Skip to content

Release v0.1.0 #94

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
seonghobae merged 84 commits into from
Mar 27, 2026
Merged

Release v0.1.0 #94

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
84 commits
Select commit Hold shift + click to select a range
011a3a4
chore(deps): bump actions/setup-node from 4.4.0 to 6.3.0
dependabot[bot] Mar 11, 2026
230a45d
chore(deps): bump astral-sh/setup-uv
dependabot[bot] Mar 11, 2026
a9b96fa
chore(deps): bump react and @types/react
dependabot[bot] Mar 11, 2026
fb42a06
chore(deps): bump actions/checkout from 4.3.1 to 6.0.2
dependabot[bot] Mar 11, 2026
d8fc0cf
chore(deps): bump actions/setup-python from 5.6.0 to 6.2.0
dependabot[bot] Mar 11, 2026
2b6e86a
chore(deps): bump actions/download-artifact from 4.3.0 to 8.0.0
dependabot[bot] Mar 11, 2026
2029ab6
chore(deps): bump react-dom and @types/react-dom
dependabot[bot] Mar 11, 2026
d9bfb0b
chore(deps): bump github/codeql-action from 3.32.6 to 4.32.6
dependabot[bot] Mar 11, 2026
6f1b5f0
chore(deps): bump actions/upload-artifact from 4.6.2 to 7.0.0
dependabot[bot] Mar 11, 2026
d3337e4
chore(deps-dev): bump @vitejs/plugin-react from 4.7.0 to 5.1.4
dependabot[bot] Mar 11, 2026
20cacc0
chore(deps-dev): bump jsdom from 26.1.0 to 28.1.0
dependabot[bot] Mar 11, 2026
7ca07bd
chore(deps-dev): bump @types/node from 22.19.15 to 25.4.0
dependabot[bot] Mar 11, 2026
c728c4c
chore(deps-dev): bump vite from 6.4.1 to 7.3.1
dependabot[bot] Mar 11, 2026
d9e5566
Merge remote-tracking branch 'origin/dependabot/github_actions/develo…
seonghobae Mar 11, 2026
3f49578
merge dependabot workflow action updates
seonghobae Mar 11, 2026
2c2241f
Merge remote-tracking branch 'origin/dependabot/github_actions/develo…
seonghobae Mar 11, 2026
bab2604
Merge remote-tracking branch 'origin/dependabot/github_actions/develo…
seonghobae Mar 11, 2026
e66ef87
merge CodeQL action refresh
seonghobae Mar 11, 2026
48c822f
Merge remote-tracking branch 'origin/dependabot/github_actions/develo…
seonghobae Mar 11, 2026
49dde0f
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/develop/…
seonghobae Mar 11, 2026
4d61e5f
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/develop/…
seonghobae Mar 11, 2026
9f402f0
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/develop/…
seonghobae Mar 11, 2026
e007768
Merge remote-tracking branch 'origin/dependabot/npm_and_yarn/develop/…
seonghobae Mar 11, 2026
7afe00b
chore: combine React 19 dependency updates
seonghobae Mar 11, 2026
e1b97a8
Merge pull request #21 from seonghobae/deps/consolidated-green
seonghobae Mar 11, 2026
1353385
chore(deps-dev): bump eslint from 9.39.4 to 10.0.3
dependabot[bot] Mar 11, 2026
f975295
chore(deps-dev): bump @vitest/coverage-v8 from 3.2.4 to 4.0.18
dependabot[bot] Mar 11, 2026
5a8b03e
chore(deps-dev): bump vitest from 3.2.4 to 4.0.18
dependabot[bot] Mar 11, 2026
070c2d7
chore: combine Vitest 4 dependency updates
seonghobae Mar 11, 2026
9a1b29f
chore: align ESLint 10 upgrade
seonghobae Mar 11, 2026
4127d5f
Merge pull request #23 from seonghobae/deps/vitest4-alignment
seonghobae Mar 11, 2026
b5c01dd
chore: rebase React 19 upgrade onto current develop
seonghobae Mar 11, 2026
1b1b891
chore: rebase ESLint 10 upgrade onto current develop
seonghobae Mar 11, 2026
77df413
Merge pull request #22 from seonghobae/deps/react19-alignment
seonghobae Mar 11, 2026
29a4999
chore: rebase ESLint 10 upgrade after React 19 merge
seonghobae Mar 11, 2026
3b4697c
fix: regenerate cross-platform package-lock
seonghobae Mar 11, 2026
d9e1609
Merge pull request #24 from seonghobae/deps/eslint10-alignment
seonghobae Mar 11, 2026
75dd827
docs: align TRD with rehearsal domain model
seonghobae Mar 11, 2026
c2cec73
docs: soften extraction certainty wording
seonghobae Mar 11, 2026
8537a2e
Merge pull request #25 from seonghobae/docs/trd-rehearsal-domain-alig…
seonghobae Mar 11, 2026
032852f
feat: add multi-arch desktop build baseline (#39)
seonghobae Mar 11, 2026
7d404d2
feat: add shared rehearsal contract baseline (#37)
seonghobae Mar 11, 2026
c28e363
chore: enforce python docstring coverage (#43)
seonghobae Mar 12, 2026
f60b4ef
feat: add local analysis orchestration (#53)
seonghobae Mar 12, 2026
895bdfc
docs: align required checks with stable gates (#54)
seonghobae Mar 12, 2026
fb2283c
feat: add local audio intake bootstrap (#55)
seonghobae Mar 12, 2026
1e40121
feat: add local audio intake bootstrap (#56)
seonghobae Mar 12, 2026
169f05a
feat: add local audio intake bootstrap (#57)
seonghobae Mar 12, 2026
a76c0b3
chore: patch npm audit vulnerabilities and restore canonical docs
seonghobae Mar 25, 2026
ce03bd4
fix(ci): document and scope pygments audit exception
seonghobae Mar 25, 2026
5ee437e
Merge pull request #81 from seonghobae/fix/security-audit-transitive-…
seonghobae Mar 25, 2026
41befa7
fix: include workflow files in secret scan gate (#60)
seonghobae Mar 25, 2026
b775538
chore(deps): bump github/codeql-action from 4.32.6 to 4.34.1 (#74)
dependabot[bot] Mar 25, 2026
141d5f1
chore(deps): bump actions/download-artifact from 8.0.0 to 8.0.1 (#61)
dependabot[bot] Mar 25, 2026
6e93f87
chore(deps): bump astral-sh/setup-uv from 5.4.2 to 7.6.0 (#62)
dependabot[bot] Mar 25, 2026
4f3fe0d
fix(ci): remove unverified Syft download in SBOM workflow (#58)
seonghobae Mar 25, 2026
30d84a3
fix: constrain analysis interpreter discovery to trusted roots (#59)
seonghobae Mar 25, 2026
01fa085
Add Trivy filesystem scan to GitHub Actions (#83)
Copilot Mar 25, 2026
9fb2537
feat: add OSSF Scorecard GitHub Actions workflow (#82)
Copilot Mar 25, 2026
1d1a35c
feat(deps): upgrade vite 8 + @vitejs/plugin-react 6 (combined) (#84)
seonghobae Mar 25, 2026
aa13d6d
fix(deps): bump vitest from 4.0.18 to 4.1.1 (#73)
dependabot[bot] Mar 25, 2026
5b4659d
chore(deps-dev): bump @types/node from 25.4.0 to 25.5.0 (#64)
dependabot[bot] Mar 25, 2026
3a9b74c
fix(deps): bump typescript-eslint to ^8.57.2 (#75)
dependabot[bot] Mar 25, 2026
31a0032
fix(deps): bump typescript to ^6.0.2 in apps/desktop and packages/sha…
dependabot[bot] Mar 25, 2026
5db5ae7
chore(deps-dev): bump jsdom from 28.1.0 to 29.0.1 (#78)
dependabot[bot] Mar 25, 2026
3cf5dd0
chore(deps-dev): bump @vitest/coverage-v8 from 4.0.18 to 4.1.1 in sha…
dependabot[bot] Mar 25, 2026
03f7c78
chore(deps-dev): bump eslint from 10.0.3 to 10.1.0 (#76)
dependabot[bot] Mar 25, 2026
6532a55
chore(deps): bump rfd from 0.15.4 to 0.17.2 (#63)
dependabot[bot] Mar 25, 2026
af6a731
feat: complete section extraction pipeline (#85)
seonghobae Mar 25, 2026
6dfad08
feat: implement role extraction target and part graph (closes #34) (#86)
seonghobae Mar 25, 2026
0fee4b6
feat: implement role-specific analysis for Issue 31 (#87)
seonghobae Mar 25, 2026
53601a9
feat: implement practical rehearsal workspace UI (Issue #28)
seonghobae Mar 26, 2026
60bee14
Merge pull request #88 from seonghobae/feat/issue-28-workspace-ui
seonghobae Mar 26, 2026
0fa55e2
feat: Add local project persistence and manual chord override
seonghobae Mar 26, 2026
fa9cea3
fix: address CodeRabbit review feedback for Issue #27
seonghobae Mar 26, 2026
c4bb6dc
fix: address CodeRabbit review feedback on save dialog and UI accessi…
seonghobae Mar 26, 2026
fca5fe8
test: restore 100% test coverage by removing unreachable early return
seonghobae Mar 26, 2026
bb562e2
fix: address PR review feedback on App.tsx and SectionRoadmap.tsx
seonghobae Mar 26, 2026
0ec2c65
chore: trigger CodeRabbit review
seonghobae Mar 26, 2026
56bb68d
Merge pull request #89 from seonghobae/feat/issue-27-manual-override-…
seonghobae Mar 26, 2026
51c63c0
feat: implement policy-constrained YouTube import (#30) (#90)
seonghobae Mar 26, 2026
aaa9be6
feat: implement rehearsal priority calculation and cue-sheet/chart ex…
seonghobae Mar 26, 2026
4f5e007
docs: finalize roadmap completion (#26) (#92)
seonghobae Mar 27, 2026
f85b513
chore: prepare v0.1.0 release
seonghobae Mar 27, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
266 changes: 233 additions & 33 deletions .github/workflows/build-baseline.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,100 +19,298 @@ permissions:
contents: read

jobs:
build-windows:
name: gate / build / windows
runs-on: windows-latest
build-windows-native:
name: build / windows / amd64
runs-on: windows-2025
strategy:
fail-fast: false
permissions:
contents: read
env:
BANDSCOPE_ARTIFACT_OS: windows
BANDSCOPE_ARTIFACT_ARCH: amd64
BANDSCOPE_TARGET_TRIPLE: x86_64-pc-windows-msvc
steps:
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
- uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
with:
node-version: 22
cache: npm
- uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5
- uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
with:
python-version: "3.12"
- uses: astral-sh/setup-uv@e58605a9b6da7c637471fab8847a5e5a6b8df081 # v5
- uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0
with:
version: "0.8.6"
- name: Install Rust stable
shell: bash
run: rustup toolchain install stable --profile minimal
- name: Add Windows target
run: rustup target add $env:BANDSCOPE_TARGET_TRIPLE --toolchain stable
- name: Verify Windows antivirus baseline
shell: pwsh
run: |
function Write-AntivirusEvidence($message) {
Write-Host $message
if ($env:GITHUB_STEP_SUMMARY) {
Add-Content -Path $env:GITHUB_STEP_SUMMARY -Value $message
}
}

if (Get-Command Get-MpComputerStatus -ErrorAction SilentlyContinue) {
$status = Get-MpComputerStatus
Write-AntivirusEvidence "Antivirus check: Defender status AntivirusEnabled=$($status.AntivirusEnabled) RealTimeProtectionEnabled=$($status.RealTimeProtectionEnabled)."
if ($status.AntivirusEnabled) {
return
}
Write-AntivirusEvidence "Antivirus check: Defender telemetry is present but antivirus is not reported as enabled on this hosted runner."
}

$products = Get-CimInstance -Namespace root/SecurityCenter2 -ClassName AntiVirusProduct -ErrorAction SilentlyContinue
if ($products) {
Write-AntivirusEvidence "Antivirus check: SecurityCenter2 reported at least one antivirus product."
return
}

$defenderService = Get-Service -Name WinDefend -ErrorAction SilentlyContinue
if ($defenderService -and $defenderService.Status -in @('Running', 'StartPending')) {
Write-AntivirusEvidence "Antivirus check: WinDefend service is present and active."
return
}

Write-AntivirusEvidence "Antivirus check: no explicit antivirus telemetry was available on this hosted runner."
- name: Install node dependencies
run: npm ci
- name: Sync Python dependencies
run: uv sync --project services/analysis-engine --group dev --frozen
- name: Build frontend
run: npm run build --workspace @bandscope/desktop
- name: Build native shell
run: cargo +stable build --manifest-path apps/desktop/src-tauri/Cargo.toml --release --locked
- name: Package Windows artifact
run: cargo +stable build --manifest-path apps/desktop/src-tauri/Cargo.toml --release --locked --target $env:BANDSCOPE_TARGET_TRIPLE
- name: Package Windows amd64 artifact
run: python scripts/release/package_desktop_artifact.py
- name: Upload Windows artifact
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4
- name: Upload Windows amd64 artifact
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
with:
name: bandscope-windows-${{ github.sha }}
name: bandscope-windows-amd64-${{ github.sha }}
path: |
artifacts/*.zip
artifacts/*.sha256
artifacts/*.manifest.txt
build-macos:
name: gate / build / macos
runs-on: macos-latest

build-windows-arm64:
name: build / windows / arm64
runs-on: windows-11-arm
strategy:
fail-fast: false
permissions:
contents: read
env:
BANDSCOPE_ARTIFACT_OS: windows
BANDSCOPE_ARTIFACT_ARCH: arm64
BANDSCOPE_TARGET_TRIPLE: aarch64-pc-windows-msvc
steps:
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
- uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
with:
node-version: 22
cache: npm
- uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5
- uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
with:
python-version: "3.12"
- uses: astral-sh/setup-uv@e58605a9b6da7c637471fab8847a5e5a6b8df081 # v5
- uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0
with:
version: "0.8.6"
- name: Install Rust stable
run: rustup toolchain install stable --profile minimal
- name: Add Windows arm target
run: rustup target add $env:BANDSCOPE_TARGET_TRIPLE --toolchain stable
- name: Verify Windows antivirus baseline
shell: pwsh
run: |
function Write-AntivirusEvidence($message) {
Write-Host $message
if ($env:GITHUB_STEP_SUMMARY) {
Add-Content -Path $env:GITHUB_STEP_SUMMARY -Value $message
}
}

if (Get-Command Get-MpComputerStatus -ErrorAction SilentlyContinue) {
$status = Get-MpComputerStatus
Write-AntivirusEvidence "Antivirus check: Defender status AntivirusEnabled=$($status.AntivirusEnabled) RealTimeProtectionEnabled=$($status.RealTimeProtectionEnabled)."
if ($status.AntivirusEnabled) {
return
}
Write-AntivirusEvidence "Antivirus check: Defender telemetry is present but antivirus is not reported as enabled on this hosted runner."
}

$products = Get-CimInstance -Namespace root/SecurityCenter2 -ClassName AntiVirusProduct -ErrorAction SilentlyContinue
if ($products) {
Write-AntivirusEvidence "Antivirus check: SecurityCenter2 reported at least one antivirus product."
return
}

$defenderService = Get-Service -Name WinDefend -ErrorAction SilentlyContinue
if ($defenderService -and $defenderService.Status -in @('Running', 'StartPending')) {
Write-AntivirusEvidence "Antivirus check: WinDefend service is present and active."
return
}

Write-AntivirusEvidence "Antivirus check: no explicit antivirus telemetry was available on this hosted runner."
- name: Install node dependencies
run: npm ci
- name: Sync Python dependencies
run: uv sync --project services/analysis-engine --group dev --frozen
- name: Build frontend
run: npm run build --workspace @bandscope/desktop
- name: Build native shell
run: cargo +stable build --manifest-path apps/desktop/src-tauri/Cargo.toml --release --locked
- name: Package macOS artifact
run: cargo +stable build --manifest-path apps/desktop/src-tauri/Cargo.toml --release --locked --target $env:BANDSCOPE_TARGET_TRIPLE
- name: Package Windows arm64 artifact
run: python scripts/release/package_desktop_artifact.py
- name: Upload Windows arm64 artifact
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
with:
name: bandscope-windows-arm64-${{ github.sha }}
path: |
artifacts/*.zip
artifacts/*.sha256
artifacts/*.manifest.txt

gate-windows:
name: gate / build / windows
runs-on: ubuntu-latest
needs:
- build-windows-native
- build-windows-arm64
steps:
- name: Confirm both Windows architectures built
run: true

build-macos-native:
name: build / macos / amd64
runs-on: macos-15-intel
strategy:
fail-fast: false
permissions:
contents: read
env:
BANDSCOPE_ARTIFACT_OS: macos
BANDSCOPE_ARTIFACT_ARCH: amd64
BANDSCOPE_TARGET_TRIPLE: x86_64-apple-darwin
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
with:
node-version: 22
cache: npm
- uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
with:
python-version: "3.12"
- uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0
with:
version: "0.8.6"
- name: Install Rust stable
run: rustup toolchain install stable --profile minimal
- name: Add macOS Intel target
run: rustup target add "$BANDSCOPE_TARGET_TRIPLE" --toolchain stable
- name: Install node dependencies
run: npm ci
- name: Sync Python dependencies
run: uv sync --project services/analysis-engine --group dev --frozen
- name: Build frontend
run: npm run build --workspace @bandscope/desktop
- name: Build native shell
run: cargo +stable build --manifest-path apps/desktop/src-tauri/Cargo.toml --release --locked --target "$BANDSCOPE_TARGET_TRIPLE"
- name: Package macOS amd64 artifact
run: python3 scripts/release/package_desktop_artifact.py
- name: Upload macOS amd64 artifact
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
with:
name: bandscope-macos-amd64-${{ github.sha }}
path: |
artifacts/*.zip
artifacts/*.sha256
artifacts/*.manifest.txt

build-macos-arm64:
name: build / macos / arm64
runs-on: macos-15
strategy:
fail-fast: false
permissions:
contents: read
env:
BANDSCOPE_ARTIFACT_OS: macos
BANDSCOPE_ARTIFACT_ARCH: arm64
BANDSCOPE_TARGET_TRIPLE: aarch64-apple-darwin
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
with:
node-version: 22
cache: npm
- uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
with:
python-version: "3.12"
- uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0
with:
version: "0.8.6"
- name: Install Rust stable
run: rustup toolchain install stable --profile minimal
- name: Add macOS arm target
run: rustup target add "$BANDSCOPE_TARGET_TRIPLE" --toolchain stable
- name: Install node dependencies
run: npm ci
- name: Sync Python dependencies
run: uv sync --project services/analysis-engine --group dev --frozen
- name: Build frontend
run: npm run build --workspace @bandscope/desktop
- name: Build native shell
run: cargo +stable build --manifest-path apps/desktop/src-tauri/Cargo.toml --release --locked --target "$BANDSCOPE_TARGET_TRIPLE"
- name: Package macOS arm64 artifact
run: python3 scripts/release/package_desktop_artifact.py
- name: Upload macOS artifact
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4
- name: Upload macOS arm64 artifact
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
with:
name: bandscope-macos-${{ github.sha }}
name: bandscope-macos-arm64-${{ github.sha }}
path: |
artifacts/*.zip
artifacts/*.sha256
artifacts/*.manifest.txt

gate-macos:
name: gate / build / macos
runs-on: ubuntu-latest
needs:
- build-macos-native
- build-macos-arm64
steps:
- name: Confirm both macOS architectures built
run: true

attach-windows-release-artifact:
name: release-artifact / windows
if: github.event_name == 'release'
runs-on: ubuntu-latest
needs:
- build-windows
- build-windows-native
- build-windows-arm64
permissions:
contents: write
steps:
- uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4
- uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
name: bandscope-windows-${{ github.sha }}
pattern: bandscope-windows-*-${{ github.sha }}
path: artifacts
- name: Attach Windows artifact to release
merge-multiple: true
- name: Attach Windows artifacts to release
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
RELEASE_TAG: ${{ github.event.release.tag_name }}
Expand All @@ -123,15 +321,17 @@ jobs:
if: github.event_name == 'release'
runs-on: ubuntu-latest
needs:
- build-macos
- build-macos-native
- build-macos-arm64
permissions:
contents: write
steps:
- uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4
- uses: actions/download-artifact@3e5f45b2cfb9172054b4087a40e8e0b5a5461e7c # v8.0.1
with:
name: bandscope-macos-${{ github.sha }}
pattern: bandscope-macos-*-${{ github.sha }}
path: artifacts
- name: Attach macOS artifact to release
merge-multiple: true
- name: Attach macOS artifacts to release
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
RELEASE_TAG: ${{ github.event.release.tag_name }}
Expand Down
10 changes: 5 additions & 5 deletions .github/workflows/ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,12 +15,12 @@ jobs:
name: ci / build-and-test
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
- uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
- uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
with:
node-version: 22
cache: npm
- uses: astral-sh/setup-uv@e58605a9b6da7c637471fab8847a5e5a6b8df081 # v5
- uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0
with:
version: "0.8.6"
- name: Install node dependencies
Expand All @@ -34,8 +34,8 @@ jobs:
name: gate / ci / rust-check
runs-on: macos-latest
steps:
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
- uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
- uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
with:
node-version: 22
cache: npm
Expand Down
8 changes: 4 additions & 4 deletions .github/workflows/codeql.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,9 +26,9 @@ jobs:
- javascript-typescript
- python
steps:
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
- uses: github/codeql-action/init@820e3160e279568db735cee8ed8f8e77a6da7818 # v3
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
- uses: github/codeql-action/init@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
with:
languages: ${{ matrix.language }}
- uses: github/codeql-action/autobuild@820e3160e279568db735cee8ed8f8e77a6da7818 # v3
- uses: github/codeql-action/analyze@820e3160e279568db735cee8ed8f8e77a6da7818 # v3
- uses: github/codeql-action/autobuild@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
- uses: github/codeql-action/analyze@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1
2 changes: 1 addition & 1 deletion .github/workflows/dependency-review.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ jobs:
name: dependency-review
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
persist-credentials: false
- uses: actions/dependency-review-action@2031cfc080254a8a887f58cffee85186f0e49e48 # v4.9.0
Expand Down
Loading
Loading