Josh Avant bd4db5ee62 Add dependency release safety evidence and PR awareness (#81325) ... * test: cover dependency pin guard * build: add dependency vulnerability gate * build: add dependency risk report * build: add dependency drift reports * build: include dependency ownership surface evidence * build: rename dependency report commands * build: respect release age exclusions in risk report * build: clarify transitive risk accounting * build: remove transitive risk exception registry * build: clarify transitive risk signal wording * ci: attach dependency evidence to release preflight * ci: extract dependency release evidence generator * build: rename ownership surface dependency report * ci: clarify release evidence naming * build: clarify recently published risk report * build: reorder transitive risk report sections * build: fix ownership surface pluralization * ci: surface dependency changes on PRs * ci: harden dependency change awareness * ci: use dependency changed PR label * build: fix dependency report lint * docs: add dependency safety changelog		2026-05-13 03:05:09 -05:00
..
auto-response.yml	Require real behavior proof for external PRs (#77622)	2026-05-05 05:45:30 +01:00
ci-build-artifacts-testbox.yml	ci: verify and sync website installers (#80067)	2026-05-09 23:48:49 -04:00
ci-check-testbox.yml	ci: skip Testbox workflow checks for draft PRs	2026-05-06 22:06:59 +01:00
ci.yml	ci: keep main push checks running	2026-05-12 08:35:36 +01:00
clawsweeper-dispatch.yml	ci: keep ClawSweeper comment dispatch best effort	2026-05-11 11:02:00 +01:00
codeql-android-critical-security.yml	ci: schedule android codeql shard (#73430)	2026-04-28 01:54:57 -07:00
codeql-critical-quality.yml	chore(channels): remove bluebubbles bundled surface	2026-05-07 12:52:48 -07:00
codeql-macos-critical-security.yml	ci: split macos codeql shard	2026-04-28 03:14:07 -07:00
codeql.yml	chore(ci): widen CodeQL PR guard	2026-04-29 20:06:50 -07:00
control-ui-locale-refresh.yml	feat(i18n): align docs and ui locales	2026-04-29 10:25:47 -07:00
crabbox-hydrate.yml	test(e2e): fix kitchen sink crabbox coverage (#76287)	2026-05-02 18:39:26 -07:00
dependency-change-awareness.yml	Add dependency release safety evidence and PR awareness (#81325)	2026-05-13 03:05:09 -05:00
docker-release.yml	feat: support alpha releases	2026-05-02 18:29:13 +01:00
docs-agent.yml	fix(ci): harden workflow checkouts	2026-04-28 01:37:00 -07:00
docs-sync-publish.yml	docs: add dedicated ClawHub docs tab (#79159)	2026-05-07 18:55:08 -07:00
docs-translate-trigger-release.yml	ci: dispatch aggregate docs translations	2026-05-06 20:24:03 +01:00
docs.yml
duplicate-after-merge.yml
full-release-validation.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
install-smoke.yml	fix(ci): keep Docker patch smoke on pnpm workspace config	2026-05-11 00:48:14 +01:00
labeler.yml	chore: Update active PR limit to 20	2026-05-03 19:15:55 -05:00
live-media-runner-image.yml	chore(deps): bump actions group	2026-04-29 21:48:30 -07:00
macos-release.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
maintainer-command-reactions.yml	ci: rename clawsweeper automation labels	2026-04-29 10:18:57 +01:00
mantis-discord-smoke.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
mantis-discord-status-reactions.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
mantis-discord-thread-attachment.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
mantis-scenario.yml	ci(mantis): add agentic telegram desktop proof	2026-05-11 08:15:34 +05:30
mantis-slack-desktop-smoke.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
mantis-telegram-desktop-proof.yml	ci(mantis): fix telegram run wait before checkout	2026-05-12 10:39:27 +05:30
mantis-telegram-live.yml	ci(mantis): fix telegram run wait before checkout	2026-05-12 10:39:27 +05:30
npm-telegram-beta-e2e.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
openclaw-cross-os-release-checks-reusable.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
openclaw-live-and-e2e-checks-reusable.yml	ci: bound live cache release retries	2026-05-11 02:36:17 +01:00
openclaw-npm-release.yml	Add dependency release safety evidence and PR awareness (#81325)	2026-05-13 03:05:09 -05:00
openclaw-performance.yml	ci: retry performance report publishes	2026-05-03 14:32:35 +01:00
openclaw-release-checks.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
openclaw-release-publish.yml	Add dependency release safety evidence and PR awareness (#81325)	2026-05-13 03:05:09 -05:00
openclaw-scheduled-live-checks.yml	ci: pass provider secrets to testbox	2026-04-28 04:24:15 +01:00
opengrep-precise-full.yml	ci: right-size OpenGrep PR scan	2026-04-30 01:52:12 -07:00
opengrep-precise.yml	ci: shallow checkout OpenGrep PR scan	2026-04-30 02:43:00 -07:00
package-acceptance.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
plugin-clawhub-release.yml	ci: speed up beta release verification	2026-05-12 06:21:09 +01:00
plugin-npm-release.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
plugin-prerelease.yml	ci: add plugin inspector prerelease advisory	2026-05-11 12:46:33 +01:00
qa-live-transports-convex.yml	ci(pnpm): use pnpm 11 in workflows	2026-05-11 00:48:14 +01:00
real-behavior-proof.yml	Require real behavior proof for external PRs (#77622)	2026-05-05 05:45:30 +01:00
sandbox-common-smoke.yml	chore: clean up root clutter	2026-05-03 12:20:52 +01:00
stale.yml	fix(ci): bound manual stale closure backfill	2026-04-30 03:52:23 -07:00
test-performance-agent.yml	chore: move swabble into apps	2026-05-03 13:10:25 +01:00
update-migration.yml	test: add update migration package gate	2026-05-02 00:34:33 +01:00
website-installer-sync.yml	chore(installer): remove legacy cmd installer	2026-05-10 06:59:33 +01:00
windows-blacksmith-testbox.yml	ci: preserve Windows Testbox phone-home POST	2026-05-03 22:28:30 -07:00
windows-testbox-probe.yml	ci: expand Windows WSL probe runners	2026-05-03 21:32:35 -07:00
workflow-sanity.yml