jwright
83edaf5975
build-and-deploy / build (push) Failing after 15m10s
scripts/new-post.mjs writes schema-valid posts from flags or a JSON event (the IaC publish seam). Gitea Actions workflow: ci check, audit-ci gate, build, dist scan, CycloneDX SBOM, buildah build+push, and a least-privilege digest-bump PR to home-ops (never auto-merged). Renovate + audit allowlist.
10 lines
200 B
JSON
10 lines
200 B
JSON
{
|
|
"$schema": "https://raw.githubusercontent.com/IBM/audit-ci/main/docs/schema.json",
|
|
"high": true,
|
|
"critical": true,
|
|
"report-type": "summary",
|
|
"allowlist": [
|
|
"GHSA-gv7w-rqvm-qjhr"
|
|
]
|
|
}
|