Apply changes from Codex patch #324
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: model-check | |
| on: | |
| push: | |
| branches: | |
| - main | |
| - feature/** | |
| pull_request: | |
| jobs: | |
| validate: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - uses: actions/setup-python@v5 | |
| with: | |
| python-version: "3.11" | |
| - name: Install deps | |
| run: | | |
| python -m pip install -U pip | |
| pip install -r requirements.txt | |
| - name: Train & evaluate (CI mode) | |
| run: | | |
| python scripts/train_eval.py --config policies/training.yaml --ci | |
| - name: Guard generalization | |
| run: | | |
| python scripts/guard_generalization.py | |
| - name: Static analysis (Semgrep) | |
| run: | | |
| python -m pip install semgrep | |
| semgrep --config auto | |
| - name: Generate SBOM | |
| run: | | |
| python -m pip install cyclonedx-bom | |
| python -m cyclonedx_py requirements requirements.txt --of JSON --output-file sbom.json |