From 1f4026fb21c7da9e1d8494a2dc8e5515aaf4dab0 Mon Sep 17 00:00:00 2001 From: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> Date: Fri, 13 Jun 2025 19:35:52 +0700 Subject: [PATCH 1/4] Update publish-dists.yml Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> --- .github/workflows/publish-dists.yml | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) diff --git a/.github/workflows/publish-dists.yml b/.github/workflows/publish-dists.yml index 98993c6f5..17bd7cd50 100644 --- a/.github/workflows/publish-dists.yml +++ b/.github/workflows/publish-dists.yml @@ -85,3 +85,21 @@ jobs: cd - done + + validate: + runs-on: ubuntu-latest + steps: + - name: Checkout code + uses: actions/checkout@v3 + + - name: Validate commit messages + run: | + git log -1 --pretty=%B | grep -E '^(feat|fix|docs|chore|test|refactor): .+' || exit 1 + + - name: Validate file paths + run: | + invalid_files=$(git diff --name-only HEAD~1 | grep -vE '^src|test|config/') + if [ -n "$invalid_files" ]; then + echo "Invalid file paths: $invalid_files" + exit 1 + fi From 319ee5a983f41760649529715df302c01d42b004 Mon Sep 17 00:00:00 2001 From: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> Date: Fri, 13 Jun 2025 19:39:00 +0700 Subject: [PATCH 2/4] Potential fix for code scanning alert no. 81: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> --- .github/workflows/publish-dists.yml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/.github/workflows/publish-dists.yml b/.github/workflows/publish-dists.yml index 17bd7cd50..7c07b86e4 100644 --- a/.github/workflows/publish-dists.yml +++ b/.github/workflows/publish-dists.yml @@ -9,6 +9,8 @@ on: jobs: build-and-push: runs-on: ubuntu-latest + permissions: + contents: write steps: - uses: actions/checkout@v4 @@ -88,6 +90,9 @@ jobs: validate: runs-on: ubuntu-latest + permissions: + contents: read + steps: - name: Checkout code uses: actions/checkout@v3 From 899fbc68c183930859f07cb189702efd104f8f13 Mon Sep 17 00:00:00 2001 From: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> Date: Fri, 13 Jun 2025 19:39:46 +0700 Subject: [PATCH 3/4] Update .github/workflows/publish-dists.yml Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com> Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> --- .github/workflows/publish-dists.yml | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/.github/workflows/publish-dists.yml b/.github/workflows/publish-dists.yml index 7c07b86e4..d30bd92f7 100644 --- a/.github/workflows/publish-dists.yml +++ b/.github/workflows/publish-dists.yml @@ -99,7 +99,10 @@ jobs: - name: Validate commit messages run: | - git log -1 --pretty=%B | grep -E '^(feat|fix|docs|chore|test|refactor): .+' || exit 1 + commit_range="${{ github.event.before }}..HEAD" + git log $commit_range --pretty=format:%s | while read -r msg; do + echo "$msg" | grep -E '^(feat|fix|docs|chore|test|refactor): .+' || { echo "Invalid commit message: $msg"; exit 1; } + done - name: Validate file paths run: | From affd08979dede4c2c8c13984adb3fed05b7de49b Mon Sep 17 00:00:00 2001 From: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> Date: Fri, 13 Jun 2025 19:40:03 +0700 Subject: [PATCH 4/4] Update .github/workflows/publish-dists.yml Co-authored-by: sourcery-ai[bot] <58596630+sourcery-ai[bot]@users.noreply.github.com> Signed-off-by: AU_gdev_19 <64915515+Dargon789@users.noreply.github.com> --- .github/workflows/publish-dists.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/publish-dists.yml b/.github/workflows/publish-dists.yml index d30bd92f7..8423ce4c4 100644 --- a/.github/workflows/publish-dists.yml +++ b/.github/workflows/publish-dists.yml @@ -106,7 +106,7 @@ jobs: - name: Validate file paths run: | - invalid_files=$(git diff --name-only HEAD~1 | grep -vE '^src|test|config/') + invalid_files=$(git diff --name-only HEAD~1 | grep -vE '^(src/|test/|config/)') if [ -n "$invalid_files" ]; then echo "Invalid file paths: $invalid_files" exit 1