vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-06 12:20:44 +00:00
Code Issues Packages Projects Releases Wiki Activity

ci: shard gateway codeql quality

Browse Source 
Add a narrow gateway/runtime CodeQL critical-quality shard and document it.
This commit is contained in:
Vincent Koc
2026-04-28 11:16:48 -07:00
committed by GitHub
parent cd2e13be8a
commit e476523082
3 changed files with 58 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
docs/ci.md
View File

@@ -249,6 +249,9 @@ over narrow high-value surfaces. Its baseline job scans the same auth, secrets,
sandbox, cron, and gateway surface as the security workflow. The config-boundary
job scans config schema, migration, normalization, and IO contracts under the
separate `/codeql-critical-quality/config-boundary` category. The
gateway-runtime-boundary job scans gateway protocol schemas and server method
contracts under the separate
`/codeql-critical-quality/gateway-runtime-boundary` category. The
plugin-boundary job scans loader, registry, public-surface, and Plugin SDK
entrypoint contracts under a separate `/codeql-critical-quality/plugin-boundary`
category. Keep the workflow separate from security so quality findings can be