fix: workflow metadata, results path, PR-only comments

Author: Zenith1415

.github/workflows/shieldci.yml

@@ -16,13 +16,20 @@ jobs:
       - name: Checkout target repository
         uses: actions/checkout@v4
 
-      - name: Get PR metadata
+      - name: Gather metadata
         id: meta
         run: |
           echo "repo=${{ github.repository }}" >> "$GITHUB_OUTPUT"
-          echo "branch=${{ github.head_ref }}" >> "$GITHUB_OUTPUT"
-          echo "commit=${{ github.event.pull_request.head.sha }}" >> "$GITHUB_OUTPUT"
-          echo "commit_msg=$(git log -1 --pretty=%s 2>/dev/null || echo 'PR scan')" >> "$GITHUB_OUTPUT"
+          if [ "${{ github.event_name }}" = "pull_request" ]; then
+            echo "branch=${{ github.head_ref }}" >> "$GITHUB_OUTPUT"
+            echo "commit=${{ github.event.pull_request.head.sha }}" >> "$GITHUB_OUTPUT"
+            echo "trigger=PR" >> "$GITHUB_OUTPUT"
+          else
+            echo "branch=${{ github.ref_name }}" >> "$GITHUB_OUTPUT"
+            echo "commit=${{ github.sha }}" >> "$GITHUB_OUTPUT"
+            echo "trigger=${{ github.event_name }}" >> "$GITHUB_OUTPUT"
+          fi
+          echo "commit_msg=$(git log -1 --pretty=%s 2>/dev/null || echo 'scan')" >> "$GITHUB_OUTPUT"
 
       - name: Check ShieldCI engine is available
         run: |
@@ -54,19 +61,21 @@ jobs:
       - name: Push results to ShieldCI dashboard
         if: always()
         env:
-          SHIELDCI_API_URL: ${{ secrets.SHIELDCI_API_URL }}
-          SHIELDCI_API_KEY: ${{ secrets.SHIELDCI_API_KEY }}
+          SHIELDCI_API_URL: http://localhost:3000/api/scans
+          SHIELDCI_API_KEY: fc09420a3737855a3094ff7831a6219565cee6777a0fbeec
           SHIELDCI_REPO: ${{ steps.meta.outputs.repo }}
           SHIELDCI_BRANCH: ${{ steps.meta.outputs.branch }}
           SHIELDCI_COMMIT: ${{ steps.meta.outputs.commit }}
           SHIELDCI_COMMIT_MSG: ${{ steps.meta.outputs.commit_msg }}
           SHIELDCI_DURATION: ${{ steps.scan.outputs.duration }}
-          SHIELDCI_TRIGGERED_BY: PR
-          SHIELDCI_RESULTS_FILE: $HOME/Desktop/ShieldCI/tests/shield_results.json
-        run: python3 "$HOME/Desktop/ShieldCI/push_results.py"
+          SHIELDCI_TRIGGERED_BY: ${{ steps.meta.outputs.trigger }}
+          SHIELDCI_RESULTS_FILE: ${{ runner.temp }}/../../../Desktop/ShieldCI/tests/shield_results.json
+        run: |
+          export SHIELDCI_RESULTS_FILE="$HOME/Desktop/ShieldCI/tests/shield_results.json"
+          python3 "$HOME/Desktop/ShieldCI/push_results.py"
 
       - name: Post scan summary as PR comment
-        if: always()
+        if: github.event_name == 'pull_request'
         uses: actions/github-script@v7
         with:
           script: |