Socket Basics SAST: add workflow and gitignore entries#3
Conversation
|
@copilot add sha pinning to the action in this PR to fix the failing auto-labeler ci failure |
|
|
@copilot setup sha pinning for the actions in this repo to fix the failing ci. |
Updated in commit eb944f3. I pinned the GitHub Actions references used by the repo workflows to full commit SHAs to satisfy the policy check.
Completed in commit eb944f3. I pinned the existing workflow action references in this repo to full-length SHAs to address the failing CI policy check. |
|
@copilot explain why the build and test J2V8 is failing ci? |
|
|
@copilot any way to fix the monolith download ci issue? |
Yes — fixed in |
|
@copilot I think you are unzipping to the wrong directory with your most recent "fix" |
I checked the latest failing run ( |
|
@copilot help me fix the failing builds now at the next step |
Fixed in |
|
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
|
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
The shared workflow (ynab/shared-actions#233) is gaining a required GH_YBOT_TOKEN secret (it now checks out shared-actions to run its helper actions from current main). `secrets: inherit` forwards the org secrets it needs today and means this file never needs touching when the shared workflow's secret needs change again. Safe to merge immediately: inherit also satisfies the current version of the shared workflow. Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
38cab82 to
3905645
Compare
Summary
.github/workflows/socket-basics.yml— calls the shared Socket Basics reusable workflow at@main.socket-scans/and.socket.facts.jsonto.gitignoreDependencies
Requires ynab/shared-actions#233 to be merged first.
Test plan
socket-basics-security-scanjob runs and posts a comment🤖 Generated with Claude Code