Skip to content

Fix failed SARIF upload behavior when the workflow doesn't call the CodeQL Action#1420

Merged
henrymercer merged 5 commits intomainfrom
henrymercer/failed-runs-fix-action-not-found
Dec 7, 2022
Merged

Fix failed SARIF upload behavior when the workflow doesn't call the CodeQL Action#1420
henrymercer merged 5 commits intomainfrom
henrymercer/failed-runs-fix-action-not-found

Conversation

@henrymercer
Copy link
Contributor

@henrymercer henrymercer commented Dec 6, 2022

We encountered some unexpected behavior with a workflow that called codeql-action/analyze locally. The workflow parsing code couldn't resolve the local call to the CodeQL Action, and erroneously returned the default values of each input. This meant that we uploaded a failed SARIF file when we shouldn't have.

This PR adds a regression test for this case, and changes the workflow parsing code to be more conservative. Now we only upload a failed SARIF file when the current job calls the relevant Action exactly once in the workflow file.

No changelog needed since this functionality hasn't been rolled out yet.

Merge / deployment checklist

  • Confirm this change is backwards compatible with existing workflows.
  • Confirm the readme has been updated if necessary.
  • Confirm the changelog has been updated if necessary.

@henrymercer
Add regression test
9085295
@henrymercer
Make getInputOrThrow throw when it can't find any calls to the Action
4623c8e 
This created unexpected behavior with a workflow calling
`codeql-action/analyze` locally.
Therefore, be more conservative with parsing inputs from workflows and
refuse to parse jobs that don't call the specified Action exactly once.
@henrymercer
Downgrade log severity when we can't upload a failed SARIF file
2207a72 
This isn't severe enough to appear on the Actions summary.
@henrymercer henrymercer requested a review from a team as a code owner December 6, 2022 18:18
@henrymercer henrymercer merged commit 79166d0 into main Dec 7, 2022
@henrymercer henrymercer deleted the henrymercer/failed-runs-fix-action-not-found branch December 7, 2022 08:48
This was referenced Dec 8, 2022
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aeisenberg aeisenberg aeisenberg approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@henrymercer @aeisenberg