oib/aitbc
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
397 Commits 1 Branch 2 Tags
b3cf7384ceec8f5f628741a32a9a2bb149ec8f90
Commit Graph

11 Commits

Author SHA1 Message Date
dependabot[bot]
fa1f16555c ci(deps): bump actions/setup-python from 4 to 6 
Bumps [actions/setup-python](https://github.com/actions/setup-python) from 4 to 6.
- [Release notes](https://github.com/actions/setup-python/releases)
- [Commits](https://github.com/actions/setup-python/compare/v4...v6)

---
updated-dependencies:
- dependency-name: actions/setup-python
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-03-26 07:53:45 +00:00
aitbc1
8ed7022189 ci: pin Python version to 3.13.5 across all workflows 
- Update all GitHub Actions workflows to use Python 3.13.5 specifically
- Replace flexible '3.13' with exact '3.13.5' version pinning
- Update pyproject.toml requires-python and classifiers to match
- Align CI/CD with local development environment (Python 3.13.5)
- Prevent Dependabot from testing with newer Python versions like 3.13.12
 2026-03-26 08:52:39 +01:00
aitbc1
8efaf9fa08 Merge dependency updates from GitHub 
- Updated black from 24.3.0 to 26.3.1
- Kept ruff at 0.15.7 (our updated version)
- All other dependency updates already applied
 2026-03-26 08:31:46 +01:00
aitbc1
9cc9bdc023 ci(deps): bump actions/cache from 3 to 5 and actions/setup-node from 4 to 6 2026-03-26 08:28:57 +01:00
AITBC System
db600b3561 deps: resolve remaining GitHub PRs - CI/CD and production updates 
CI/CD Updates (resolves PR #28, #29, #30):
- Update actions/github-script from v7 to v8 (PR #30)
- Update actions/upload-artifact from v4 to v7 (PR #29)
- Update ossf/scorecard-action from v2.3.3 to v2.4.3 (PR #28)

Production Updates (resolves PR #38):
- Update orjson from 3.11.5 to 3.11.6 in blockchain-node
- Update black from 24.4.2 to 26.3.1 in aitbc-sdk

All changes are safe minor version updates with no breaking changes.
This will automatically close all remaining Dependabot PRs when pushed.
 2026-03-18 17:06:42 +01:00
AITBC System
15cd3a5394 docs(security): add comment to refresh IDE validation 2026-03-08 12:13:52 +01:00
AITBC System
b78c054a12 fix(security): resolve GitHub Actions workflow validation errors 
- Remove invalid 'queries' input from CodeQL analyze action
- Fix OSSF Scorecard action input parameter names
- Use correct underscore naming for required inputs
 2026-03-08 12:12:57 +01:00
AITBC System
586977e113 feat(security): add comprehensive security scanning workflow 
- Add Bandit security scanning for Python code
- Add CodeQL security analysis for Python and JavaScript
- Add dependency security scanning with Safety and npm audit
- Add container security scanning with Trivy
- Add OSSF Scorecard for security best practices
- Add comprehensive security summary reporting

Fixes missing security-scanning.yml workflow file
 2026-03-08 12:09:41 +01:00
oib
18886ae64b chore(workflows): remove agent-contributions and build-macos-packages workflow files 
- Delete agent-contributions.yml (399 lines) with agent validation, rewards, swarm integration, and deployment jobs
- Delete build-macos-packages.yml (172 lines) with macOS native package build pipeline for arm64 and x86_64 targets
 2026-03-04 15:48:02 +01:00
oib
2ec228e826 chore(workflows): disable all GitHub Actions workflows 
- Add `workflow: disable: true` to 23 workflow files to temporarily disable CI/CD automation
- Affects agent-contributions, build-macos-packages, ci, cli-tests, comprehensive-tests, configuration-security, contracts-ci, dotenv-check, file-organization, markdown-link-check, phase8-integration, production-deploy, publish-github-packages, publish-native-packages-simple, publish-native-packages, publish-npm-packages, publish-packages-to-registry
 2026-03-04 15:46:49 +01:00
oib
f353e00172 chore(security): enhance environment configuration, CI workflows, and wallet daemon with security improvements 
- Restructure .env.example with security-focused documentation, service-specific environment file references, and AWS Secrets Manager integration
- Update CLI tests workflow to single Python 3.13 version, add pytest-mock dependency, and consolidate test execution with coverage
- Add comprehensive security validation to package publishing workflow with manual approval gates, secret scanning, and release
 2026-03-03 10:33:46 +01:00