Avoid fallback download of artifacts when not on develop

[maurelian]

This is a cherry pick onto the v6 proposal branch of #18788.

Summary

Avoids the fallback download of artifacts when not on develop.

This is achieved by refactoring the get-target-branch logic from CircleCI config into a reusable script that can be sourced by the use-latest-fallback script

Changes

• Created scripts/ops/get-target-branch.sh containing the target branch detection logic
• Updated scripts/ops/use-latest-fallback.sh to source the new script
• Updated scripts/checks/check-semver-diff.sh to source the new script
• Updated .circleci/config.yml to use the new script

Benefits

• Scripts are now self-contained and determine TARGET_BRANCH themselves
• Can be tested locally without CircleCI environment variables
• Single source of truth for target branch logic
• Less duplication in CircleCI config

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 68.59%. Comparing base (018f5ae) to head (b2e704b).
⚠️ Report is 2 commits behind head on proposal/op-contracts/v6.0.0.

Additional details and impacted files

@@                       Coverage Diff                        @@
##           proposal/op-contracts/v6.0.0   #18785      +/-   ##
================================================================
- Coverage                         71.34%   68.59%   -2.76%     
================================================================
  Files                               185      185              
  Lines                             10914    10914              
================================================================
- Hits                               7787     7486     -301     
- Misses                             2983     3284     +301     
  Partials                            144      144              

Flag	Coverage Δ
cannon-go-tests-64	66.58% <ø> (ø)
contracts-bedrock-tests	69.76% <ø> (-4.38%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.
see 9 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[almanax-ai]

Denial of Service (DoS): CI script fails artifact pull in use-latest-fallback.sh

use-latest-fallback.sh contains a stray j before the bash invocation, which will trigger command not found and (due to set -euo pipefail) abort the script, preventing artifact pulling and potentially failing the entire CI job.

Remove the stray j and ensure the fallback path executes bash scripts/ops/pull-artifacts.sh --fallback-to-latest as intended.

Suggested change

	if [ "$USE_FALLBACK" = "true" ]; then
	bash scripts/ops/pull-artifacts.sh --fallback-to-latest
	j bash scripts/ops/pull-artifacts.sh --fallback-to-latest
	else
	bash scripts/ops/pull-artifacts.sh
	if [ "$USE_FALLBACK" = "true" ]; then
	bash scripts/ops/pull-artifacts.sh --fallback-to-latest
	else
	bash scripts/ops/pull-artifacts.sh

---

Don't like this finding? Reply "dismiss" and it won't appear again in future scans.

If it's acknowledged or addressed, reply "resolve" to mark it resolved.