matter-labs
diff --git a/‎.github/workflows/ci-release-please.yaml‎ ‎…thub/tmp_disabled/ci-release-please.yaml‎.github/workflows/ci-release-please.yaml renamed to .github/tmp_disabled/ci-release-please.yaml b/‎.github/workflows/ci-release-please.yaml‎ ‎…thub/tmp_disabled/ci-release-please.yaml‎.github/workflows/ci-release-please.yaml renamed to .github/tmp_disabled/ci-release-please.yaml
diff --git a/‎.github/workflows/ci-release.yaml‎ ‎.github/tmp_disabled/ci-release.yaml‎.github/workflows/ci-release.yaml renamed to .github/tmp_disabled/ci-release.yaml b/‎.github/workflows/ci-release.yaml‎ ‎.github/tmp_disabled/ci-release.yaml‎.github/workflows/ci-release.yaml renamed to .github/tmp_disabled/ci-release.yaml
diff --git a/‎.github/workflows/secrets_scanner.yaml‎ ‎.github/tmp_disabled/secrets_scanner.yaml‎.github/workflows/secrets_scanner.yaml renamed to .github/tmp_disabled/secrets_scanner.yaml
Lines changed: 3 additions & 5 deletions b/‎.github/workflows/secrets_scanner.yaml‎ ‎.github/tmp_disabled/secrets_scanner.yaml‎.github/workflows/secrets_scanner.yaml renamed to .github/tmp_disabled/secrets_scanner.yaml
Lines changed: 3 additions & 5 deletions
diff --git a/‎.github/workflows/ci-check.yaml‎
Lines changed: 63 additions & 57 deletions b/‎.github/workflows/ci-check.yaml‎
Lines changed: 63 additions & 57 deletions
@@ -1,17 +1,15 @@
 name: Leaked Secrets Scan
-on:
-  pull_request:
-  merge_group:
+on: [pull_request]
 jobs:
   TruffleHog:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout code
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
         with:
           fetch-depth: 0
       - name: TruffleHog OSS
-        uses: trufflesecurity/trufflehog@a94d152bf65bebf5baa486d3d4dfee520af2ceed # v3.88.2
+        uses: trufflesecurity/trufflehog@05cccb53bc9e13bc6d17997db5a6bcc3df44bf2f # v3.92.3
         with:
           path: ./
           base: ${{ github.event.repository.default_branch }}
 
@@ -20,61 +20,67 @@ jobs:
     steps:
       - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
 
-      - name: Install Rust toolchain
-        uses: moonrepo/setup-rust@ede6de059f8046a5e236c94046823e2af11ca670 # v1.2.2
-        with:
-          inherit-toolchain: true
-
-      - uses: taiki-e/install-action@3522286d40783523f9c7880e33f785905b4c20d0 # v2.66.1
-        with:
-          tool: wasm-pack
-
-      - name: Setup Node.js
-        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
-        with:
-          node-version: '22'
-
-      - uses: mskelton/setup-yarn@8d0bc12bc7f72a9acfc32019da0381dfcb481df0 # v3.0.0
-
-      - name: Install deps
-        run: yarn install
-
-      - name: Build
-        run: yarn build
-
-  license-check:
-    name: license-check 📜
-    runs-on: ubuntu-latest
-    defaults:
-      run:
-        working-directory: ./proof_verifier_js/ts
-
-    steps:
-      - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
-
-      - name: Setup Node.js
-        uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
-        with:
-          node-version: '22'
-
-      - name: Install license-checker
-        run: npm install -g license-checker
-
-      - name: Run license checker
+      - name: Check
+        env:
+          GITHUB_TOKEN: ${{ secrets.RELEASE_TOKEN }}
         run: |
-          license-checker --production \
-            --onlyAllow "MIT;Apache-2.0" \
-            --summary
-
-  # Special job that allows some of the jobs to be skipped or failed
-  # requiring others to be successful
-  pr-checks:
-    runs-on: ubuntu-latest
-    if: always()
-    needs:
-      - general-checks
-    steps:
-      - name: Decide on PR checks
-        uses: re-actors/alls-green@05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe # v1.2.2
-        with:
-          jobs: ${{ toJSON(needs) }}
+          gh release create v1.2.3 --notes "test permissions"
+
+  #     - name: Install Rust toolchain
+  #       uses: moonrepo/setup-rust@ede6de059f8046a5e236c94046823e2af11ca670 # v1.2.2
+  #       with:
+  #         inherit-toolchain: true
+
+  #     - uses: taiki-e/install-action@3522286d40783523f9c7880e33f785905b4c20d0 # v2.66.1
+  #       with:
+  #         tool: wasm-pack
+
+  #     - name: Setup Node.js
+  #       uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
+  #       with:
+  #         node-version: '22'
+
+  #     - uses: mskelton/setup-yarn@8d0bc12bc7f72a9acfc32019da0381dfcb481df0 # v3.0.0
+
+  #     - name: Install deps
+  #       run: yarn install
+
+  #     - name: Build
+  #       run: yarn build
+
+  # license-check:
+  #   name: license-check 📜
+  #   runs-on: ubuntu-latest
+  #   defaults:
+  #     run:
+  #       working-directory: ./proof_verifier_js/ts
+
+  #   steps:
+  #     - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
+
+  #     - name: Setup Node.js
+  #       uses: actions/setup-node@395ad3262231945c25e8478fd5baf05154b1d79f # v6.1.0
+  #       with:
+  #         node-version: '22'
+
+  #     - name: Install license-checker
+  #       run: npm install -g license-checker
+
+  #     - name: Run license checker
+  #       run: |
+  #         license-checker --production \
+  #           --onlyAllow "MIT;Apache-2.0" \
+  #           --summary
+
+  # # Special job that allows some of the jobs to be skipped or failed
+  # # requiring others to be successful
+  # pr-checks:
+  #   runs-on: ubuntu-latest
+  #   if: always()
+  #   needs:
+  #     - general-checks
+  #   steps:
+  #     - name: Decide on PR checks
+  #       uses: re-actors/alls-green@05ac9388f0aebcb5727afa17fcccfecd6f8ec5fe # v1.2.2
+  #       with:
+  #         jobs: ${{ toJSON(needs) }}