Skip to content

Inline security scan workflow for public repo#10

Merged
rlmelvin merged 1 commit into
mainfrom
fix/inline-security-scan
May 5, 2026
Merged

Inline security scan workflow for public repo#10
rlmelvin merged 1 commit into
mainfrom
fix/inline-security-scan

Conversation

@rlmelvin

@rlmelvin rlmelvin commented May 5, 2026

Copy link
Copy Markdown
Contributor

Summary

  • Public repos cannot call reusable workflows from internal repos (GitHub restriction)
  • Inlines the security scan from ai_web_interface's reusable workflow directly into this repo
  • Identical scan steps: dependency audit (uv), Bandit SAST, Trivy container scan

Test plan

  • Verify all three scan jobs run successfully on this PR

🤖 Generated with Claude Code

@rlmelvin rlmelvin merged commit d344bf7 into main May 5, 2026
3 checks passed
@rlmelvin rlmelvin deleted the fix/inline-security-scan branch May 5, 2026 23:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant