The GitHub Actions job "prek" on airflow-steward.git/feat/security-issue-triage has failed. Run started by GitHub user potiuk (triggered by potiuk).
Head commit for run: 23079c02fd10daab1d04a7cdf97071d6e890bafa / Jarek Potiuk <[email protected]> feat(security-issue-triage): new skill for initial-triage discussions Captures the workflow that previously lived in the security team's collective knowledge: for each tracker still in `Needs triage`, read the body + comments, apply the Security Model framing, classify the disposition, and post a discussion-starter comment that invites team review. The skill is read-only on tracker state — it never flips `needs triage` to a scope label, never closes, never allocates a CVE. The valid/invalid decision belongs to team consensus; this skill opens the discussion that produces it. Five disposition classes (Golden Rule 4): - VALID — clear Security Model violation; next: /security-cve-allocate - DEFENSE-IN-DEPTH — real issue but outside the Security Model boundary; next: close + public PR - INFO-ONLY — fact-correct, doesn't violate anything, matches a canned-response shape; next: /security-issue-invalidate with template - NOT-CVE-WORTHY — misframed/circular/by-design; next: /security-issue-invalidate - PROBABLE-DUP — substantive overlap with existing tracker or closed advisory; next: /security-issue-deduplicate Inputs include the standard selector grammar (`triage`, `triage #NNN`, `triage scope:<label>`, `triage CVE-…`) plus a `--retriage` flag for re-litigating passed-triage decisions after new comment activity. Bulk mode (N > 5) uses the same subagent-fanout pattern as security-issue-sync: read-only assessors gather state in parallel; orchestrator classifies + composes + applies sequentially. Composes with: security-issue-import (the on-ramp), security-cve-allocate / security-issue-invalidate / security-issue-deduplicate (the post-consensus actions), security-issue-sync (which applies the label flip + rollup entry once team consensus lands). Co-Authored-By: Claude Opus 4.7 (1M context) <[email protected]> Report URL: https://github.com/apache/airflow-steward/actions/runs/25646584213 With regards, GitHub Actions via GitBox --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
