Skip to content

v0.37.0

Choose a tag to compare

View all tags
@zr9959 zr9959 released this 25 May 10:30
· 39 commits to main since this release
v0.37.0
e294307
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Summary

  • Adds a copy-paste GitHub Actions PR launch gate workflow that writes markdown to GITHUB_STEP_SUMMARY and uploads SARIF.
  • Updates README and Chinese README so the first screen points AI-heavy PRs toward the reviewer queue path.
  • Improves hosted Check Run wording around the launch-risk middle layer while keeping the boundary clear: not an AI reviewer, pentest, full audit, or certification.

Verification

  • npm audit --audit-level=high --registry=https://registry.npmjs.org
  • npm test
  • GOPROXY=https://goproxy.cn,direct go run github.com/rhysd/actionlint/cmd/actionlint@latest
  • uvx zizmor .github/workflows
  • npm pack --dry-run
  • node dist/cli.js scan --root . --summary
  • node dist/cli.js pr-risk --root . --markdown
Assets 5
Loading