-
Notifications
You must be signed in to change notification settings - Fork 906
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Upgrade check-spelling to v0.0.21 #12249
Conversation
The failed commit 48424f8 has two complaints:
|
11459db
to
19999fb
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I could add comments, or we could try w/o. I'd kinda rather leave them present since it means that the workflow is more likely to work if someone decides to copy+paste it into a private repo (e.g. if there's a security release and someone wants to use CI to make sure things don't break).
5ee0e95
to
1dcf19d
Compare
1dcf19d
to
3d3254c
Compare
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Signed-off-by: Josh Soref <[email protected]>
Using check-spelling/spell-check-this@main check-spelling/spell-check-this@7adef91 --- Expect isn't being updated by this commit in order to enable the previous version of check-spelling to report it's happy before it rides off into the sunset. The next person to trigger an update to expect will have the chance to remove the stale items.
As we are no longer commenting, there will not be any confusion between the two comments, and thus there is no real benefit in skipping the check run for the push. At most a user will get two failed runs instead of one. Signed-off-by: Josh Soref <[email protected]>
At this point, most things do not care. The main change here will be that spell checking will not check a PR if there are conflicts
3d3254c
to
6bd3ae3
Compare
I rebased this. |
Short description
Upgrades to v0.0.21
https://github.com/check-spelling/check-spelling/security/advisories/GHSA-p8r9-69g4-jwqq
Permanently stubs
spelling2.yml
(asspelling.yml
is stubbed)Switches to using sarif reporting using security-events (the model for this is frustrating and almost argues for using a distinct task just as the comment-push job is distinct) for PRs
Introduces step summaries (which are longer than comments, but not quite as easy to see)
Allows users to talk to the bot in their own forks (it will walk them through the process)
candidate.patterns
automatically suggest entries forpatterns.txt
line_forbidden.patterns
flags patterns that shouldn't be usedact
should usually workFor more details, see the release notes for v0.0.20 and v0.0.21
Checklist
I have: