fix: Fix CI workflow errors

rand · claude · rand · commit 1e0e38c78f86 · 2025-10-27T20:51:08.000-06:00
This commit addresses three failing CI workflows: 1. Smoke Tests - Add SECURITY.md to skip list - SECURITY.md is a policy document, not a skill file - Added to SKIP_FILES to exclude from frontmatter validation 2. Validate Level 3 Resources - Fix two issues: - Made extract_concepts.py executable (chmod +x) - Improved stub detection to only flag comments, not legitimate gRPC code - Changed regex from '\bstub\b' to '^\s*#.*\bstub\b' to avoid false positives 3. Security Audit - Ensure audits directory exists - Added mkdir -p step before running security_audit.py - Prevents workflow failure when .claude/audits/ doesn't exist 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
diff --git a/.github/workflows/security-audit.yml b/.github/workflows/security-audit.yml
@@ -27,6 +27,9 @@ jobs:
         with:
           python-version: '3.11'
 
+      - name: Create audits directory
+        run: mkdir -p .claude/audits
+
       - name: Run security audit
         run: |
           python3 tests/security_audit.py \
diff --git a/.github/workflows/smoke-tests.yml b/.github/workflows/smoke-tests.yml
@@ -58,7 +58,8 @@ jobs:
               "README.md", "ENHANCEMENT_PLAN.md", "ENHANCEMENTS_SUMMARY.md",
               "SKILLS_USAGE_GUIDE.md", "CLAUDE.md", "SUMMARY.txt",
               "CLAUDE_MD_UPDATES.md", "PLUGIN.md", "MIGRATION.md",
-              "INDEX.md", "PROJECT_STATUS.md", "QUICK_START.md"
+              "INDEX.md", "PROJECT_STATUS.md", "QUICK_START.md",
+              "SECURITY.md"
           }
 
           for skill_file in Path(".").rglob("*.md"):
diff --git a/.github/workflows/validate-resources.yml b/.github/workflows/validate-resources.yml
@@ -159,8 +159,9 @@ jobs:
               echo "⚠️ $script: Contains TODO comments"
               ((found++))
             fi
-            if grep -qi '\bstub\b' "$script"; then
-              echo "⚠️ $script: Contains 'stub' references"
+            # Only flag 'stub' in comments, not legitimate code usage (e.g., gRPC stubs)
+            if grep -qiE '^\s*#.*\bstub\b' "$script"; then
+              echo "⚠️ $script: Contains 'stub' references in comments"
               ((found++))
             fi
             if grep -qiE '\bmock\b.*\bimplementation\b' "$script"; then
diff --git a/skills/workflow/project-synthesis/resources/scripts/extract_concepts.py b/skills/workflow/project-synthesis/resources/scripts/extract_concepts.py

Original file line number	Diff line number	Diff line change
`@@ -58,7 +58,8 @@ jobs:`
`58`	`58`	`"README.md", "ENHANCEMENT_PLAN.md", "ENHANCEMENTS_SUMMARY.md",`
`59`	`59`	`"SKILLS_USAGE_GUIDE.md", "CLAUDE.md", "SUMMARY.txt",`
`60`	`60`	`"CLAUDE_MD_UPDATES.md", "PLUGIN.md", "MIGRATION.md",`
`61`		`- "INDEX.md", "PROJECT_STATUS.md", "QUICK_START.md"`
	`61`	`+ "INDEX.md", "PROJECT_STATUS.md", "QUICK_START.md",`
	`62`	`+ "SECURITY.md"`
`62`	`63`	`}`
`63`	`64`
`64`	`65`	`for skill_file in Path(".").rglob("*.md"):`