claude-skills-reference

firefrost-gaming/claude-skills-reference

Fork 0

Commit Graph

Author	SHA1	Message	Date
Claude	ed2419b8e1	fix(ci): handle fork PRs in GitHub Actions workflows Fork-based PRs (like PR #498) caused all CI checks to fail due to: - ci-quality-gate: checkout failed because fork branch names don't exist in the base repo. Now uses commit SHA for PR events. - skill-security-audit: comment posting failed with read-only GITHUB_TOKEN. Now continues on error and writes results to job summary as fallback. - claude-code-review: fallback comment step failed silently. Now continues on error and writes status to job summary. https://claude.ai/code/session_01X1RKFAkEwxgg6gQvJG1KCa	2026-04-08 21:56:45 +00:00
voidborne-d	ad727f1864	fix: address review — fail on unknown/error verdicts, capture exit code, add engineering-team paths - catch-all () in verdict case now sets OVERALL_EXIT=1 so auditor crashes/errors block merge instead of silently passing - replace '\|\| true' with '&& EXIT_CODE=$? \|\| EXIT_CODE=$?' to correctly capture auditor exit code - add 'engineering-team/*' to workflow trigger paths (38 skills)	2026-03-10 11:06:19 +00:00
voidborne-d	cc3dfc877a	ci: add skill security audit workflow for PR checks Integrates skill-security-auditor as automated CI check per #241: - Detects which skill directories changed in the PR (diff-based) - Runs skill_security_auditor.py --strict --json on each changed skill - Posts findings as a formatted PR comment with severity breakdown - Blocks merge on FAIL verdict (critical findings) - Skips non-skill paths (.github, docs, scripts, etc.) - Updates existing comment on re-push (no comment spam) - Concurrency grouping prevents parallel runs on same PR	2026-03-10 06:06:58 +00:00

Author

SHA1

Message

Date

Claude

ed2419b8e1

fix(ci): handle fork PRs in GitHub Actions workflows

Fork-based PRs (like PR #498) caused all CI checks to fail due to:
- ci-quality-gate: checkout failed because fork branch names don't exist
  in the base repo. Now uses commit SHA for PR events.
- skill-security-audit: comment posting failed with read-only GITHUB_TOKEN.
  Now continues on error and writes results to job summary as fallback.
- claude-code-review: fallback comment step failed silently. Now continues
  on error and writes status to job summary.

https://claude.ai/code/session_01X1RKFAkEwxgg6gQvJG1KCa

2026-04-08 21:56:45 +00:00

voidborne-d

ad727f1864

fix: address review — fail on unknown/error verdicts, capture exit code, add engineering-team paths

- catch-all (*) in verdict case now sets OVERALL_EXIT=1 so auditor
  crashes/errors block merge instead of silently passing
- replace '|| true' with '&& EXIT_CODE=$? || EXIT_CODE=$?' to
  correctly capture auditor exit code
- add 'engineering-team/**' to workflow trigger paths (38 skills)

2026-03-10 11:06:19 +00:00

voidborne-d

cc3dfc877a

ci: add skill security audit workflow for PR checks

Integrates skill-security-auditor as automated CI check per #241:
- Detects which skill directories changed in the PR (diff-based)
- Runs skill_security_auditor.py --strict --json on each changed skill
- Posts findings as a formatted PR comment with severity breakdown
- Blocks merge on FAIL verdict (critical findings)
- Skips non-skill paths (.github, docs, scripts, etc.)
- Updates existing comment on re-push (no comment spam)
- Concurrency grouping prevents parallel runs on same PR

2026-03-10 06:06:58 +00:00

3 Commits