinen:main ivuorinen:renovate/actions-checkout-6.x ivuorinen:renovate/node-24.x ivuorinen:renovate/actions-setup-node-6.x ivuorinen:renovate/stefanzweifel-git-auto-commit-action-7.x ivuorinen:renovate/major-5-github-artifact-actions ivuorinen:renovate/major-6-github-artifact-actions ivuorinen:renovate/major-7-github-artifact-actions
ivuorinen:v1.0.1 ivuorinen:v1.0.0

17 Commits
v1.0.0 ... renovate/m

Author SHA1 Message Date
renovate[bot]
69fc59e53f chore(deps)!: update actions/download-artifact (v5.0.0 → v7.0.0) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-12 21:38:42 +00:00
renovate[bot]
d419ee69a7 chore(deps): update softprops/action-gh-release action (v2.4.2 → v2.5.0) (#19) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-03 06:32:30 +00:00
renovate[bot]
a5c0fb1320 chore(deps): update davelosert/vitest-coverage-report-action action (v2.8.3 → v2.9.0) (#18) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-01 21:01:06 +00:00
renovate[bot]
02338683de chore(deps): update actions/checkout action (v5.0.0 → v5.0.1) (#16) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-11-20 08:38:56 +00:00
renovate[bot]
599f57ba8b chore(deps): update softprops/action-gh-release action (v2.4.1 → v2.4.2) (#15) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-11-10 04:35:51 +00:00
renovate[bot]
21a5b2cb01 chore(deps): update node.js (v22.20.0 → v22.21.0) (#10) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-10-22 19:15:46 +00:00
renovate[bot]
bce003d3e9 chore(deps): update softprops/action-gh-release action (v2.4.0 → v2.4.1) (#8) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-10-13 01:11:00 +00:00
renovate[bot]
5c592981da chore(deps): update softprops/action-gh-release action (v2.3.4 → v2.4.0) (#6) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-10-10 02:28:50 +00:00
renovate[bot]
4840f1bb0e chore(deps): update softprops/action-gh-release action (v2.3.3 → v2.3.4) (#5) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-10-05 04:35:11 +00:00
renovate[bot]
7dece07672 chore(deps): update softprops/action-gh-release action (v2.2.0 → v2.3.3) (#4) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-10-01 02:41:42 +00:00
Ismo Vuorinen
bb1deabc35 chore: release v1.0.1 2025-09-30 23:56:28 +03:00
Ismo Vuorinen
42f087eb5a fix: running with npx 2025-09-30 23:55:59 +03:00
renovate[bot]
d007e6ae76 chore(deps): update node.js (v22.18.0 → v22.20.0) (#3) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-09-30 23:22:05 +03:00
Ismo Vuorinen
fca04856a8 chore: fixes to release workflow and release shortcuts 2025-09-30 23:18:56 +03:00
ivuorinen
91727e3863 style: auto-fix biome issues [skip ci] 2025-09-30 19:58:28 +00:00
Ismo Vuorinen
739cf20efc fix(ci): codeql reported problems 2025-09-30 22:52:48 +03:00
renovate[bot]
e776d222de chore(deps): add .github/renovate.json (#1) 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-09-30 22:41:36 +03:00
7 changed files with 82 additions and 19 deletions
Expand all files Collapse all files

4
.github/renovate.json vendored Normal file
View File

@@ -0,0 +1,4 @@
{
"$schema": "https://docs.renovatebot.com/renovate-schema.json",
"extends": ["local>ivuorinen/renovate-config"]
}

18
.github/workflows/ci.yml vendored
View File

@@ -11,9 +11,11 @@ jobs:
lint:
name: Lint & Auto-fix
runs-on: ubuntu-latest
permissions:
contents: write
steps:
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
with:
token: ${{ secrets.GITHUB_TOKEN }}
@@ -40,9 +42,11 @@ jobs:
name: Test
runs-on: ubuntu-latest
needs: lint
permissions:
contents: read
steps:
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
with:
ref: ${{ github.head_ref || github.ref_name }}
@@ -69,9 +73,11 @@ jobs:
name: Build
runs-on: ubuntu-latest
needs: lint
permissions:
contents: read
steps:
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
with:
ref: ${{ github.head_ref || github.ref_name }}
@@ -103,16 +109,16 @@ jobs:
pull-requests: write
steps:
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
- name: Download coverage artifacts
uses: actions/download-artifact@634f93cb2916e3fdff6788551b99b062d0335ce0 # v5.0.0
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
with:
name: coverage
path: coverage/
- name: Vitest Coverage Report
uses: davelosert/vitest-coverage-report-action@8ab049ff5a2c6e78f78af446329379b318544a1a # v2.8.3
uses: davelosert/vitest-coverage-report-action@5b6122e3a819a3be7b27fc961b7faafb3bf00e4d # v2.9.0
with:
json-summary-path: coverage/coverage-summary.json
json-final-path: coverage/coverage-final.json

58
.github/workflows/release.yml vendored
View File

@@ -1,8 +1,6 @@
name: Release
on:
release:
types: [published]
push:
tags:
- 'v*.*.*'
@@ -11,9 +9,11 @@ jobs:
lint:
name: Lint
runs-on: ubuntu-latest
permissions:
contents: read
steps:
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
- name: Setup Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
@@ -31,9 +31,11 @@ jobs:
name: Test
runs-on: ubuntu-latest
needs: lint
permissions:
contents: read
steps:
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
- name: Setup Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
@@ -58,9 +60,11 @@ jobs:
name: Build
runs-on: ubuntu-latest
needs: lint
permissions:
contents: read
steps:
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
- name: Setup Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
@@ -80,16 +84,39 @@ jobs:
name: dist
path: dist/
create-release:
name: Create GitHub Release
runs-on: ubuntu-latest
needs: [lint, test, build]
permissions:
contents: write
steps:
- name: Checkout code
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
- name: Download build artifacts
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
with:
name: dist
path: dist/
- name: Create GitHub Release
uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2.5.0
with:
generate_release_notes: true
files: |
dist/**/*
publish:
name: Publish to npm
runs-on: ubuntu-latest
needs: [lint, test, build]
needs: [lint, test, build, create-release]
permissions:
contents: read
id-token: write
steps:
- name: Checkout code
uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1
- name: Setup Node.js
uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0
@@ -104,7 +131,24 @@ jobs:
- name: Build project
run: npm run build
- name: Check if version exists on npm
id: check-version
run: |
PACKAGE_VERSION=$(node -p "require('./package.json').version")
PACKAGE_NAME=$(node -p "require('./package.json').name")
echo "version=$PACKAGE_VERSION" >> $GITHUB_OUTPUT
echo "name=$PACKAGE_NAME" >> $GITHUB_OUTPUT
if npm view "$PACKAGE_NAME@$PACKAGE_VERSION" version 2>/dev/null; then
echo "exists=true" >> $GITHUB_OUTPUT
echo "⚠️ Version $PACKAGE_VERSION already exists on npm, skipping publish"
else
echo "exists=false" >> $GITHUB_OUTPUT
echo "✅ Version $PACKAGE_VERSION does not exist on npm, will publish"
fi
- name: Publish to npm
if: steps.check-version.outputs.exists == 'false'
run: npm publish --provenance --access public
env:
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}

2
.nvmrc
View File

@@ -1 +1 @@
22.18
22.21

4
package-lock.json generated
View File

@@ -1,12 +1,12 @@
{
"name": "@ivuorinen/gh-codeql-report",
"version": "1.0.0",
"version": "1.0.1",
"lockfileVersion": 3,
"requires": true,
"packages": {
"": {
"name": "@ivuorinen/gh-codeql-report",
"version": "1.0.0",
"version": "1.0.1",
"license": "MIT",
"dependencies": {
"@types/yargs": "^17.0.33",

7
package.json
View File

@@ -1,6 +1,6 @@
{
"name": "@ivuorinen/gh-codeql-report",
"version": "1.0.0",
"version": "1.0.1",
"description": "Collect repository CodeQL findings as a LLM ready report for easier fixing.",
"keywords": [
"cli",
@@ -32,7 +32,10 @@
"lint": "biome check src/",
"lint:fix": "biome check --write .",
"format": "biome format --write .",
"prepare": "husky"
"prepare": "husky",
"release:patch": "npm version patch -m 'chore: release v%s' && git push origin main --follow-tags",
"release:minor": "npm version minor -m 'chore: release v%s' && git push origin main --follow-tags",
"release:major": "npm version major -m 'chore: release v%s' && git push origin main --follow-tags"
},
"dependencies": {
"@types/yargs": "^17.0.33",

8
src/cli.ts
View File

@@ -1,6 +1,7 @@
#!/usr/bin/env node
import { writeFile } from 'node:fs/promises';
import { fileURLToPath } from 'node:url';
import { Octokit } from 'octokit';
import yargs from 'yargs';
import { hideBin } from 'yargs/helpers';
@@ -114,7 +115,12 @@ export async function main(): Promise<number> {
}
// Only run if this is the main module (not imported for testing)
if (import.meta.url === `file://${process.argv[1]}`) {
const modulePath = fileURLToPath(import.meta.url);
const isMainModule =
process.argv[1] &&
(modulePath === process.argv[1] || modulePath === fileURLToPath(`file://${process.argv[1]}`));
if (isMainModule) {
main().then((exitCode) => {
process.exit(exitCode);
});