Skip to content

feat(safety): add reusable non-bot dependency gate#92

Merged
j7an merged 3 commits into
mainfrom
feat/non-bot-dependency-safety-gate
Jun 26, 2026
Merged

feat(safety): add reusable non-bot dependency gate#92
j7an merged 3 commits into
mainfrom
feat/non-bot-dependency-safety-gate

Conversation

@j7an

@j7an j7an commented Jun 26, 2026

Copy link
Copy Markdown
Owner

Summary

  • add a reusable dependency-safety-non-bot-gate.yml workflow for non-Dependabot PR status posting
  • document the Dependabot-gated scanner plus non-bot gate pairing
  • add static and runtime Bats coverage for the status-only safety envelope

Validation

  • bats tests/non-bot-gate-contract.bats tests/non-bot-gate-runtime.bats
  • ./scripts/lint-workflow-call.sh
  • ./scripts/lint-workflows.sh
  • ./scripts/check-inline-sync.sh

Note: ./scripts/check-inline-sync.sh is intentionally not substantive coverage for this workflow because the gate is inline-only and has no scripts/*.sh source pair; it remained green for CI parity.

Fixes #88.

@j7an j7an merged commit 0708665 into main Jun 26, 2026
7 checks passed
@j7an j7an deleted the feat/non-bot-dependency-safety-gate branch June 26, 2026 05:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Centralize the non-bot dependency-safety gate as a reusable workflow

1 participant