From 8886cc0be68a340d248c48d19ad6d4a164fa6df5 Mon Sep 17 00:00:00 2001 From: Alexander Amiri Date: Sat, 14 Mar 2026 01:13:39 +0100 Subject: [PATCH] Show override values as fields in Slack alert instead of CLI command The HIGH risk Slack message now shows plan_key, repository, and run_id as separate fields so they can be copied into the workflow dispatch form. --- scripts/notify-high-risk.sh | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/scripts/notify-high-risk.sh b/scripts/notify-high-risk.sh index ab33e38..2a1379d 100644 --- a/scripts/notify-high-risk.sh +++ b/scripts/notify-high-risk.sh @@ -64,12 +64,8 @@ if [ -n "$FINDINGS_TEXT" ]; then FINDINGS_BLOCK=",{\"type\":\"section\",\"text\":{\"type\":\"mrkdwn\",\"text\":\"*Findings*\n${ESCAPED_FINDINGS}\"}}" fi -# Build override command — user can copy-paste this to approve -OVERRIDE_CMD="gh workflow run approve-override.yml --repo ${REPO} -f plan_key=${PLAN_KEY} -f repo=${REPO} -f run_id=${RUN_ID} -f reason=\\\"Override approved\\\"" - ESCAPED_SUMMARY=$(echo "$SUMMARY" | python3 -c "import sys,json; print(json.dumps(sys.stdin.read().strip())[1:-1])") ESCAPED_SOURCE=$(echo "$SOURCE_LINE" | python3 -c "import sys,json; print(json.dumps(sys.stdin.read().strip())[1:-1])") -ESCAPED_CMD=$(echo "$OVERRIDE_CMD" | python3 -c "import sys,json; print(json.dumps(sys.stdin.read().strip())[1:-1])") PAYLOAD=$(cat <