From 77545d4211d68fc8729de46eb6df9f96c1766e16 Mon Sep 17 00:00:00 2001 From: CoderDeltaLAN Date: Fri, 19 Jun 2026 23:58:18 +0100 Subject: [PATCH] ci: smoke current command contract --- .github/workflows/ci.yml | 2 ++ .github/workflows/publish-pypi.yml | 2 ++ CHANGELOG.md | 1 + scripts/post-release-audit.sh | 2 ++ 4 files changed, 7 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 9aa3e49..d73c7b7 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -43,6 +43,8 @@ jobs: agent-rules-kit check tests/fixtures/repositories/single-agent --format json | python -m json.tool agent-rules-kit doctor tests/fixtures/repositories/single-agent agent-rules-kit budget tests/fixtures/repositories/single-agent + agent-rules-kit dedupe tests/fixtures/repositories/multi-agent-overlap + agent-rules-kit conflicts tests/fixtures/repositories/multi-agent-overlap agent-rules-kit explain AIRK-GOV003 agent-rules-kit explain --list diff --git a/.github/workflows/publish-pypi.yml b/.github/workflows/publish-pypi.yml index 8ba0ae8..5f3c14b 100644 --- a/.github/workflows/publish-pypi.yml +++ b/.github/workflows/publish-pypi.yml @@ -71,6 +71,8 @@ jobs: /tmp/agent-rules-kit-wheel-smoke/bin/agent-rules-kit check tests/fixtures/repositories/single-agent --format json | /tmp/agent-rules-kit-wheel-smoke/bin/python -m json.tool /tmp/agent-rules-kit-wheel-smoke/bin/agent-rules-kit doctor tests/fixtures/repositories/single-agent /tmp/agent-rules-kit-wheel-smoke/bin/agent-rules-kit budget tests/fixtures/repositories/single-agent + /tmp/agent-rules-kit-wheel-smoke/bin/agent-rules-kit dedupe tests/fixtures/repositories/multi-agent-overlap + /tmp/agent-rules-kit-wheel-smoke/bin/agent-rules-kit conflicts tests/fixtures/repositories/multi-agent-overlap /tmp/agent-rules-kit-wheel-smoke/bin/agent-rules-kit explain AIRK-GOV003 /tmp/agent-rules-kit-wheel-smoke/bin/agent-rules-kit explain --list diff --git a/CHANGELOG.md b/CHANGELOG.md index 8435e7a..6d803ff 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -22,6 +22,7 @@ This project has a published GitHub Release line, but no stable support or API g ### Changed - Hardened the local post-release audit script to verify package metadata, version parity, source CLI smoke behavior, workflow action inventory, workflow trigger and permission posture, PyPI Trusted Publishing boundaries, Dependabot configuration, forbidden local artifacts, and public-claim guardrails. +- Expanded CI, wheel, and post-release audit smoke coverage for the current `dedupe` and `conflicts` command contract. - Added low-noise Dependabot version updates for `pip` and `github-actions` with monthly checks and capped open PRs. - Triaged CodeQL findings by removing duplicate `re` imports, making deliberate test string concatenation explicit, and avoiding secret-like test fixture naming that produced false-positive clear-text storage alerts. - Synced Dependabot malware alerts and grouped security updates documentation with follow-up Advanced Security UI evidence, while keeping Dependabot version updates deferred. diff --git a/scripts/post-release-audit.sh b/scripts/post-release-audit.sh index 5670b00..e9d9832 100755 --- a/scripts/post-release-audit.sh +++ b/scripts/post-release-audit.sh @@ -204,6 +204,8 @@ PYTHONPATH=src python -m agent_rules_kit.cli --version | grep -Eq '^agent-rules- PYTHONPATH=src python -m agent_rules_kit.cli check tests/fixtures/repositories/single-agent --format json | python -m json.tool >/dev/null PYTHONPATH=src python -m agent_rules_kit.cli doctor tests/fixtures/repositories/single-agent >/dev/null PYTHONPATH=src python -m agent_rules_kit.cli budget tests/fixtures/repositories/single-agent >/dev/null +PYTHONPATH=src python -m agent_rules_kit.cli dedupe tests/fixtures/repositories/multi-agent-overlap >/dev/null +PYTHONPATH=src python -m agent_rules_kit.cli conflicts tests/fixtures/repositories/multi-agent-overlap >/dev/null PYTHONPATH=src python -m agent_rules_kit.cli explain AIRK-GOV003 >/dev/null PYTHONPATH=src python -m agent_rules_kit.cli explain --list >/dev/null printf 'OK: local CLI smoke checks passed.\n'