chore: fix markdownlint empty links and exclude testdata from trivy scan

snowdream · snowdream · commit f7b37bef4407 · 2026-05-28T19:37:59.000+08:00
diff --git a/.kiro/specs/unirtm/walkthroughs/core_tools_native_parity.md b/.kiro/specs/unirtm/walkthroughs/core_tools_native_parity.md
@@ -24,8 +24,8 @@
 
 相关的设计与执行文档已同步至项目目录：
 
-- **Plan**: [.kiro/specs/unirtm/plans/core_tools_native_parity.md](#)
-- **Task**: [.kiro/specs/unirtm/tasks/core_tools_native_parity.md](#)
-- **Walkthrough**: [.kiro/specs/unirtm/walkthroughs/core_tools_native_parity.md](#)
+- **Plan**: [Plan](../plans/core_tools_native_parity.md)
+- **Task**: [Task](../tasks/core_tools_native_parity.md)
+- **Walkthrough**: [Walkthrough](./core_tools_native_parity.md)
 
 UniRTM 现在已经是一个完全自洽、原生支持主流全开发生态的现代化版本管理工具。🚀
diff --git a/.kiro/specs/unirtm/walkthroughs/extended_ecosystem_php_flutter.md b/.kiro/specs/unirtm/walkthroughs/extended_ecosystem_php_flutter.md
@@ -19,8 +19,8 @@
 
 相关的设计与执行文档已同步至项目目录：
 
-- **Plan**: [.kiro/specs/unirtm/plans/extended_ecosystem_php_flutter.md](#)
-- **Task**: [.kiro/specs/unirtm/tasks/extended_ecosystem_php_flutter.md](#)
-- **Walkthrough**: [.kiro/specs/unirtm/walkthroughs/extended_ecosystem_php_flutter.md](#)
+- **Plan**: [Plan](../plans/extended_ecosystem_php_flutter.md)
+- **Task**: [Task](../tasks/extended_ecosystem_php_flutter.md)
+- **Walkthrough**: [Walkthrough](./extended_ecosystem_php_flutter.md)
 
 UniRTM 现在不仅对齐了 `mise` 的所有核心工具，还通过 PHP 和 Flutter 的原生化，在工具链丰富度上更进一步。🚀
diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
@@ -787,7 +787,7 @@ repos:
       - id: trivy
         name: trivy security scan
         language: system
-        entry: bash -c 'if command -v trivy >/dev/null 2>&1; then exec trivy fs . --scanners vuln,misconfig,secret --db-repository public.ecr.aws/aquasecurity/trivy-db --java-db-repository public.ecr.aws/aquasecurity/trivy-java-db:1 --checks-bundle-repository public.ecr.aws/aquasecurity/trivy-checks --timeout 15m --exit-code 1 --severity HIGH,CRITICAL "$@"; else echo "Skipped trivy not found"; fi' --
+        entry: bash -c 'if command -v trivy >/dev/null 2>&1; then exec trivy fs . --scanners vuln,misconfig,secret --skip-dirs internal/addlicense/testdata --db-repository public.ecr.aws/aquasecurity/trivy-db --java-db-repository public.ecr.aws/aquasecurity/trivy-java-db:1 --checks-bundle-repository public.ecr.aws/aquasecurity/trivy-checks --timeout 15m --exit-code 1 --severity HIGH,CRITICAL "$@"; else echo "Skipped trivy not found"; fi' --
         always_run: true
         pass_filenames: false
         description: "Comprehensive security scan for vulnerabilities, misconfigurations, and secrets using Trivy."
