ci: enhance GitHub Actions workflows with security and performance improvements #78
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| push: | |
| branches: [main] | |
| pull_request: | |
| branches: [main] | |
| workflow_dispatch: | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }} | |
| cancel-in-progress: true # Cancel outdated validation runs on new pushes | |
| jobs: | |
| documentation-structure: | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 10 | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Check documentation structure | |
| run: | | |
| # Verify patterns documentation exists | |
| test -d docs/patterns || { echo "Error: docs/patterns/ missing"; exit 1; } | |
| test -f docs/README.md || { echo "Error: docs/README.md missing"; exit 1; } | |
| test -d docs/adr || { echo "Error: docs/adr/ missing"; exit 1; } | |
| echo "All required documentation files present" | |
| repomap-validation: | |
| runs-on: ubuntu-latest | |
| timeout-minutes: 15 | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Set up Python | |
| uses: actions/setup-python@v5 | |
| with: | |
| python-version: '3.11' | |
| cache: 'pip' | |
| - name: Install repomap dependencies | |
| run: | | |
| pip install uv | |
| # Use --system flag since we're not in a virtual environment | |
| uv pip install --system tree-sitter tree-sitter-python tree-sitter-javascript \ | |
| tree-sitter-typescript tree-sitter-go tree-sitter-bash | |
| - name: Validate repomap is current | |
| run: ./scripts/update-repomap.sh --check |