fix: replace broken homogeneity workflow

Your Name · Your Name · commit d00d20139d97 · 2026-04-13T07:41:29.000+02:00
diff --git a/.github/workflows/homogeneity-check.yml b/.github/workflows/homogeneity-check.yml
@@ -6,35 +6,36 @@ on:
 
 jobs:
   check:
-    name: Homogeneity Check (${{ matrix.os }})
+    name: Agent Secret Scan (${{ matrix.os }})
     runs-on: ${{ matrix.os }}
     timeout-minutes: 10
 
     strategy:
       matrix:
-        os: [ubuntu-22.04, macos-14, windows-latest]
+        os: [ubuntu-22.04, macos-14, windows-2022]
 
     steps:
       - name: Checkout
         uses: actions/checkout@v4
 
       - name: Install ripgrep (Ubuntu)
         if: runner.os == 'Linux'
-        run: sudo apt-get install -y ripgrep
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y ripgrep
 
       - name: Install ripgrep (macOS)
         if: runner.os == 'macOS'
         run: brew install ripgrep
 
-      - name: Install ripgrep (Windows)
-        if: runner.os == 'Windows'
-        run: choco install ripgrep -y
-
-      - name: Run Homogeneity Check (Bash)
+      - name: Run Agent Secret Scan (Bash)
         if: runner.os != 'Windows'
-        run: bash scripts/check-homogeneity.sh $(basename "$GITHUB_WORKSPACE")
+        run: bash scripts/scan-agent-secrets.sh --fail-on-high .
 
-      - name: Run Homogeneity Check (PowerShell)
+      - name: Run Agent Secret Scan (PowerShell)
         if: runner.os == 'Windows'
         shell: pwsh
-        run: pwsh scripts/check-homogeneity.ps1 -WorkspaceName (Split-Path $env:GITHUB_WORKSPACE -Leaf)
+        run: |
+          & "${env:GITHUB_WORKSPACE}/scripts/scan-agent-secrets.ps1" `
+            -WorkspaceRoot "${env:GITHUB_WORKSPACE}" `
+            -FailOnHigh
