aether/gosick
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
690 Commits 1 Branch 32 Tags
7405044fb51dcca31849cc1187ce4a806a8e2e66
Commit Graph

690 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Micheal Wilkinson
7405044fb5 chore(go): annotate intentional command execution for gosec 2026-03-21 20:58:17 +00:00
Micheal Wilkinson
4fc9401741 docs: update changelog for core error wrapping
Some checks failed
Push Validation / validate (push) Failing after 1m31s
Details
Pull Request Validation / validate (pull_request) Failing after 1m53s
Details
2026-03-21 20:52:13 +00:00
Micheal Wilkinson
c793925828 chore(go): wrap core filesystem errors with context 2026-03-21 20:52:13 +00:00
Micheal Wilkinson
bc0a6747b8 docs: update changelog for parity fixes 2026-03-21 20:45:05 +00:00
Micheal Wilkinson
d642870a66 chore(go): inject stdin and pass rc force explicitly 2026-03-21 20:45:05 +00:00
Micheal Wilkinson
038b109e7b ci: align govulncheck action inputs with workflow standard 2026-03-21 20:45:05 +00:00
Micheal Wilkinson
519c6703d2 docs: update changelog for vociferate v1.1.0 bump 2026-03-21 20:18:25 +00:00
Micheal Wilkinson
8a3fde8e07 ci: bump vociferate prepare and publish to v1.1.0 2026-03-21 20:18:25 +00:00
Micheal Wilkinson
3fa377efe2 docs: update changelog for CI security hardening and badge URL fix 2026-03-21 20:16:24 +00:00
Micheal Wilkinson
02eebb02fe docs: fix badge link target to use actions/runs/latest per workflow standards 2026-03-21 20:15:30 +00:00
Micheal Wilkinson
dd1d802605 ci: replace gosec action with direct invocation, pin govulncheck to v1.0.4 
Per security scanning requirements in project instructions:
- Replace securego/gosec@v2.22.3 action with go install + gosec run step
  in both push-validation and pr-validation to avoid compatibility issues
  with Go 1.26.1
- Pin golang/govulncheck-action from @v1 to @v1.0.4 in both workflows;
  major-version tags do not resolve reliably in Gitea API
- Move GOTOOLCHAIN=auto from per-step env to job-level env in both workflows
- Bump coverage-badge in push-validation from v1.0.1 to v1.1.0
 2026-03-21 20:15:08 +00:00
Micheal Wilkinson
a65f62ea9d docs: update changelog for coverage test improvements and vociferate PR gate migration 2026-03-21 20:13:58 +00:00
Micheal Wilkinson
014b330931 ci(pr-validation): replace manual badge/gate logic with vociferate actions 
- Remove manual changelog validation shell script
- Remove AWS CLI install and jq tooling steps
- Remove hand-rolled SVG badge generation, S3 upload, and PR comment steps
- Replace with coverage-badge@v1.1.0 for coverage artefact upload
- Replace with decorate-pr@v1.1.0 for PR comment and changelog gate
  (enable-changelog-gate: true, changelog-gate-mode: strict)
- Retain per-package coverage gate awk logic (Aether threshold enforcement)
 2026-03-21 20:13:40 +00:00
Micheal Wilkinson
5b37057b61 test(coverage): add targeted tests to raise per-package coverage gates 
- internal/homesick/version: new version_test.go covers String constant
  and semver format validation
- internal/homesick/cli: add list, generate, clone, status, diff, and
  git-repo helper tests; coverage raised from 62.5% to 71.2%
- internal/homesick/core: new helpers_test.go covers runGit pretend,
  actionVerb, sayStatus, unlinkPath, linkPath, readSubdirs,
  matchesIgnoredDir, confirmDestroy, ExecAll edge cases, and
  Link/Unlink default castle wrappers; core_test.go and pull_test.go
  extended with New constructor and PullAll quiet-mode tests;
  exec_test.go extended with ExecAll no-repos-dir and error-wrap tests;
  coverage raised from 75.6% to 80.2%
 2026-03-21 20:13:31 +00:00
Micheal Wilkinson
4b54a45a76 docs: note scanner toolchain compatibility fix
All checks were successful
Push Validation / validate (push) Successful in 3m29s
Details
2026-03-21 13:54:11 +00:00
Micheal Wilkinson
eb63da9354 chore(ci): allow scanner actions to auto-select Go toolchain 2026-03-21 13:54:11 +00:00
Micheal Wilkinson
494eea998d docs: record gofmt remediation for core tests
Some checks failed
Push Validation / validate (push) Failing after 1m40s
Details
2026-03-21 13:49:18 +00:00
Micheal Wilkinson
15f05a1999 chore(go): run go fmt on core test files 2026-03-21 13:49:14 +00:00
Micheal Wilkinson
a01a2171ff docs: correct gosec action reference in changelog
Some checks failed
Push Validation / validate (push) Failing after 1m32s
Details
2026-03-21 13:37:41 +00:00
Micheal Wilkinson
f134361b6e docs: note gitea gosec action source fix 2026-03-21 13:34:46 +00:00
Micheal Wilkinson
ecda12fc49 chore(ci): fix gosec action source for gitea runners 2026-03-21 13:34:37 +00:00
Micheal Wilkinson
be14cfdc29 chore(ci): include go bin directory in cache for cli tools
Some checks failed
Push Validation / validate (push) Failing after 10s
Details
2026-03-21 13:23:16 +00:00
Micheal Wilkinson
302acbe9bb docs: document ci marketplace actions and formatting check 2026-03-21 13:22:34 +00:00
Micheal Wilkinson
3cc90ff54e chore(ci): replace manual security tools with marketplace actions and add go fmt check 
- Replace `go install` of gosec/govulncheck with secureCodeBox/gosec-action and golang/govulncheck-action
- Actions handle their own caching; remove explicit security tools cache step
- Add code formatting check using `go fmt ./...` to reject pushes/PRs with incorrect formatting
- Formatting check runs before security scanning for faster feedback
 2026-03-21 13:22:25 +00:00
Micheal Wilkinson
c36b738240 docs: document dependency security updates 2026-03-21 13:15:12 +00:00
Micheal Wilkinson
2cf5851231 chore(deps): update vulnerable dependencies to patched versions 
- cloudflare/circl v1.6.0 → v1.6.3 (fixes GO-2026-4550, GO-2025-3754)
- go-git/go-git/v5 v5.14.0 → v5.17.0 (fixes GO-2026-4473)
- golang.org/x/crypto v0.35.0 → v0.49.0 (fixes GO-2025-4116)
- golang.org/x/net v0.35.0 → v0.52.0 (fixes GO-2025-3503)
 2026-03-21 13:15:04 +00:00
Micheal Wilkinson
4cfda23187 docs: document ci caching improvements 2026-03-21 13:13:43 +00:00
Micheal Wilkinson
fb4b3f7ed1 chore(ci): add explicit go modules cache to validation workflows 2026-03-21 13:12:42 +00:00
Micheal Wilkinson
a92ab1a29c docs: document security hardening improvements
Some checks failed
Push Validation / validate (push) Failing after 3m49s
Details
2026-03-21 13:08:24 +00:00
Micheal Wilkinson
0d3c9b5214 chore(security): resolve gosec findings with permission fixes and #nosec suppressions
Some checks failed
Push Validation / validate (push) Has been cancelled
Details
2026-03-21 13:05:08 +00:00
Micheal Wilkinson
106e45d16b chore(ci): cache security tool binaries in validation workflows 2026-03-21 12:52:34 +00:00
Micheal Wilkinson
332de3a3f6 chore(go): prepare ci runtime for rc and commit tests
Some checks failed
Push Validation / validate (push) Failing after 3m6s
Details
2026-03-21 12:18:35 +00:00
Micheal Wilkinson
19c9e5485b chore(go): tidy module metadata
Some checks failed
Push Validation / validate (push) Failing after 3m0s
Details
2026-03-21 12:02:52 +00:00
Micheal Wilkinson
fc9a30fed1 chore(go): use explicit self-hosted action urls
Some checks failed
Push Validation / validate (push) Failing after 43s
Details
2026-03-21 11:52:50 +00:00
Micheal Wilkinson
b235c6ca45 chore(go): wire coverage-badge action inputs
Some checks failed
Push Validation / validate (push) Failing after 10s
Details
2026-03-21 11:31:52 +00:00
Micheal Wilkinson
5ecbad8f27 chore(go): keep changelog filename compatibility 2026-03-21 11:24:24 +00:00
Micheal Wilkinson
ef554dde2d docs: rename changelog file 2026-03-21 11:21:56 +00:00
Micheal Wilkinson
55867df599 docs: align changelog with current workflows 2026-03-21 11:20:23 +00:00
Micheal Wilkinson
cd92a961bd chore(go): harden ci process workflows 2026-03-21 11:20:09 +00:00
Micheal Wilkinson
7bc7ee4746 chore(go): validate core constructor dependencies 2026-03-21 11:18:45 +00:00
Micheal Wilkinson
8a6a21811a chore(go): add failing core constructor tests 2026-03-21 11:18:10 +00:00
Micheal Wilkinson
001983b76e docs: document coverage gate enforcement 2026-03-21 11:14:43 +00:00
Micheal Wilkinson
ad5196420e chore(go): enforce package coverage gates 2026-03-21 11:14:40 +00:00
Micheal Wilkinson
692e205a63 update vociferate version 2026-03-21 11:11:32 +00:00
Micheal Wilkinson
ca3215f2c4 docs: document vociferate release migration 2026-03-21 11:09:40 +00:00
Micheal Wilkinson
0112d9a0a6 chore(go): replace releaseprep with vociferate flows 2026-03-21 11:09:36 +00:00
Micheal Wilkinson
e68575f15a docs: fix main validation badge link 2026-03-21 11:07:35 +00:00
Micheal Wilkinson
ce1d253814 docs(changelog): record behavior suite parity fixes 2026-03-21 10:58:41 +00:00
Micheal Wilkinson
8f51cf368a refactor(core): extract destroy confirmation response helper 2026-03-21 10:58:34 +00:00
Micheal Wilkinson
d73049baa4 fix(parity): restore updated behavior suite compatibility 2026-03-21 10:58:15 +00:00