Skip to content

Automated Repository Governance Updates#1071

Open
github-actions[bot] wants to merge 1 commit into
mainfrom
automated/repo-governance
Open

Automated Repository Governance Updates#1071
github-actions[bot] wants to merge 1 commit into
mainfrom
automated/repo-governance

Conversation

@github-actions

Copy link
Copy Markdown
Contributor

Automated repository governance updates.

Includes:

  • cleanup automation
  • dependency analysis
  • architecture drift checks
  • duplicate detection
  • maintainability reporting

@github-actions github-actions Bot requested a review from Bryan-Roe as a code owner July 13, 2026 06:00
@stepsecurity-app

Copy link
Copy Markdown
Contributor

Security Policy Alert: Harden Runner Policy Violation

This workflow run has been blocked by StepSecurity's Harden Runner policy.

This workflow run was blocked because one or more jobs are missing the Harden-Runner action, or it is not properly configured, which can introduce agent-bypass risk.

Jobs not protected by Harden Runner:

  • .github/workflows/ossar.yml::ossar-scan

Update the affected jobs so Harden Runner is initialized before any other action or command runs.

For more information, see StepSecurity's Harden Runner documentation.

@stepsecurity-app

Copy link
Copy Markdown
Contributor

Security Policy Alert: Harden Runner Policy Violation

This workflow run has been blocked by StepSecurity's Harden Runner policy.

This workflow run was blocked because one or more jobs are missing the Harden-Runner action, or it is not properly configured, which can introduce agent-bypass risk.

Jobs not protected by Harden Runner:

  • .github/workflows/docs.yml::build-docs

Update the affected jobs so Harden Runner is initialized before any other action or command runs.

For more information, see StepSecurity's Harden Runner documentation.

@stepsecurity-app

Copy link
Copy Markdown
Contributor

Security Policy Alert: Harden Runner Policy Violation

This workflow run has been blocked by StepSecurity's Harden Runner policy.

This workflow run was blocked because one or more jobs are missing the Harden-Runner action, or it is not properly configured, which can introduce agent-bypass risk.

Jobs not protected by Harden Runner:

  • .github/workflows/dependabot-auto-label.yml::dependabot

Update the affected jobs so Harden Runner is initialized before any other action or command runs.

For more information, see StepSecurity's Harden Runner documentation.

@stepsecurity-app

Copy link
Copy Markdown
Contributor

Security Policy Alert: Harden Runner Policy Violation

This workflow run has been blocked by StepSecurity's Harden Runner policy.

This workflow run was blocked because one or more jobs are missing the Harden-Runner action, or it is not properly configured, which can introduce agent-bypass risk.

Jobs not protected by Harden Runner:

  • .github/workflows/dependabot-auto-merge.yml::dependabot

Update the affected jobs so Harden Runner is initialized before any other action or command runs.

For more information, see StepSecurity's Harden Runner documentation.

@Bryan-Roe Bryan-Roe enabled auto-merge (squash) July 13, 2026 23:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant