8 commit(s) touching .github/workflows/ since 2026-05-28T08:29:27Z:
0062739 — Grant security-audit caller job the permissions the reusable workflow requests
- Author: Ned Twigg ned.twigg@diffplug.com
- Date: 2026-05-28 17:12:08 -0700
- Refs: * main,remotes/origin/codex-fix-two remotes/origin/main
- Files:
.github/workflows/release.yml
- View diff
3887e0e — Gate release on a dispatched security audit instead of workflow_call
- Author: Ned Twigg ned.twigg@diffplug.com
- Date: 2026-05-28 17:56:45 -0700
- Refs: * main,remotes/origin/codex-fix-two remotes/origin/main
- Files:
.github/workflows/release.yml.github/workflows/security-audit.yaml
- View diff
3fbf5e4 — Pin Node.js via package.json devEngines, single source of truth
- Author: Edgar Twigg ned.twigg@diffplug.com
- Date: 2026-05-28 09:58:20 -0700
- Refs: * main,remotes/origin/codex-fix-two remotes/origin/main,remotes/origin/shift-enter-windows-codex
- Files:
.github/workflows/release.yml
- View diff
617c33f — Allow github-actions bot to initiate the security audit
- Author: Ned Twigg ned.twigg@diffplug.com
- Date: 2026-05-28 18:04:23 -0700
- Refs: * main,remotes/origin/codex-fix-two remotes/origin/main
- Files:
.github/workflows/security-audit.yaml
- View diff
803597b — Masquerade release-call push event as workflow_dispatch for security audit
- Author: Ned Twigg ned.twigg@diffplug.com
- Date: 2026-05-28 17:19:16 -0700
- Refs: * main,remotes/origin/codex-fix-two remotes/origin/main
- Files:
.github/workflows/security-audit.yaml
- View diff
9c2e70f — Suppress stray Windows Terminal window behind the standalone app (#110)
- Author: Ned Twigg ned.twigg@diffplug.com
- Date: 2026-05-28 11:31:58 -0700
- Refs: * main,remotes/origin/codex-fix-two remotes/origin/main,remotes/origin/shift-enter-windows-codex
- Files:
- View diff
a3d95b1 — Pass -R to gh in the release security-audit job (no checkout present)
- Author: Ned Twigg ned.twigg@diffplug.com
- Date: 2026-05-28 18:01:16 -0700
- Refs: * main,remotes/origin/codex-fix-two remotes/origin/main
- Files:
.github/workflows/release.yml
- View diff
f5a1dc9 — Validate the pinned Node.js version after extracting it from package.json
- Author: Edgar Twigg ned.twigg@diffplug.com
- Date: 2026-05-28 10:29:41 -0700
- Refs: * main,remotes/origin/codex-fix-two remotes/origin/main,remotes/origin/shift-enter-windows-codex
- Files:
.github/workflows/release.yml
- View diff
8 commit(s) touching
.github/workflows/since2026-05-28T08:29:27Z:0062739— Grant security-audit caller job the permissions the reusable workflow requests.github/workflows/release.yml3887e0e— Gate release on a dispatched security audit instead of workflow_call.github/workflows/release.yml.github/workflows/security-audit.yaml3fbf5e4— Pin Node.js via package.json devEngines, single source of truth.github/workflows/release.yml617c33f— Allow github-actions bot to initiate the security audit.github/workflows/security-audit.yaml803597b— Masquerade release-call push event as workflow_dispatch for security audit.github/workflows/security-audit.yaml9c2e70f— Suppress stray Windows Terminal window behind the standalone app (#110)a3d95b1— Pass -R to gh in the release security-audit job (no checkout present).github/workflows/release.ymlf5a1dc9— Validate the pinned Node.js version after extracting it from package.json.github/workflows/release.yml