chore(ci): hygiene -- ubuntu-24.04 + action version updates#136
Closed
KooshaPari wants to merge 55 commits into
Closed
chore(ci): hygiene -- ubuntu-24.04 + action version updates#136KooshaPari wants to merge 55 commits into
KooshaPari wants to merge 55 commits into
Conversation
Co-authored-by: Claude Code <claude@anthropic.com>
- CLAUDE.md: project-level governance and mandate - AGENTS.md: local agent contract and operating loop - docs/worklogs/README.md: work audit template - .github/workflows: quality-gate, fr-coverage, doc-links - FUNCTIONAL_REQUIREMENTS.md: 7 FR stubs inferred from README - tests/smoke_test: language-specific sanity check Commit applies org standards to newly-cloned repos per batch-3 onboarding checklist. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Pin the top-level phenoShared CI reusable workflow to an immutable commit SHA instead of tracking main. Validation: - actionlint .github/workflows/ci.yml - git diff --check Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Add gopls check coverage to the common lint task so Taskfile-based validation includes the repo's Go LSP diagnostics without relying on the justfile audit target. Co-authored-by: Codex <noreply@openai.com>
Remove generated snapshot diff files from integration test runs as part of the common clean task. Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Avoid clearing the shared Go build cache from the common clean task; keep test-cache expiry and generated artifact cleanup. Co-authored-by: Codex <noreply@openai.com>
Detected the repository as Go-based and kept the Taskfile common targets aligned with Go build, test, lint, and clean flows while centralizing the binary name. Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Keep the common Taskfile test target on deterministic Go packages while leaving the real-filesystem watcher harness to its explicit package command. This keeps build, test, lint, and clean usable as a local common task set.\n\nValidation: task build test lint clean\n\nCo-authored-by: Codex <noreply@openai.com>
Co-authored-by: Codex <noreply@openai.com>
Detected Go tooling from go.mod and validated the common Taskfile tasks. Update clean so it clears both build and test caches before removing generated artifacts. Co-authored-by: Codex <noreply@openai.com>
Use Go test-cache expiry for the clean task while keeping repo artifact cleanup intact. Avoid purging the shared Go build cache from this task because that can fail on active local cache directories. Validated locally with task build, task test, task lint, and task clean. Co-authored-by: Codex <noreply@openai.com>
Update the common clean task to clear both Go build and test caches so local build cache corruption can be repaired through the Taskfile workflow. Co-authored-by: Codex <noreply@openai.com>
Add retry handling around Go cache cleanup so the common clean task tolerates transient cache directory races after tool invocations. Co-authored-by: Codex <noreply@openai.com>
* chore: add standard issue templates Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * chore: add standard issue templates Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * chore: add standard issue templates Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * chore: add standard issue templates Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
* docs: add sladge badge Co-authored-by: Codex <noreply@openai.com> * chore: pin GitHub Actions to fixed SHAs Pin GitHub Actions to immutable SHAs: - checkout@v4: 34e114876b0b11c390a56381ad16ebd13914f8d5 - setup-go@v5: be666c2fcd27ec809703dec50e508c2fdc7f6654 - setup-node@v4: 48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e - setup-python@v5: a26af69be951a213d495a4c3e4e4022e16d87065 * chore: pin GitHub Actions to specific SHAs --------- Co-authored-by: Codex <noreply@openai.com>
Co-authored-by: Phenotype Agent <agent@phenotype.ai>
Pin all action refs to immutable SHAs across workflow files: - checkout@v4 → @11bd71901bbe5b1630ceea73d27597364c9af683 - checkout@v6 → @de0fac2e4500dabe0009e67214ff5f5447ce83dd - setup-node@v4/v5, setup-python@v4/v5, setup-go@v5 - upload-artifact@v4/v7, download-artifact@v4 - cache@v3/v4, github-script@v7 - configure-pages@v5/v6, deploy-pages@v4/v5 - upload-pages-artifact@v3/v5, dependency-review-action@v4 Fixes version-tag normalization (add v4/v5 tags where missing). Fixes double-SHA corruption artifacts from prior patching rounds. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
- Add CLAUDE.md with Go MCP language server conventions - Add .trufflehog.yml secrets scanning config Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
* security(ci): replace trufflehog/actions/setup with go install + setup-go Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * ci(repo): add golangci-lint configuration Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * chore: add concurrency to CI workflows Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * ci(MCPForge): add golangci-lint configuration Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * chore(mcpforge): commit pending audit updates * chore: pin gopls version to v0.22.0 for reproducible Go tooling * chore: harden workflows - pin actions and add permissions Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com> * chore: add missing governance files --------- Co-authored-by: Phenotype Agent <agent@phenotype.ai> Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
…hog workflows (#37) lint.yml: accept origin/main (permissions block + go 1.24 + golangci-lint v2.12.2) trufflehog.yml: accept 4cb2358 (go install pattern + stable + concurrency + permissions) Co-authored-by: Phenotype Agent <agent@phenotype.ai> Co-authored-by: Claude Opus 4.7 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
…rsions in go.yml - 6 jobs: ubuntu-latest -> ubuntu-24.04 - setup-go: be666c2. -> 78961f6f - setup-python: a26af69. -> c8813ba1 - setup-node: 8f152de. -> 0355742c - rust-toolchain: 29eef33. -> stable Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
…in lint.yml - setup-go: 0a12ed9. -> 78961f6f Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
…in trufflehog.yml - setup-go: 0a12ed9. -> 78961f6f Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Author
|
Wrong repo, using KooshaPari/MCPForge #38 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
ubuntu-latest->ubuntu-24.04in 8 workflow files (9 jobs total)actions/setup-go: 0a12ed9. -> 78961f6f (v6.4.0)actions/setup-python: a26af69. -> c8813ba1actions/setup-node: 8f152de. -> 0355742cdtolnay/rust-toolchain: 29eef33. -> stableFiles changed
.github/workflows/codeql.yml(line 23).github/workflows/doc-links.yml(line 12).github/workflows/fr-coverage.yml(line 12).github/workflows/go.yml(lines 20, 48, 67, 91, 119, 143 + 4 action SHAs).github/workflows/lint.yml(line 12 + setup-go SHA).github/workflows/quality-gate.yml(line 12).github/workflows/scorecard.yml(line 21).github/workflows/trufflehog.yml(line 16 + setup-go SHA)🤖 Generated with Claude Code