Workflow/redesign architecture #74
Conversation
- Replace malformed template literals with proper string concatenation - Fix plugin type formatting and method documentation generation - Ensure contract validation workflow executes without syntax errors
- Remove 11 redundant/broken workflow files - Redesign to 4 core workflows: CI, Release, Documentation, Security - Simplify CI workflow: combine test/lint/build with proper error handling - Enhance Release workflow: add build verification and skip-ci support - Improve Documentation workflow: add PR builds and proper artifact handling - Add Security workflow: npm audit, CodeQL analysis, OSSF Scorecard - Pin all GitHub Actions to specific commit hashes for supply chain security - Apply enterprise-grade security hardening and least privilege permissions - Reduce workflow complexity from 14 files to 4 maintainable workflows BREAKING CHANGE: Legacy workflows removed - update any external dependencies
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| contents: write | ||
| pull-requests: write | ||
| id-token: write | ||
| packages: write |
Check failure
Code scanning / Scorecard
Token-Permissions High
|
|
||
| permissions: | ||
| contents: read | ||
| security-events: write |
Check failure
Code scanning / Scorecard
Token-Permissions High
✅ Release Quality Checklist
docs-site/blog/*release*.md)release:tagandrelease:syncflows tested