diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml new file mode 100644 index 00000000..d028f5c2 --- /dev/null +++ b/.github/workflows/codeql.yml @@ -0,0 +1,83 @@ +# For most projects, this workflow file will not need changing; you simply need +# to commit it to your repository. +# +# You may wish to alter this file to override the set of languages analyzed, +# or to provide custom queries or build logic. +# +# ******** NOTE ******** +# We have attempted to detect the languages in your repository. Please check +# the `language` matrix defined below to confirm you have the correct set of +# supported CodeQL languages. +# +name: 'CodeQL' + +concurrency: + group: ${{ github.workflow }}-${{ github.ref }} + cancel-in-progress: ${{ github.ref != 'refs/heads/main' }} + +on: + push: + branches: ['main'] + pull_request: + branches: ['main'] + workflow_dispatch: + +jobs: + analyze: + name: Analyze + # Runner size impacts CodeQL analysis time. To learn more, please see: + # - https://gh.io/recommended-hardware-resources-for-running-codeql + # - https://gh.io/supported-runners-and-hardware-resources + # - https://gh.io/using-larger-runners + # Consider using larger runners for possible analysis time improvements. + runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }} + timeout-minutes: ${{ (matrix.language == 'swift' && 120) || 360 }} + permissions: + actions: read + contents: read + security-events: write + + strategy: + fail-fast: false + matrix: + language: ['csharp', 'javascript-typescript'] + # CodeQL supports [ 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'swift' ] + # Use only 'java-kotlin' to analyze code written in Java, Kotlin or both + # Use only 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both + # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support + + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + # Initializes the CodeQL tools for scanning. + - name: Initialize CodeQL + uses: github/codeql-action/init@v2 + with: + languages: ${{ matrix.language }} + # If you wish to specify custom queries, you can do so here or in a config file. + # By default, queries listed here will override any specified in a config file. + # Prefix the list here with "+" to use these queries and those in the config file. + + # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs + # queries: security-extended,security-and-quality + + # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift). + # If this step fails, then you should remove it and run the build manually (see below) + - name: Autobuild + uses: github/codeql-action/autobuild@v2 + + # ℹī¸ Command-line programs to run using the OS shell. + # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun + + # If the Autobuild fails above, remove it and uncomment the following three lines. + # modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance. + + # - run: | + # echo "Run, Build Application using script" + # ./location_of_script_within_repo/buildscript.sh + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v2 + with: + category: '/language:${{matrix.language}}' diff --git a/.github/workflows/nodejs-ci.yml b/.github/workflows/nodejs-ci.yml index 4569b5b4..e5205933 100644 --- a/.github/workflows/nodejs-ci.yml +++ b/.github/workflows/nodejs-ci.yml @@ -55,11 +55,17 @@ jobs: - name: Install dependencies run: yarn install --immutable + - name: Test run: yarn coverage working-directory: ./packages/nodejs - - name: Report coverage - if: always() - uses: davelosert/vitest-coverage-report-action@v2 + + - name: Upload coverage reports to Codecov + uses: codecov/codecov-action@v3 with: working-directory: ./packages/nodejs + env: + CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }} + flags: nodejs + fail_ci_if_error: true + verbose: true diff --git a/package.json b/package.json index 089ecf75..15589618 100644 --- a/package.json +++ b/package.json @@ -9,7 +9,7 @@ "docs" ], "volta": { - "node": "20.8.1" + "node": "20.9.0" }, "config": { "commitizen": { diff --git a/packages/rust-core/Cargo.lock b/packages/rust-core/Cargo.lock index a4b51b24..a7c861f4 100644 --- a/packages/rust-core/Cargo.lock +++ b/packages/rust-core/Cargo.lock @@ -3879,9 +3879,9 @@ dependencies = [ [[package]] name = "webc" -version = "5.6.0" +version = "5.7.0" source = "registry+https://github.com/rust-lang/crates.io-index" -checksum = "d56e44a162b95647aef18b6b37b870836a0ada3e67124ef60022e0445e2734f5" +checksum = "c5fc974157e8532c5c31fa44c38046264227e580cd2a0d939543891d23f43779" dependencies = [ "anyhow", "base64", diff --git a/packages/rust-core/common/Cargo.toml b/packages/rust-core/common/Cargo.toml index 21b3a17e..b3089095 100644 --- a/packages/rust-core/common/Cargo.toml +++ b/packages/rust-core/common/Cargo.toml @@ -31,7 +31,7 @@ reqwest = { version = "^0.11.22", default-features = false, features = [ "json", "multipart", ] } -webc = "5.6.0" +webc = "5.7.0" virtual-fs = { version = "0.9.0", features = ["host-fs"] } virtual-net = { version = "0.6.1", features = ["host-net"] } tokio = { version = "1.33.0", features = [ diff --git a/tools/devkit/package.json b/tools/devkit/package.json index 95a5099d..4d329712 100644 --- a/tools/devkit/package.json +++ b/tools/devkit/package.json @@ -11,7 +11,7 @@ "extends": "../../package.json" }, "devDependencies": { - "@swc/core": "1.3.94", + "@swc/core": "1.3.95", "@swc/helpers": "^0.5.3", "@types/node": "^20.8.7", "@types/yargs": "^17.0.29" diff --git a/yarn.lock b/yarn.lock index e1c6125c..cb4e7e1d 100644 --- a/yarn.lock +++ b/yarn.lock @@ -204,9 +204,9 @@ __metadata: languageName: node linkType: hard -"@angular-devkit/core@npm:16.2.7, @angular-devkit/core@npm:^16.2.7": - version: 16.2.7 - resolution: "@angular-devkit/core@npm:16.2.7" +"@angular-devkit/core@npm:16.2.8, @angular-devkit/core@npm:^16.2.7": + version: 16.2.8 + resolution: "@angular-devkit/core@npm:16.2.8" dependencies: ajv: "npm:8.12.0" ajv-formats: "npm:2.1.1" @@ -219,36 +219,36 @@ __metadata: peerDependenciesMeta: chokidar: optional: true - checksum: 5e5d2cbc6e1800f2942d78be9b5f21cdb12b82ce4dca787aa683bb43e6b71da33ed155ad99566b4d36782919972005d0b85a17c96564a150634f359f3db0c959 + checksum: 1f68787d4837249c3c7f99405d55f21d9584d31035a6020466879d803f17dbc18de59dd71caaa08665a22caedb52d02d0ebcacd1809dcf905f9a4b7340bfe324 languageName: node linkType: hard "@angular-devkit/schematics-cli@npm:^16.2.7": - version: 16.2.7 - resolution: "@angular-devkit/schematics-cli@npm:16.2.7" + version: 16.2.8 + resolution: "@angular-devkit/schematics-cli@npm:16.2.8" dependencies: - "@angular-devkit/core": "npm:16.2.7" - "@angular-devkit/schematics": "npm:16.2.7" + "@angular-devkit/core": "npm:16.2.8" + "@angular-devkit/schematics": "npm:16.2.8" ansi-colors: "npm:4.1.3" inquirer: "npm:8.2.4" symbol-observable: "npm:4.0.0" yargs-parser: "npm:21.1.1" bin: schematics: bin/schematics.js - checksum: 4fa081f728c57a84a91d9494959045f14f8d2437d718ddcb9fbffc1874d293ef596a9562eb53843cc57f2e4c614ece9baaed61173a40b61e9dec6cc7562ec69f + checksum: 9208b3dfbe3d534923cc4f3a193f0dd1d8ad73bbbfb3f869686e07fbe7663a4464c5fb28e0d0d176286482b85a8afaa2c9f6f058d7929d0b4bbb8595aa7f26d0 languageName: node linkType: hard -"@angular-devkit/schematics@npm:16.2.7, @angular-devkit/schematics@npm:^16.2.7": - version: 16.2.7 - resolution: "@angular-devkit/schematics@npm:16.2.7" +"@angular-devkit/schematics@npm:16.2.8, @angular-devkit/schematics@npm:^16.2.7": + version: 16.2.8 + resolution: "@angular-devkit/schematics@npm:16.2.8" dependencies: - "@angular-devkit/core": "npm:16.2.7" + "@angular-devkit/core": "npm:16.2.8" jsonc-parser: "npm:3.2.0" magic-string: "npm:0.30.1" ora: "npm:5.4.1" rxjs: "npm:7.8.1" - checksum: c3791b7125420ea0b27f05916d406e5395ed3d2b45849be0f97be7818bab5fbaf90317078660abd00d191d8f6be3c35c11e5b9d9b93a553b87988f5da26fb979 + checksum: 8657b5324c7a13d9a95ede9c9eda4240fe986a1923d24de86e7dc57e71247c8e3138618ae603dd68505b46a0916cb45b5ea817d51e57b56ba15abaec70a58b77 languageName: node linkType: hard @@ -2886,7 +2886,7 @@ __metadata: "@angular-devkit/core": "npm:^16.2.7" "@angular-devkit/schematics": "npm:^16.2.7" "@angular-devkit/schematics-cli": "npm:^16.2.7" - "@swc/core": "npm:1.3.94" + "@swc/core": "npm:1.3.95" "@swc/helpers": "npm:^0.5.3" "@types/node": "npm:^20.8.7" "@types/yargs": "npm:^17.0.29" @@ -3347,90 +3347,90 @@ __metadata: languageName: node linkType: hard -"@swc/core-darwin-arm64@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-darwin-arm64@npm:1.3.94" +"@swc/core-darwin-arm64@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-darwin-arm64@npm:1.3.95" conditions: os=darwin & cpu=arm64 languageName: node linkType: hard -"@swc/core-darwin-x64@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-darwin-x64@npm:1.3.94" +"@swc/core-darwin-x64@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-darwin-x64@npm:1.3.95" conditions: os=darwin & cpu=x64 languageName: node linkType: hard -"@swc/core-linux-arm-gnueabihf@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-linux-arm-gnueabihf@npm:1.3.94" +"@swc/core-linux-arm-gnueabihf@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-linux-arm-gnueabihf@npm:1.3.95" conditions: os=linux & cpu=arm languageName: node linkType: hard -"@swc/core-linux-arm64-gnu@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-linux-arm64-gnu@npm:1.3.94" +"@swc/core-linux-arm64-gnu@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-linux-arm64-gnu@npm:1.3.95" conditions: os=linux & cpu=arm64 & libc=glibc languageName: node linkType: hard -"@swc/core-linux-arm64-musl@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-linux-arm64-musl@npm:1.3.94" +"@swc/core-linux-arm64-musl@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-linux-arm64-musl@npm:1.3.95" conditions: os=linux & cpu=arm64 & libc=musl languageName: node linkType: hard -"@swc/core-linux-x64-gnu@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-linux-x64-gnu@npm:1.3.94" +"@swc/core-linux-x64-gnu@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-linux-x64-gnu@npm:1.3.95" conditions: os=linux & cpu=x64 & libc=glibc languageName: node linkType: hard -"@swc/core-linux-x64-musl@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-linux-x64-musl@npm:1.3.94" +"@swc/core-linux-x64-musl@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-linux-x64-musl@npm:1.3.95" conditions: os=linux & cpu=x64 & libc=musl languageName: node linkType: hard -"@swc/core-win32-arm64-msvc@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-win32-arm64-msvc@npm:1.3.94" +"@swc/core-win32-arm64-msvc@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-win32-arm64-msvc@npm:1.3.95" conditions: os=win32 & cpu=arm64 languageName: node linkType: hard -"@swc/core-win32-ia32-msvc@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-win32-ia32-msvc@npm:1.3.94" +"@swc/core-win32-ia32-msvc@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-win32-ia32-msvc@npm:1.3.95" conditions: os=win32 & cpu=ia32 languageName: node linkType: hard -"@swc/core-win32-x64-msvc@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core-win32-x64-msvc@npm:1.3.94" +"@swc/core-win32-x64-msvc@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core-win32-x64-msvc@npm:1.3.95" conditions: os=win32 & cpu=x64 languageName: node linkType: hard -"@swc/core@npm:1.3.94": - version: 1.3.94 - resolution: "@swc/core@npm:1.3.94" +"@swc/core@npm:1.3.95": + version: 1.3.95 + resolution: "@swc/core@npm:1.3.95" dependencies: - "@swc/core-darwin-arm64": "npm:1.3.94" - "@swc/core-darwin-x64": "npm:1.3.94" - "@swc/core-linux-arm-gnueabihf": "npm:1.3.94" - "@swc/core-linux-arm64-gnu": "npm:1.3.94" - "@swc/core-linux-arm64-musl": "npm:1.3.94" - "@swc/core-linux-x64-gnu": "npm:1.3.94" - "@swc/core-linux-x64-musl": "npm:1.3.94" - "@swc/core-win32-arm64-msvc": "npm:1.3.94" - "@swc/core-win32-ia32-msvc": "npm:1.3.94" - "@swc/core-win32-x64-msvc": "npm:1.3.94" + "@swc/core-darwin-arm64": "npm:1.3.95" + "@swc/core-darwin-x64": "npm:1.3.95" + "@swc/core-linux-arm-gnueabihf": "npm:1.3.95" + "@swc/core-linux-arm64-gnu": "npm:1.3.95" + "@swc/core-linux-arm64-musl": "npm:1.3.95" + "@swc/core-linux-x64-gnu": "npm:1.3.95" + "@swc/core-linux-x64-musl": "npm:1.3.95" + "@swc/core-win32-arm64-msvc": "npm:1.3.95" + "@swc/core-win32-ia32-msvc": "npm:1.3.95" + "@swc/core-win32-x64-msvc": "npm:1.3.95" "@swc/counter": "npm:^0.1.1" "@swc/types": "npm:^0.1.5" peerDependencies: @@ -3459,7 +3459,7 @@ __metadata: peerDependenciesMeta: "@swc/helpers": optional: true - checksum: ba5b073f682f952caec06a32c4707a158a9255d96c08d275af6b3da59c080d320ef62a6965f4553c3685071257bf4e7be5a9fef6aefbae57e2369981cf5e1ab5 + checksum: f0386b7cc1288d97ef3636fff06c1798914e453b574934778d6c90019acf6893bf566c805369ab74b7c7b559243de37e3fe8bb2bbe9b1ac3214a0575cc4f7335 languageName: node linkType: hard @@ -3777,11 +3777,11 @@ __metadata: linkType: hard "@types/node@npm:*, @types/node@npm:^20.8.7": - version: 20.8.8 - resolution: "@types/node@npm:20.8.8" + version: 20.8.9 + resolution: "@types/node@npm:20.8.9" dependencies: - undici-types: "npm:~5.25.1" - checksum: 739b3d6f4aa760d72373d504d91adec86ac2eab502f68a80214711983e7d1886fd276ade78a276a2affe4942a55ad65cf655c3aa9464d1150f6405445c5ba635 + undici-types: "npm:~5.26.4" + checksum: 6fb5604ac087c8be9aeb9ee1413fae2e691c603c9a691bd722e113597b883f21e8380a44d114ab894b435a491bfc939c8478cd57bcf890c585b961343b124964 languageName: node linkType: hard @@ -3800,9 +3800,11 @@ __metadata: linkType: hard "@types/node@npm:^18.11.18": - version: 18.18.6 - resolution: "@types/node@npm:18.18.6" - checksum: 50312053b0906058aa026e1c85c9125b4f0e8d6ae5e3699fb5bc8e0d5b9d1c2b12303902b2b91477c389f15ad40235d240b882819dd93a49bd6b46983f63be1c + version: 18.18.7 + resolution: "@types/node@npm:18.18.7" + dependencies: + undici-types: "npm:~5.26.4" + checksum: f1ab9c8d318ad9b05f83664bd8a209b9a6410052b4e7124469771ee681ab080f9e65ac3ed3db8a3403976c1ee2941da1eef8008f42a7a3e2e084dc556d5494b5 languageName: node linkType: hard @@ -11452,8 +11454,8 @@ __metadata: linkType: hard "openai@npm:^4.12.4": - version: 4.13.0 - resolution: "openai@npm:4.13.0" + version: 4.14.0 + resolution: "openai@npm:4.14.0" dependencies: "@types/node": "npm:^18.11.18" "@types/node-fetch": "npm:^2.6.4" @@ -11466,7 +11468,7 @@ __metadata: web-streams-polyfill: "npm:^3.2.1" bin: openai: bin/cli - checksum: 231bf299d190001c70b11a44d27f867dfc38808e215a8376c906eb4e9132a83ac2319468c03dbbe89cb5252213d81edc0ce19d662cdddf4a5aafab253076a011 + checksum: 07ae2f65b576d106f111baa2abc9a723ccf3febe80c537beb7d0acc5bc28808e47ec7bef37a0fd2725bfe541ea191e9543d4bb907d05559265e54dc953dfb528 languageName: node linkType: hard @@ -14777,10 +14779,10 @@ __metadata: languageName: node linkType: hard -"undici-types@npm:~5.25.1": - version: 5.25.3 - resolution: "undici-types@npm:5.25.3" - checksum: 60a47c6db451c00d27186d86a41fbd9677fa1f6d1a5350bff342c3985bd79fc3f5a638ebf56bbce21df46c701a687db43b3fbd588e1726e58047cea14d182fef +"undici-types@npm:~5.26.4": + version: 5.26.5 + resolution: "undici-types@npm:5.26.5" + checksum: bb673d7876c2d411b6eb6c560e0c571eef4a01c1c19925175d16e3a30c4c428181fb8d7ae802a261f283e4166a0ac435e2f505743aa9e45d893f9a3df017b501 languageName: node linkType: hard