[TT-16950] fix: sync security hardening from release-5.12 (#7956)#8070
[TT-16950] fix: sync security hardening from release-5.12 (#7956)#8070buger merged 1 commit intorelease-5.12.1from
Conversation
Cherry-pick security hardening commit that was on release-5.12 but missing from release-5.12.1. Pins GitHub Actions, adds dep guard, fixes installs. release.yml conflicts resolved by keeping HEAD (release-5.12.1 already had pinned actions applied independently). Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
🚨 Jira Linter FailedCommit: The Jira linter failed to validate your PR. Please check the error details below: 🔍 Click to view error detailsNext Steps
This comment will be automatically deleted once the linter passes. |
|
This PR syncs security hardening changes from the Files Changed AnalysisThe changes are concentrated in GitHub Actions workflows ( Architecture & Impact Assessment
CI Workflow Enhancementgraph TD
subgraph "CI Workflow (e.g., ci-tests.yml)"
A[PR Trigger] --> B(dep-guard);
B --> C(lint);
B --> D(test);
C --> E(sonar-scan);
D --> E;
end
Scope Discovery & Context Expansion
Metadata
Powered by Visor from Probelabs Last updated: 2026-04-17T06:24:18.247Z | Triggered by: pr_opened | Commit: c07c32a 💡 TIP: You can chat with Visor using |
|
API Changes no api changes detected |
✅ Security Check PassedNo security issues found – changes LGTM. ✅ Security Check PassedNo security issues found – changes LGTM. \n\nArchitecture Issues (4)
Performance Issues (1)
Powered by Visor from Probelabs Last updated: 2026-04-17T06:23:53.595Z | Triggered by: pr_opened | Commit: c07c32a 💡 TIP: You can chat with Visor using |
Summary
Sync security hardening commit #7956 from release-5.12 to release-5.12.1.
Changes include:
Conflict resolution:
release.ymlhad 47 conflict blocks because release-5.12.1 already had actions pinned independently (with slightly different SHAs). Resolved by keeping the release-5.12.1 versions since they were already pinned. All other workflow and Taskfile changes applied cleanly.Test plan
🤖 Generated with Claude Code