vrr/openclaw
2
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-20 09:17:51 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 18
openclaw/.github
History
Tak Hoffman 06a39015f2
fix(ci): authenticate proof verdict markers (#83692) 
Summary:
- The branch restricts exact-head ClawSweeper proof markers to GitHub App-authored comments, adds read-only issue-comment token fallback for the proof workflow, and adds focused regression tests plus a changelog entry.
- Reproducibility: yes. Source inspection of current main shows any issue comment body with a matching `clawsw ...  SHA is accepted without author/App authentication; the PR adds focused negative tests for forged comments.

Automerge notes:
- PR branch already contained follow-up commit before automerge: fix(ci): authenticate proof verdict markers

Validation:
- ClawSweeper review passed for head f4c375eaa7.
- Required merge gates passed before the squash merge.

Prepared head SHA: f4c375eaa7
Review: https://github.com/openclaw/openclaw/pull/83692#issuecomment-4479843682

Co-authored-by: Tak Hoffman <781889+Takhoffman@users.noreply.github.com>
Co-authored-by: clawsweeper <274271284+clawsweeper[bot]@users.noreply.github.com>
Co-authored-by: clawsweeper[bot] <274271284+clawsweeper[bot]@users.noreply.github.com>
Approved-by: takhoffman
Co-authored-by: takhoffman <781889+takhoffman@users.noreply.github.com>
2026-05-18 17:42:10 +00:00
..
actions ci(pnpm): use pnpm 11 in workflows 2026-05-11 00:48:14 +01:00
codeql chore(channels): remove bluebubbles bundled surface 2026-05-07 12:52:48 -07:00
codex/prompts fix(mantis): suppress auto no-proof comments 2026-05-18 21:11:21 +05:30
images/live-media-runner ci: preinstall ffmpeg for live media checks 2026-04-29 03:48:33 +01:00
instructions Revert "refactor: move runtime state to SQLite" 2026-05-13 13:33:38 +01:00
ISSUE_TEMPLATE docs: add beta blocker contributor guidance (#55199) 2026-03-26 09:31:59 -05:00
workflows fix(ci): authenticate proof verdict markers (#83692) 2026-05-18 17:42:10 +00:00
actionlint.yaml ci: right-size codeql quality runners 2026-04-28 19:26:45 -07:00
CODEOWNERS Add dependency release safety evidence and PR awareness (#81325) 2026-05-13 03:05:09 -05:00
dependabot.yml chore: move swabble into apps 2026-05-03 13:10:25 +01:00
labeler.yml test(qa-lab): add personal agent scenarios 2026-05-17 02:56:53 +08:00
pull_request_template.md docs: clarify pull request motivation 2026-05-18 12:39:54 -05:00
zizmor.yml chore: reduce root cleanup files 2026-05-03 14:38:13 +01:00