From e109bcf2cccc6c7dc436d2ac90b5870fb9bc48d4 Mon Sep 17 00:00:00 2001 From: gh-privacy-bot <111161179+gh-privacy-bot@users.noreply.github.com> Date: Wed, 26 Oct 2022 15:19:35 -0700 Subject: [PATCH 1/6] AppInsights info (#8) --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index 82e0f98..b7f49a5 100644 --- a/README.md +++ b/README.md @@ -33,6 +33,8 @@ GitHub | `saml_return_to_legacy` | This cookie is set by the SAML auth path meth GitHub | `show_cookie_banner` | Set based on the client’s region and used to determine if a cookie consent banner should be shown | Session GitHub | `tz` | This cookie allows us to customize timestamps to your time zone. | Session GitHub | `user_session` | This cookie is used to log you in. | Two weeks +[Microsoft](https://privacy.microsoft.com/en-us/privacystatement) | `ai_session` | Application Insights session ID | One year +[Microsoft](https://privacy.microsoft.com/en-us/privacystatement) | `ai_user` | Application Insights user ID | 30 minutes [Microsoft](https://privacy.microsoft.com/en-us/privacystatement) | `ANONCHK` | This Microsoft Clarity cookie monitors website performance | One year [Microsoft](https://privacy.microsoft.com/en-us/privacystatement) | `isFirstSession` | This cookie is used when user opts-in to saving information | Session [Microsoft](https://privacy.microsoft.com/en-us/privacystatement) | `MSO` | This cookie identifies a session | One year From d0abbe1110f3f52315d8d1ac668763baf056be99 Mon Sep 17 00:00:00 2001 From: gh-privacy-bot <111161179+gh-privacy-bot@users.noreply.github.com> Date: Wed, 9 Nov 2022 10:12:48 -0800 Subject: [PATCH 2/6] Added tree status (#12) Added tree status --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index b7f49a5..d71ba0f 100644 --- a/README.md +++ b/README.md @@ -12,6 +12,7 @@ GitHub | `app_manifest_token` | This cookie is used during the App Manifest flow GitHub | `color_mode` | This cookie is used to indicate the user selected theme preference. | Session GitHub | `_device_id` | This cookie is used to track recognized devices for security purposes. | One year GitHub | `dotcom_user` | This cookie is used to signal to us that the user is already logged in. | One year +GitHub | `fileTreeExpanded` | Used to indicate whether the file tree on the code view was last expanded or collapsed | 30 days GitHub | `ghcc` | This cookie validates user's choice about cookies | 180 Days GitHub | `_gh_ent` | This cookie is used for temporary application and framework state between pages like what step the customer is on in a multiple step form. | Two weeks GitHub | `_gh_sess` | This cookie is used for temporary application and framework state between pages like what step the user is on in a multiple step form. | Session From 757f6c2e6d9d1238cd8de43e32c9ccde18933440 Mon Sep 17 00:00:00 2001 From: gh-privacy-bot <111161179+gh-privacy-bot@users.noreply.github.com> Date: Wed, 7 Dec 2022 14:11:30 -0800 Subject: [PATCH 3/6] Updating list with new cookies (#21) - fs_uid - enterprise_trial_redirect_to --- README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/README.md b/README.md index d71ba0f..1ce0c62 100644 --- a/README.md +++ b/README.md @@ -12,6 +12,7 @@ GitHub | `app_manifest_token` | This cookie is used during the App Manifest flow GitHub | `color_mode` | This cookie is used to indicate the user selected theme preference. | Session GitHub | `_device_id` | This cookie is used to track recognized devices for security purposes. | One year GitHub | `dotcom_user` | This cookie is used to signal to us that the user is already logged in. | One year +GitHub | `enterprise_trial_redirect_to` | This cookie is used to complete a redirect for trial users | 5 minutes GitHub | `fileTreeExpanded` | Used to indicate whether the file tree on the code view was last expanded or collapsed | 30 days GitHub | `ghcc` | This cookie validates user's choice about cookies | 180 Days GitHub | `_gh_ent` | This cookie is used for temporary application and framework state between pages like what step the customer is on in a multiple step form. | Two weeks @@ -66,6 +67,7 @@ GitHub | `user_session` | This cookie is used to log you in. | Two weeks [Facebook](https://www.facebook.com/policies/cookies/) | fr | This cookie is used as the primary advertising cookie used to deliver, measure, and improve the relevancy of ads. | 90 Days [Facebook](https://www.facebook.com/policies/cookies/) | wd | This cookie is used to deliver an optimal experience for your device’s screen. | 7 Days [Facebook](https://www.facebook.com/policies/cookies/) | oo | This cookie is an opt out cookie set by a user visiting Digital Advertising Alliance and choosing to opt out. | 5 years +[Fullstory](https://help.fullstory.com/hc/en-us/articles/360020623394-GDPR-FAQs) | `fs_uid` | This cookie is used to track interactions with a page | One year [Google](https://policies.google.com/privacy) | _gcl_au | This cookie is used by Google AdSense for experimenting with advertisement efficiency across websites using their services. | 90 Days [Google](https://policies.google.com/privacy) | id | This cookie is used to build a profile of the website visitor's interests and show relevant ads on other sites. | "OPT_OUT: fixed expiration (year 2030/11/09); non-OPT_OUT: 13 months EEA UK 24 months elsewhere" [Google](https://policies.google.com/privacy) | IDE | This cookie is used to build a profile of the website visitor's interests and show relevant ads on other sites. | "13 months EEA UK; 24 months elsewhere" From 08b9178a616c0e18f7df6c1571348e36f02e2de8 Mon Sep 17 00:00:00 2001 From: gh-privacy-bot <111161179+gh-privacy-bot@users.noreply.github.com> Date: Mon, 30 Jan 2023 15:38:39 -0800 Subject: [PATCH 4/6] Removed inaccurate language (#32) --- README.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/README.md b/README.md index 1ce0c62..8c631b9 100644 --- a/README.md +++ b/README.md @@ -102,5 +102,3 @@ GitHub | `user_session` | This cookie is used to log you in. | Two weeks [Yahoo](https://policies.yahoo.com/us/en/yahoo/privacy/index.htm?redirect=no) | b | This cookie collects anonymous data related to the visitor's website visits, such as the number of visits, average time spent on the website and what pages have been loaded. The registered data is used to categorize the users' interest and demographical profiles with the purpose of customizing the website content depending on the visitor. | One year (*) The expiration dates for the cookies listed above generally apply on a rolling basis. - -⚠️ Please note while we limit our use of third party cookies to those necessary to provide external functionality when rendering external content, certain pages on our website may set other third party cookies. For example, we may embed content, such as videos, from another site that sets a cookie. While we try to minimize these third party cookies, we can’t always control what cookies this third party content sets. From 3e4336c9e78810fb6e6f3b102dc432c7cb745c32 Mon Sep 17 00:00:00 2001 From: Dani Brooks <104226514+danibrooks@users.noreply.github.com> Date: Wed, 3 May 2023 16:55:17 -0700 Subject: [PATCH 5/6] Update README.md --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 8c631b9..716b3ce 100644 --- a/README.md +++ b/README.md @@ -4,7 +4,7 @@ GitHub provides a great deal of transparency regarding how we use your data, how GitHub uses cookies to provide and secure our websites, as well as to analyze the usage of our websites, in order to offer you a great user experience. Please take a look at our [Privacy Statement](https://docs.github.com/en/github/site-policy/github-privacy-statement#our-use-of-cookies-and-tracking-technologies) if you’d like more information about cookies, and on how and why we use them and cookie-related personal data. You can change your preference about non-essential cookies at any time by following [these instructions](https://docs.github.com/en/account-and-profile/setting-up-and-managing-your-personal-account-on-github/managing-personal-account-settings/managing-your-cookie-preferences-for-githubs-enterprise-marketing-pages). -Since the number and names of cookies may change, the table below may be updated from time to time. When it is updated, the data of the repo will change. Follow [these instructions](https://github.com/privacy/resources/blob/main/subscribe.md) to subscribe to changes in this repo. +Since the number and names of cookies may change, the table below may be updated from time to time. When it is updated, the data of the repo will change. Follow [these instructions](https://docs.github.com/en/account-and-profile/managing-subscriptions-and-notifications-on-github/setting-up-notifications/about-notifications) to subscribe to changes in this repo. Provider of Cookie | Cookie Name | Description | Expiration* -----------------|-------------|-------------|------------ From 19f9e964189121cc93be30e52b952b0188e4a8d2 Mon Sep 17 00:00:00 2001 From: R5OcHG <137742112+R5OcHG@users.noreply.github.com> Date: Mon, 25 Mar 2024 02:45:51 +0300 Subject: [PATCH 6/6] Create codeql.yml Signed-off-by: R5OcHG <137742112+R5OcHG@users.noreply.github.com> --- .github/workflows/codeql.yml | 84 ++++++++++++++++++++++++++++++++++++ 1 file changed, 84 insertions(+) create mode 100644 .github/workflows/codeql.yml diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml new file mode 100644 index 0000000..f7ca122 --- /dev/null +++ b/.github/workflows/codeql.yml @@ -0,0 +1,84 @@ +# For most projects, this workflow file will not need changing; you simply need +# to commit it to your repository. +# +# You may wish to alter this file to override the set of languages analyzed, +# or to provide custom queries or build logic. +# +# ******** NOTE ******** +# We have attempted to detect the languages in your repository. Please check +# the `language` matrix defined below to confirm you have the correct set of +# supported CodeQL languages. +# +name: "CodeQL" + +on: + push: + branches: [ "main" ] + pull_request: + branches: [ "main" ] + schedule: + - cron: '39 14 * * 6' + +jobs: + analyze: + name: Analyze + # Runner size impacts CodeQL analysis time. To learn more, please see: + # - https://gh.io/recommended-hardware-resources-for-running-codeql + # - https://gh.io/supported-runners-and-hardware-resources + # - https://gh.io/using-larger-runners + # Consider using larger runners for possible analysis time improvements. + runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }} + timeout-minutes: ${{ (matrix.language == 'swift' && 120) || 360 }} + permissions: + # required for all workflows + security-events: write + + # only required for workflows in private repositories + actions: read + contents: read + + strategy: + fail-fast: false + matrix: + language: [ ] + # CodeQL supports [ 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'swift' ] + # Use only 'java-kotlin' to analyze code written in Java, Kotlin or both + # Use only 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both + # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support + + steps: + - name: Checkout repository + uses: actions/checkout@v4 + + # Initializes the CodeQL tools for scanning. + - name: Initialize CodeQL + uses: github/codeql-action/init@v3 + with: + languages: ${{ matrix.language }} + # If you wish to specify custom queries, you can do so here or in a config file. + # By default, queries listed here will override any specified in a config file. + # Prefix the list here with "+" to use these queries and those in the config file. + + # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs + # queries: security-extended,security-and-quality + + + # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift). + # If this step fails, then you should remove it and run the build manually (see below) + - name: Autobuild + uses: github/codeql-action/autobuild@v3 + + # ℹ️ Command-line programs to run using the OS shell. + # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun + + # If the Autobuild fails above, remove it and uncomment the following three lines. + # modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance. + + # - run: | + # echo "Run, Build Application using script" + # ./location_of_script_within_repo/buildscript.sh + + - name: Perform CodeQL Analysis + uses: github/codeql-action/analyze@v3 + with: + category: "/language:${{matrix.language}}"