vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-06 07:20:43 +00:00
Code Issues Packages Projects Releases Wiki Activity

ci: rename codeql quality baseline shard

Browse Source
This commit is contained in:
Vincent Koc
2026-04-28 22:52:55 -07:00
committed by GitHub
parent bd1d1f0f2b
commit 6186ed2c07
3 changed files with 8 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
docs/ci.md
View File

@@ -272,8 +272,9 @@ default workflow because the macOS build dominates runtime even when clean.
The `CodeQL Critical Quality` workflow is the matching non-security shard. It
runs only error-severity, non-security JavaScript/TypeScript quality queries
over narrow high-value surfaces on the smaller Blacksmith Linux runner. Its
baseline job scans the same auth, secrets, sandbox, cron, and gateway surface
as the security workflow. The config-boundary
core-auth-secrets job scans auth, secrets, sandbox, cron, and gateway security
boundary code under the separate `/codeql-critical-quality/core-auth-secrets`
category. The config-boundary
job scans config schema, migration, normalization, and IO contracts under the
separate `/codeql-critical-quality/config-boundary` category. The
gateway-runtime-boundary job scans gateway protocol schemas and server method