1.29.1
LGTM Enterprise 1.29.1
We're very happy to announce the release of LGTM Enterprise 1.29.1. You can find details of what's new, installation instructions and documentation for this release at help.semmle.com. Please note that use of the LGTM Enterprise application requires a separate license agreement with GitHub.
Debian/Ubuntu
LGTM Enterprise can be installed on one or more Debian or Ubuntu machines using the bundle of DEB files attached to this release. Debian 9, Ubuntu 16.04 and Ubuntu 18.04 are all officially supported.
CentOS/RedHat
LGTM Enterprise can be installed on one or more CentOS or RedHat machines using the bundle of RPM files attached to this release. CentOS 7 (>=7.4) and RedHat Enterprise Linux 7 (>=7.4) are both officially supported.
Additionally, if you are installing LGTM Enterprise on CentOS or RedHat machines without internet access, a bundle of third-party dependencies is also included.
Windows workers
You can run LGTM Enterprise workers on Windows using the Windows worker MSI provided for this release.
Amazon Web Services images
Remember to attach a data disk and configure your security group rules correctly when deploying the AMI image. Detailed instructions can be found in the Installation and Upgrade Guide.
LGTM Enterprise is available as an AMI in the following regions:
- ap-northeast-1:
ami-0561739e03d941692
- ap-northeast-2:
ami-07352028bed07b45d
- ap-northeast-3:
ami-09d28d530c874a97b
- ap-south-1:
ami-0b72eda3a50997ac1
- ap-southeast-1:
ami-007c650a5c9cd60b6
- ap-southeast-2:
ami-08c41f924ea9a6431
- ca-central-1:
ami-034a856e920844e5e
- eu-central-1:
ami-0e6a35a2b7ebe937d
- eu-north-1:
ami-0112e79af0df796f0
- eu-west-1:
ami-077156679e6628a7f
- eu-west-2:
ami-029e91027b9461485
- eu-west-3:
ami-0ab1ee10377fe446b
- sa-east-1:
ami-0bfb927d2d41f8331
- us-east-1:
ami-0ee43b1fc1d3d9ab2
- us-east-2:
ami-03e239c246166d4cf
- us-west-1:
ami-0b739ceae2199be28
- us-west-2:
ami-067f395ff0e08baaa
Helm (Kubernetes)
LGTM Enterprise can be installed to a Kubernetes cluster using a Helm chart. Some optional tools are also provided to make working with Kubernetes logs easier.
Jira add-on
The LGTM Enterprise Jira add-on is available on the LGTM Enterprise Jira Add-on releases page.
CodeQL for LGTM Enterprise 1.29 users
When using CodeQL to create and analyze databases to use in LGTM Enterprise, it's important that the CodeQL components you use are compatible with your version of LGTM. For the 1.29 release (and future releases), we are making directly compatible CodeQL components available to LGTM Enterprise users.
CodeQL for VS Code
To ensure CodeQL databases downloaded from LGTM Enterprise 1.29 can be analyzed in CodeQL for VS Code, you should you clone the 1.29.1
branch of the starter workspace. Alternatively, you can clone the tag v1.29.1
in the CodeQL and CodeQL for Go repositories, and add them to an existing workspace. For more information see Setting up CodeQL in Visual Studio Code.
CodeQL CLI
To ensure that databases created using the CodeQL CLI can be uploaded to LGTM Enterprise 1.29, download version 2.6.3
of the CLI. Clone the tag v1.29.1
in the CodeQL and CodeQL for Go repositories if you want to include compatible analysis results with the databases you upload to LGTM Enterprise. For more information, see Getting started with the CodeQL CLI and Preparing CodeQL databases to upload to LGTM.
Google Compute Engine Image
LGTM Enterprise is available as a Google Compute Engine Image which can be deployed with Google Deployment Manager. You can use this Google Cloud Shell tutorial for deploying LGTM Enterprise on Google Cloud:
If you wish to deploy the image manually it can be found at:
- Project:
lgtm-enterprise
- Image ID:
lgtm-enterprise-1-29-1
Azure Image
LGTM Enterprise is available as an Azure virtual machine image which can be deployed with Azure Resource Manager.
The controller can be deployed by using this template:
Worker groups can be deployed by using this template:
If you wish to deploy the image manually it can be found with the image reference github:lgtm-enterprise:lgtm-enterprise:1.29.1
.
Release Notes
- A reflected cross-site scripting vulnerability has been fixed.
- An issue where uploaded snapshots could fail to be unpacked on Windows workers due to long file names has been fixed.
- Support for new versions of RabbitMQ that add default consumer timeout has been added.