Merge pull request #2391 from opengovsg/release-1.79.2

Release 1.79.2 `release`

Author: adriangohjw

.github/workflows/codeql-analysis.yml

@@ -3,7 +3,7 @@
 #
 # You may wish to alter this file to override the set of languages analyzed,
 # or to provide custom queries or build logic.
-name: "CodeQL"
+name: 'CodeQL'
 
 on:
   push:
@@ -12,60 +12,45 @@ on:
     # The branches below must be a subset of the branches above
     branches: [develop]
   schedule:
-    - cron: '0 21 * * 3'
+    - cron: '0 10 * * *'
 
 jobs:
   analyze:
-    name: Analyze
-    runs-on: ubuntu-22.04
+    name: Analyze (${{matrix.language}})
+    runs-on: ${{(matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest'}}
+    timeout-minutes: ${{(matrix.language == 'swift' && 120) || 360}}
+    permissions:
+      # Required for all workflows
+      security-events: write
+
+      # Required to fetch internal or private CodeQL packs
+      packages: read
+
+      # Only required for workflows in private repositories
+      actions: read
+      contents: read
 
     strategy:
       fail-fast: false
       matrix:
-        # Override automatic language detection by changing the below list
-        # Supported options are ['csharp', 'cpp', 'go', 'java', 'javascript', 'python']
-        language: ['javascript']
-        # Learn more...
-        # https://docs.github.com/en/github/finding-security-vulnerabilities-and-errors-in-your-code/configuring-code-scanning#overriding-automatic-language-detection
-
+        include:
+          - language: javascript-typescript
+            build-mode: none
     steps:
-    - name: Checkout repository
-      uses: actions/checkout@v2
-      with:
-        # We must fetch at least the immediate parents so that if this is
-        # a pull request then we can checkout the head.
-        fetch-depth: 2
-
-    # If this run was triggered by a pull request event, then checkout
-    # the head of the pull request instead of the merge commit.
-    - run: git checkout HEAD^2
-      if: ${{ github.event_name == 'pull_request' }}
-
-    # Initializes the CodeQL tools for scanning.
-    - name: Initialize CodeQL
-      uses: github/codeql-action/init@v1
-      with:
-        languages: ${{ matrix.language }}
-        # If you wish to specify custom queries, you can do so here or in a config file.
-        # By default, queries listed here will override any specified in a config file. 
-        # Prefix the list here with "+" to use these queries and those in the config file.
-        # queries: ./path/to/local/query, your-org/your-repo/queries@main
-
-    # Autobuild attempts to build any compiled languages  (C/C++, C#, or Java).
-    # If this step fails, then you should remove it and run the build manually (see below)
-    - name: Autobuild
-      uses: github/codeql-action/autobuild@v1
-
-    # ℹ️ Command-line programs to run using the OS shell.
-    # 📚 https://git.io/JvXDl
-
-    # ✏️ If the Autobuild fails above, remove it and uncomment the following three lines
-    #    and modify them (or add more) to build your code if your project
-    #    uses a compiled language
-
-    #- run: |
-    #   make bootstrap
-    #   make release
-
-    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v1
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      # Initializes the CodeQL tools for scanning.
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v3
+        with:
+          languages: ${{matrix.language}}
+          build-mode: ${{matrix.build-mode}}
+
+          # Pull config from https://github.com/opengovsg/codeql-config/blob/prod/codeql-config.yml
+          config-file: opengovsg/codeql-config/codeql-config.yml@prod
+
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v3
+        with:
+          category: '/language:${{matrix.language}}'

CHANGELOG.md

@@ -4,8 +4,17 @@ All notable changes to this project will be documented in this file. Dates are d
 
 Generated by [`auto-changelog`](https://github.com/CookPete/auto-changelog).
 
+#### [v1.79.2](https://github.com/opengovsg/GoGovSG/compare/v1.79.1...v1.79.2)
+
+- chore: correct capitalization of GoGovSG in README.md [`#2390`](https://github.com/opengovsg/GoGovSG/pull/2390)
+- chore: fix codeql [`#2385`](https://github.com/opengovsg/GoGovSG/pull/2385)
+- chore: fix formatting [`#2384`](https://github.com/opengovsg/GoGovSG/pull/2384)
+- [develop] 1.79.1 [`#2383`](https://github.com/opengovsg/GoGovSG/pull/2383)
+
 #### [v1.79.1](https://github.com/opengovsg/GoGovSG/compare/v1.79.0...v1.79.1)
 
+> 17 June 2025
+
 - fix: remove statistics repo [`#2381`](https://github.com/opengovsg/GoGovSG/pull/2381)
 - build(deps-dev): bump @babel/traverse from 7.14.8 to 7.24.7 [`#2330`](https://github.com/opengovsg/GoGovSG/pull/2330)
 - chore: pipe test results to datadog [`#2342`](https://github.com/opengovsg/GoGovSG/pull/2342)

README.md

@@ -35,15 +35,15 @@ The official Singapore government link shortener.
 
 ## Introduction
 
-GoGovSg is the official Singapore government link shortener, built by the [Open Government Products](https://open.gov.sg) team in [GovTech](https://tech.gov.sg). This repository serves as the codebase to serve three link shortener environments: [Go.gov.sg](https://www.go.gov.sg), [for.edu.sg](https://www.for.edu.sg), and [for.sg](https://www.for.sg).
+GoGovSG is the official Singapore government link shortener, built by the [Open Government Products](https://open.gov.sg) team in [GovTech](https://tech.gov.sg). This repository serves as the codebase to serve three link shortener environments: [Go.gov.sg](https://www.go.gov.sg), [for.edu.sg](https://www.for.edu.sg), and [for.sg](https://www.for.sg).
 
 There are multiple reasons why we built an official government link shortener:
 
 - URLs are **too long** to fit into tweets or SMSes, and **difficult to remember**
 - Email clients might block other commercial link shorteners if they are listed as **spam** on their site
 - Citizens are afraid of **phishing** when receiving a shortened link and unsure of where it goes
 
-With GoGovSg, citizens are safe in the knowledge that the links are **official** and **safe**. Any authorized user can log in with their government emails and immediately create authenticated and recognisable short links.
+With GoGovSG, citizens are safe in the knowledge that the links are **official** and **safe**. Any authorized user can log in with their government emails and immediately create authenticated and recognisable short links.
 
 ## Getting Started
 
@@ -97,7 +97,7 @@ After these have been set up, set the environment variables according to the tab
 #### Server
 
 |        Environment Variable        | Required | Description/Value                                                                                                                                                                              |
-| :--------------------------------: | :------: | :--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | --- | --- |
+| :--------------------------------: | :------: | :--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
 |              NODE_ENV              |   Yes    | `production`                                                                                                                                                                                   |
 |               DB_URI               |   Yes    | The postgres connection string, e.g. `postgres://postgres:postgres@postgres:5432/postgres`                                                                                                     |
 |               OG_URL               |   Yes    | The origin url, used for both google analytics and circular-redirect prevention. E.g. `https://go.gov.sg`                                                                                      |
@@ -147,8 +147,8 @@ After these have been set up, set the environment variables according to the tab
 |          ADMIN_API_EMAILS          |    No    | Emails with admin API access, separated by commas without spaces. Defaults to none.                                                                                                            |
 |    FF_USE_REPLICA_FOR_REDIRECTS    |    No    | Boolean, feature flag for using the replica database to look up redirects to long URLs. Defaults to false                                                                                      |
 |             USER_COUNT             |    No    | Total count of registered users to display on landing page. Defaults to the data we pulled on April 2025                                                                                       |
-|            CLICK_COUNT             |    No    | Total count of link clicks to display on landing page. Defaults to the data we pulled on April 2025                                                                                            |     |
-|             LINK_COUNT             |    No    | Total count of created links to display on landing page. Defaults to the data we pulled on April 2025                                                                                          |     |     |
+|            CLICK_COUNT             |    No    | Total count of link clicks to display on landing page. Defaults to the data we pulled on April 2025                                                                                            |
+|             LINK_COUNT             |    No    | Total count of created links to display on landing page. Defaults to the data we pulled on April 2025                                                                                          |
 
 #### Serverless functions for link migration
 

package-lock.json

@@ -1,6 +1,6 @@
 {
   "name": "GoGovSG",
-  "version": "1.79.1",
+  "version": "1.79.2",
   "description": "Link shortener for Singapore government.",
   "main": "src/server/index.js",
   "scripts": {