chore: bootstrap FUNDING.yml and trufflehog.yml#35
Conversation
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Add AuditRecord type alias for the 5-tuple return type in Python bindings audit() method to satisfy clippy::type_complexity. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
|
Warning You have reached your daily quota limit. Please wait up to 24 hours and I will start processing your requests again! |
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
Cursor Bugbot has reviewed your changes and found 3 potential issues.
Bugbot Autofix is ON, but it could not run because on-demand usage is turned off. To enable Bugbot Autofix, turn on on-demand usage and set a spend limit in the Cursor dashboard.
Reviewed by Cursor Bugbot for commit be00de9. Configure here.
| @@ -0,0 +1,3 @@ | |||
| github: [KooshaPari] | |||
| custom: ["https://kooshapari.com/sponsor"] | |||
|
|
|||
There was a problem hiding this comment.
FUNDING.yml placed at root instead of .github directory
Medium Severity
FUNDING.yml is placed at the repository root, but GitHub only recognizes it inside the .github/ directory. A valid .github/FUNDING.yml already exists with different content (different sponsor links). This root-level file will have no effect — the PR test plan item "Verify FUNDING.yml appears on repo's Funding tab" will pass only because of the pre-existing .github/FUNDING.yml, not this new file.
Reviewed by Cursor Bugbot for commit be00de9. Configure here.
| @@ -0,0 +1,2 @@ | |||
| # Default owners | |||
| * @KooshaPari | |||
There was a problem hiding this comment.
Root CODEOWNERS is ignored due to .github precedence
Low Severity
A root-level CODEOWNERS is added, but .github/CODEOWNERS already exists with more detailed ownership rules. GitHub checks .github/ first and ignores any other CODEOWNERS file. This root-level file is completely inert and could confuse contributors about which file is authoritative.
Reviewed by Cursor Bugbot for commit be00de9. Configure here.
| - "**/.git/**" | ||
| detectors: | ||
| - allowlist: false | ||
|
|
There was a problem hiding this comment.
trufflehog.yml config not referenced by existing workflow
Medium Severity
This root-level trufflehog.yml is a scanner configuration file, but TruffleHog does not auto-discover config files — they must be explicitly passed via --config. The existing workflow at .github/workflows/trufflehog.yml runs trufflehog github --only-verified --no-update without a --config flag, so these settings (scan_depth, exclude_paths, detectors) are never applied.
Reviewed by Cursor Bugbot for commit be00de9. Configure here.
1 participant
Summary
FUNDING.ymlfor GitHub Sponsorstrufflehog.ymlsecrets scanning workflowTest plan
Note
Low Risk
Low risk repo-metadata changes plus a small Rust/PyO3 type-alias refactor for the
auditreturn type; no behavior or data-flow changes expected.Overview
Adds repo-level maintenance files:
CODEOWNERS(default owner),FUNDING.yml(GitHub Sponsors + custom link), andtrufflehog.ymlconfiguration for secrets scanning with common path excludes.In the Python FFI adapter (
crates/pheno-ffi-python/.../mod.rs), introduces anAuditRecordtype alias and updatesPhenoConfig.auditto returnVec<AuditRecord>instead of an inline tuple type (no functional change).Reviewed by Cursor Bugbot for commit be00de9. Bugbot is set up for automated code reviews on this repo. Configure here.