openclaw

mirror of https://github.com/openclaw/openclaw.git synced 2026-05-20 18:46:26 +00:00

History

Tak Hoffman 06a39015f2 fix(ci): authenticate proof verdict markers (#83692 ) Summary: - The branch restricts exact-head ClawSweeper proof markers to GitHub App-authored comments, adds read-only issue-comment token fallback for the proof workflow, and adds focused regression tests plus a changelog entry. - Reproducibility: yes. Source inspection of current main shows any issue comment body with a matching `clawsw ... SHA is accepted without author/App authentication; the PR adds focused negative tests for forged comments. Automerge notes: - PR branch already contained follow-up commit before automerge: fix(ci): authenticate proof verdict markers Validation: - ClawSweeper review passed for head `f4c375eaa7`. - Required merge gates passed before the squash merge. Prepared head SHA: `f4c375eaa7` Review: https://github.com/openclaw/openclaw/pull/83692#issuecomment-4479843682 Co-authored-by: Tak Hoffman <781889+Takhoffman@users.noreply.github.com> Co-authored-by: clawsweeper <274271284+clawsweeper[bot]@users.noreply.github.com> Co-authored-by: clawsweeper[bot] <274271284+clawsweeper[bot]@users.noreply.github.com> Approved-by: takhoffman Co-authored-by: takhoffman <781889+takhoffman@users.noreply.github.com>		2026-05-18 17:42:10 +00:00
..
barnacle-auto-response.mjs	fix(ci): honor exact-head proof verdicts (#83688 )	2026-05-18 11:39:30 -05:00
real-behavior-proof-check.mjs	fix(ci): authenticate proof verdict markers (#83692 )	2026-05-18 17:42:10 +00:00
real-behavior-proof-policy.mjs	fix(ci): authenticate proof verdict markers (#83692 )	2026-05-18 17:42:10 +00:00
resolve-openclaw-ref.sh	ci: speed up full release validation	2026-04-28 09:02:57 +01:00
run-openclaw-cross-os-release-checks.sh	ci(release): normalize Windows loader npm paths	2026-05-10 02:14:00 +01:00