fix: bump AGT to v3.4.0 for contributor check false-positive fix#1619
fix: bump AGT to v3.4.0 for contributor check false-positive fix#1619imran-siddique wants to merge 2 commits into
Conversation
Updates AGT_REF from v3.3.0 to v3.4.0 which includes dampening for established accounts (age > 1yr, 50+ followers, 20+ repos) to prevent false-positive HIGH risk flags on legitimate contributors. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
github-actions
Bot
added
targets-main
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
main, but PRs should target staged.
The main branch is auto-published from staged and should not receive direct PRs.
Please close this PR and re-open it against the staged branch.
You can change the base branch using the Edit button at the top of this PR,
or run: gh pr edit 1619 --base staged
|
🔴 Contributor Reputation Check: HIGH risk
Maintainers: please review this contributor before merging. |
github-actions
Bot
added
the
needs-review:HIGH
There was a problem hiding this comment.
Pull request overview
Bumps the Agent Governance Toolkit (AGT) reference used by the contributor reputation check workflow to reduce false-positive HIGH risk flags for established accounts.
Changes:
- Update
AGT_REFfromv3.3.0tov3.4.0for the fetched contributor check scripts.
| - name: Fetch AGT check scripts | ||
| env: | ||
| AGT_REF: v3.3.0 | ||
| AGT_REF: v3.4.0 |
github-actions
Bot
added
branched-main
|
Replaced by #1620 which branched from |
Bumps \AGT_REF\ from \�3.3.0\ to \�3.4.0\ in the contributor check workflow.
v3.4.0 includes dampening for established accounts (age > 1yr, 50+ followers, 20+ repos) to prevent false-positive HIGH risk flags on legitimate contributors like @aaronpowell.
AGT release: https://github.com/microsoft/agent-governance-toolkit/releases/tag/v3.4.0
Fix PR: microsoft/agent-governance-toolkit#1725