docs+manifest: record 2026-06-01 cleanup + tidy stale identity drift#98
Merged
Conversation
CHANGELOG.md gets an Unreleased § for PRs #93/#94/#96/#97 (dependabot bumps, baseline-red corrective maintenance, rsr-template gap fills, rust-ci-reusable SHA bump). A2ML manifests reconciled against current state: - .machine_readable/6a2/STATE.a2ml: bump last-updated 2026-04-12 → 2026-06-01; add [session-2026-06-01] block; refresh [next-priorities] with current ROADMAP.adoc items. - META.a2ml, ECOSYSTEM.a2ml, STATE.a2ml, CLADE.a2ml, ANCHOR.a2ml: identity field still said "panic-attacker" — pre-rename name. Renamed to "panic-attack" everywhere identity is asserted as a current claim. Historical references (CHANGELOG rename note, campaign records, audit reports) intentionally left untouched. - 0-AI-MANIFEST.a2ml: canonical-locations was claiming README.md and ROADMAP.md; actual files are README.adoc and ROADMAP.adoc. Added EXPLAINME.adoc entry. No behavioural change. All changes are metadata reconciliation.
🔍 Hypatia Security ScanFindings: 96 issues detected
View findings[
{
"reason": "Action uses: dtolnay/rust-toolchain@4be9e76fd7c4901c61fb841f5599 needs attention",
"type": "unpinned_action",
"file": "e2e.yml",
"action": "pin_sha",
"rule_module": "workflow_audit",
"severity": "medium"
},
{
"reason": "Action es: Swatinem/rust-cache@779680da715d629ac1d338a641029a2f4372abb needs attention",
"type": "unpinned_action",
"file": "e2e.yml",
"action": "pin_sha",
"rule_module": "workflow_audit",
"severity": "medium"
},
{
"reason": "Action perpolymath/standards/.github/workflows/governance-reusable.yml@main\n needs attention",
"type": "unpinned_action",
"file": "governance.yml",
"action": "pin_sha",
"rule_module": "workflow_audit",
"severity": "medium"
},
{
"reason": "Issue in boj-build.yml",
"type": "missing_timeout_minutes",
"file": "boj-build.yml",
"action": "flag",
"rule_module": "workflow_audit",
"severity": "medium"
},
{
"reason": "Issue in cargo-audit.yml",
"type": "missing_timeout_minutes",
"file": "cargo-audit.yml",
"action": "flag",
"rule_module": "workflow_audit",
"severity": "medium"
},
{
"reason": "Issue in casket-pages.yml",
"type": "missing_timeout_minutes",
"file": "casket-pages.yml",
"action": "flag",
"rule_module": "workflow_audit",
"severity": "medium"
},
{
"reason": "Issue in casket-pages.yml",
"type": "missing_timeout_minutes",
"file": "casket-pages.yml",
"action": "flag",
"rule_module": "workflow_audit",
"severity": "medium"
},
{
"reason": "Issue in chapel-ci.yml",
"type": "missing_timeout_minutes",
"file": "chapel-ci.yml",
"action": "flag",
"rule_module": "workflow_audit",
"severity": "medium"
},
{
"reason": "Issue in chapel-ci.yml",
"type": "missing_timeout_minutes",
"file": "chapel-ci.yml",
"action": "flag",
"rule_module": "workflow_audit",
"severity": "medium"
},
{
"reason": "Issue in chapel-ci.yml",
"type": "missing_timeout_minutes",
"file": "chapel-ci.yml",
"action": "flag",
"rule_module": "workflow_audit",
"severity": "medium"
}
]Powered by Hypatia Neurosymbolic CI/CD Intelligence |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
### Fixed (2026-06-01)+### Changed (2026-06-01)entries for PRs chore(deps): bump the rust-minor group with 2 updates #93/fix: clear 3 baseline-red required checks at source (Dogfood Gate A2ML / Governance Trusted-base / Secret Scanner rust-secrets) #94/fix: instantiate rsr-template placeholders left generic from scaffold (LICENSE/CoC/issue templates/SECURITY) #96/fix(ci): bump rust-ci-reusable SHA past standards#334 fix (recover rust-ci.yml from baseline-red) #97panic-attacker→panic-attackin identity-claim fields (STATE, META, ECOSYSTEM, CLADE, ANCHOR); historical references in CHANGELOG/audit/campaign records intentionally untouchedlast-updated2026-04-12 → 2026-06-01; new[session-2026-06-01]block; refreshed[next-priorities]against current ROADMAP.adocREADME.md→README.adoc,ROADMAP.md→ROADMAP.adoc(actual file extensions); added(explainme "EXPLAINME.adoc")entryTest plan