Skip to content

Add shared CI and security baseline#1

Merged
dejaguarkyng merged 1 commit into
mainfrom
codex/ci-security-baseline
Jun 1, 2026
Merged

Add shared CI and security baseline#1
dejaguarkyng merged 1 commit into
mainfrom
codex/ci-security-baseline

Conversation

@dejaguarkyng
Copy link
Copy Markdown
Contributor

@dejaguarkyng dejaguarkyng commented Jun 1, 2026

Summary

  • add reusable Node and static PR CI workflows
  • add workflow templates, Dependabot for Actions, supported default issue/PR template locations, SUPPORT, and a CI/CD roadmap
  • tighten contribution and security reporting guidance

Validation

  • git diff --check
  • python3 -m json.tool workflow-templates/node-pr-ci.properties.json
  • python3 -m json.tool workflow-templates/static-pr-ci.properties.json
  • ruby YAML parse for issue templates, Dependabot, reusable workflows, PR CI, and workflow templates

Security

  • PR CI uses least-privilege contents: read permissions
  • no secrets are passed to workflows
  • external actions are pinned to full commit SHAs
  • no deployment or publishing workflow is introduced

@dejaguarkyng dejaguarkyng merged commit b7d9082 into main Jun 1, 2026
1 check passed
@dejaguarkyng dejaguarkyng deleted the codex/ci-security-baseline branch June 1, 2026 17:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dejaguarkyng