aaronrene / knowtation public
ci.yml yaml
57 lines 1.4 KB
Raw
sha256:65ccb454656ea5acdea0a10e559b78bcde1eb6ff753ecc2911bc99d1c3d7cadd feat(calendar): enforce agent context tiers in retrieval AP… Human minor ⚠ breaking 2 days ago
1 name: CI
2
3 on:
4 push:
5 branches: [main]
6 pull_request:
7 branches: [main]
8
9 jobs:
10 secret-scan:
11 name: Secret scanning (TruffleHog)
12 runs-on: ubuntu-latest
13 steps:
14 - uses: actions/checkout@v4
15 with:
16 fetch-depth: 0
17 - name: TruffleHog OSS
18 uses: trufflesecurity/trufflehog@main
19 with:
20 path: ./
21 base: ${{ github.event_name == 'pull_request' && github.event.pull_request.base.sha || github.event.before }}
22 head: ${{ github.event_name == 'pull_request' && github.event.pull_request.head.sha || github.sha }}
23 extra_args: --only-verified
24
25 test:
26 runs-on: ubuntu-latest
27
28 strategy:
29 matrix:
30 node-version: [20]
31
32 steps:
33 - uses: actions/checkout@v4
34
35 - name: Use Node.js ${{ matrix.node-version }}
36 uses: actions/setup-node@v4
37 with:
38 node-version: ${{ matrix.node-version }}
39 cache: npm
40
41 - name: Install dependencies
42 run: |
43 npm ci
44 cd hub/gateway && npm ci
45 cd ../bridge && npm ci
46
47 - name: Audit dependencies — fail on high/critical CVEs
48 run: |
49 npm audit --audit-level=high --omit=dev
50 (cd hub/gateway && npm audit --audit-level=high --omit=dev)
51 (cd hub/bridge && npm audit --audit-level=high --omit=dev)
52
53 - name: Hosted MCP schema guard
54 run: npm run check:mcp-hosted-schema
55
56 - name: Run tests
57 run: npm test
File History 2 commits
sha256:65ccb454656ea5acdea0a10e559b78bcde1eb6ff753ecc2911bc99d1c3d7cadd feat(calendar): enforce agent context tiers in retrieval AP… Human minor 2 days ago
sha256:9103f98c89257ed2b01c237cea895dabb3e85ea337dccb1161c175e4422355b6 docs: accept Calendar Events v0 spec with Phase 0 security … Human 2 days ago