Skip to content

Fixed security vulnerabilities & improvements#2437

Merged
soumeh01 merged 6 commits into
mainfrom
resolve-security-findings
Apr 15, 2026
Merged

Fixed security vulnerabilities & improvements#2437
soumeh01 merged 6 commits into
mainfrom
resolve-security-findings

Conversation

@soumeh01

@soumeh01 soumeh01 commented Apr 14, 2026

Copy link
Copy Markdown
Contributor

Changes

  • Instead of referencing the shared workflow via Open-CMSIS-Pack/devtools/.github/workflows/shared_setup_env.yml@main, switch to a local reference (./.github/workflows/shared_setup_env.yml). This removes the dependency on updating and merging the shared workflow first before applying changes in the caller. With this approach, both workflows can be updated together within a single PR.
  • Also, this removes the security warning to pin the workflow to a specific commit.
  • Pinned dependencies in global.yml to updated versions.
  • Added Pull request template file
  • Scorecard cron job schedule time changed, in order to avoid any conflict

@github-actions

github-actions Bot commented Apr 14, 2026

Copy link
Copy Markdown

Test Results

  7 files   53 suites   5m 41s ⏱️
185 tests 168 ✅ 17 💤 0 ❌
692 runs  624 ✅ 68 💤 0 ❌

Results for commit b056350.

♻️ This comment has been updated with latest results.

@soumeh01 soumeh01 force-pushed the resolve-security-findings branch from 53f9991 to 56c5ec0 Compare April 14, 2026 13:39
@soumeh01 soumeh01 force-pushed the resolve-security-findings branch from 56c5ec0 to 0127f2d Compare April 14, 2026 13:45
@soumeh01 soumeh01 marked this pull request as ready for review April 14, 2026 13:47
@soumeh01 soumeh01 changed the title Fixed security vulnerability Fixed security vulnerabilities & improvements Apr 14, 2026
@soumeh01 soumeh01 force-pushed the resolve-security-findings branch from 9ebab27 to 1a2d63e Compare April 15, 2026 08:17
@soumeh01 soumeh01 force-pushed the resolve-security-findings branch from 1a2d63e to b056350 Compare April 15, 2026 08:18
@soumeh01 soumeh01 requested a review from JonatanAntoni April 15, 2026 09:39
@soumeh01 soumeh01 merged commit f74c516 into main Apr 15, 2026
117 checks passed
@soumeh01 soumeh01 deleted the resolve-security-findings branch April 15, 2026 11:10
@codecov

codecov Bot commented Apr 15, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 64.75%. Comparing base (f85c849) to head (b056350).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files
@@           Coverage Diff           @@
##             main    #2437   +/-   ##
=======================================
  Coverage   64.75%   64.75%           
=======================================
  Files         145      145           
  Lines       26161    26161           
  Branches    15792    15792           
=======================================
  Hits        16941    16941           
  Misses       7066     7066           
  Partials     2154     2154           
Flag Coverage Δ
buildmgr-cov 79.87% <ø> (ø)
packchk-cov 69.75% <ø> (ø)
packgen-cov 82.02% <ø> (ø)
projmgr-cov 87.79% <ø> (ø)
svdconv-cov 40.28% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants