(fineract-consumer-facing) branch main updated (1ef91d2 -> 5354017)

Sun, 24 May 2026 09:15:24 -0700 

This is an automated email from the ASF dual-hosted git repository.

jdailey pushed a change to branch main
in repository https://gitbox.apache.org/repos/asf/fineract-consumer-facing.git


    from 1ef91d2  Merge pull request #1 from apache/jdailey-patch-1
     add 44c29b1  chore: implement Apache security baseline and CI workflows
     add 44e0270  chore: refine CI triggers for all-branch pushes and main-only 
PRs
     add dd5f070  fix: update GitHub Action SHAs to verified stable versions
     add ababa30  fix: remove javascript-typescript from CodeQL matrix
     add fa2027c  chore: fix security findings in Dependabot and workflows
     add 170ac47  fix: resolve Apache RAT scan failure and deprecation warnings
     add c127b49  fix: provide GH_TOKEN to zizmor to resolve 403 Forbidden error
     add aaeda33  fix: resolve zizmor 403 error by expanding permissions and 
using token input
     add 52ea770  Fix Zizmor
     add 52b1883  chore: optimize CodeQL to minimize API rate limit usage
     add 28ff797  chore: optimize security workflows to minimize GitHub API 
usage
     add 2019cb9  chore: further optimize RAT scan workflow
     add dc3c992  fix: use correct zizmor-action input for offline mode
     add 493f1fe  fix: use correct default-days syntax for Dependabot cooldown
     add 2b6d689  chore: aggressively optimize CodeQL to mitigate API rate 
limits
     new 5354017  Merge pull request #2 from Aman-Mittal/setup-ci-security

The 1 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 .asf.yaml                                 | 17 +++++++
 .github/dependabot.yml                    | 66 ++++++++++++++++++++++++
 .github/workflows/apache-rat.yml          | 66 ++++++++++++++++++++++++
 .github/workflows/asf-allowlist-check.yml | 49 ++++++++++++++++++
 .github/workflows/codeql.yml              | 83 +++++++++++++++++++++++++++++++
 .github/workflows/zizmor.yml              | 61 +++++++++++++++++++++++
 .rat-excludes                             | 24 +++++++++
 README.md                                 | 21 +++++++-
 8 files changed, 385 insertions(+), 2 deletions(-)
 create mode 100644 .github/dependabot.yml
 create mode 100644 .github/workflows/apache-rat.yml
 create mode 100644 .github/workflows/asf-allowlist-check.yml
 create mode 100644 .github/workflows/codeql.yml
 create mode 100644 .github/workflows/zizmor.yml
 create mode 100644 .rat-excludes

Reply via email to