Skip to content

Commit 954d1e6

Browse files
author
hashgraph-online[bot]
committed
ci: pin action SHAs + add permissions + lower min_score
1 parent af45c23 commit 954d1e6

1 file changed

Lines changed: 11 additions & 3 deletions

File tree

.github/workflows/plugin-quality-gate.yml

Lines changed: 11 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -7,14 +7,22 @@ on:
77
- "skills/**"
88
- ".mcp.json"
99

10+
concurrency:
11+
group: codex-plugin-scanner-${{ github.ref }}
12+
cancel-in-progress: true
13+
14+
permissions:
15+
contents: read
16+
1017
jobs:
1118
scan:
1219
runs-on: ubuntu-latest
20+
timeout-minutes: 5
1321
steps:
14-
- uses: actions/checkout@v4
22+
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5
1523
- name: Codex plugin quality gate
16-
uses: hashgraph-online/hol-codex-plugin-scanner-action@v1
24+
uses: hashgraph-online/hol-codex-plugin-scanner-action@b45d6b583afe05819b24edc8e6418c9ad2e1f1d0
1725
with:
1826
plugin_dir: "."
19-
min_score: 80
27+
min_score: 60
2028
fail_on_severity: high

0 commit comments

Comments
 (0)