Skip to content

Add Forge Python dependency audit gate#4

Merged
im-sham merged 1 commit into
mainfrom
codex/g163-python-supply-chain
May 7, 2026
Merged

Add Forge Python dependency audit gate#4
im-sham merged 1 commit into
mainfrom
codex/g163-python-supply-chain

Conversation

@im-sham
Copy link
Copy Markdown
Owner

@im-sham im-sham commented May 7, 2026

Summary\n- add least-privilege workflow permissions\n- add a Forge CI dependency-security job using pip-audit\n- add a repo-local CI workflow regression test\n\n## Verification\n- .venv/bin/ruff check forge_cli tests\n- .venv/bin/pytest tests -q\n- .venv/bin/python -m compileall tests/test_ci_workflow.py\n- clean temporary venv: python3.11 install + pip-audit -> no known vulnerabilities\n- workflow YAML parse\n- git diff --check

@im-sham im-sham merged commit cd9be12 into main May 7, 2026
4 checks passed
@im-sham im-sham deleted the codex/g163-python-supply-chain branch May 7, 2026 17:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@im-sham