Skip to content

fix(action): harden execution contract and summaries#1203

Merged
msaad00 merged 1 commit intomainfrom
fix/action-surface-hardening
Apr 3, 2026
Merged

fix(action): harden execution contract and summaries#1203
msaad00 merged 1 commit intomainfrom
fix/action-surface-hardening

Conversation

@msaad00
Copy link
Copy Markdown
Owner

@msaad00 msaad00 commented Apr 3, 2026

Summary

  • replace shell-built action args with safe argv execution
  • add pip caching and step summary output to the composite action
  • expose explicit scan-status output and lock the contract with tests

Testing

  • UV_CACHE_DIR=/tmp/agent-bom-uv-cache uv run pytest -q tests/test_ai_enrich.py -k action_yml

@msaad00 msaad00 force-pushed the fix/action-surface-hardening branch from f38c440 to f9e7dd6 Compare April 3, 2026 21:36
@msaad00 msaad00 marked this pull request as ready for review April 3, 2026 21:37
@msaad00 msaad00 requested a review from andres-linero as a code owner April 3, 2026 21:37
@msaad00 msaad00 enabled auto-merge (squash) April 3, 2026 21:37
@msaad00 msaad00 merged commit 5b7968a into main Apr 3, 2026
20 checks passed
@msaad00 msaad00 deleted the fix/action-surface-hardening branch April 3, 2026 21:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@andres-linero andres-linero andres-linero approved these changes

@agent-bom agent-bom agent-bom approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@msaad00 @andres-linero @agent-bom