mirror of
https://github.com/we-promise/sure.git
synced 2026-04-11 00:04:47 +00:00
48ae618316
* Update ruby-lsp-rails 0.4.6 → 0.4.8 and ruby-lsp 0.24.1 → 0.26.9 Relaxes the strict ruby-lsp dependency from (>= 0.24.0, < 0.25.0) to (>= 0.26.0, < 0.27.0). Also drops the no-longer-needed sorbet-runtime transitive dependency. https://claude.ai/code/session_01JeygD1gvjJ4eh9SmpW7xGf * Broad-ignore Pipelock check for now --------- Co-authored-by: Claude <noreply@anthropic.com>
31 lines
646 B
YAML
31 lines
646 B
YAML
name: Pipelock Security Scan
|
|
|
|
on:
|
|
pull_request:
|
|
branches: [main]
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
security-scan:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
with:
|
|
fetch-depth: 0
|
|
persist-credentials: false
|
|
|
|
- name: Pipelock Scan
|
|
uses: luckyPipewrench/pipelock@v2
|
|
with:
|
|
scan-diff: 'true'
|
|
fail-on-findings: 'true'
|
|
test-vectors: 'false'
|
|
exclude-paths: |
|
|
.env.example
|
|
compose.example.yml
|
|
compose.example.ai.yml
|
|
config/locales/views/reports/
|
|
docs/hosting/ai.md
|