Skip to content

chore(governance): remove non-functional .hypatia-baseline.json trigger#449

Merged
hyperpolymath merged 1 commit into
mainfrom
fix/disable-nonfunctional-baseline-gate
Jul 1, 2026
Merged

chore(governance): remove non-functional .hypatia-baseline.json trigger#449
hyperpolymath merged 1 commit into
mainfrom
fix/disable-nonfunctional-baseline-gate

Conversation

@hyperpolymath

Copy link
Copy Markdown
Owner

The validate-hypatia-baseline job in governance-reusable.yml never reads .hypatia-baseline.json's content — it just fails on any raw hypatia scan finding with severity >= medium, full stop. The file's only functional effect is to flip the job's has_baseline trigger on via [ -f .hypatia-baseline.json ]. Ours was empty ([]) so it was providing zero exemption value while permanently failing main (confirmed: last 5+ Governance runs on main, back to 2026-06-27, all failed here) and blocking PR #448.

Removing it unblocks PRs here now. This is a narrow, standards-repo-scoped fix — it does not touch governance-reusable.yml itself, which is shared estate-wide and has the same bug for every repo that carries a real (non-empty) .hypatia-baseline.json. Tracking issue for the proper estate-wide fix: (linking after filing).

Left un-armed for auto-merge for a quick look, since it touches a security-scan gate even though it's currently non-functional.

The 'Validate Hypatia Baseline' job in governance-reusable.yml never
actually reads this file's content to filter findings -- it fails on
ANY raw hypatia-scan finding, full stop. The file's presence only
flips the job's has_baseline trigger on, so keeping an empty/inert
baseline here just forces a permanently-failing gate with no
diagnostic value.

Removing it unblocks PRs (incl. #448) until the underlying gate is
fixed properly -- see the tracking issue for the estate-wide version
of this bug (affects 15 repos with a populated .hypatia-baseline.json
whose content is silently never consulted).
@sonarqubecloud

sonarqubecloud Bot commented Jul 1, 2026

Copy link
Copy Markdown

@hyperpolymath hyperpolymath enabled auto-merge (squash) July 1, 2026 10:33
@hyperpolymath hyperpolymath disabled auto-merge July 1, 2026 10:57
@hyperpolymath hyperpolymath enabled auto-merge (squash) July 1, 2026 10:57
@hyperpolymath hyperpolymath disabled auto-merge July 1, 2026 10:57
@hyperpolymath hyperpolymath enabled auto-merge (rebase) July 1, 2026 10:57
@hyperpolymath hyperpolymath disabled auto-merge July 1, 2026 11:06
@hyperpolymath hyperpolymath merged commit 0af46f7 into main Jul 1, 2026
19 checks passed
@hyperpolymath hyperpolymath deleted the fix/disable-nonfunctional-baseline-gate branch July 1, 2026 11:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant