From 7639a11e53d98f9161dc170e5ac6356870f884ce Mon Sep 17 00:00:00 2001 From: Zelin Date: Fri, 20 Feb 2026 02:42:26 -0800 Subject: [PATCH 1/3] ci: add Dependabot,MegaLinter workflows --- .github/dependabot.yml | 13 +++++++++ .github/workflows/mega-linter.yml | 48 +++++++++++++++++++++++++++++++ 2 files changed, 61 insertions(+) create mode 100644 .github/dependabot.yml create mode 100644 .github/workflows/mega-linter.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..7fa94ed --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,13 @@ +version: 2 +updates: + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "weekly" + labels: + - "dependencies" + open-pull-requests-limit: 5 + groups: + github-actions: + patterns: + - "*" diff --git a/.github/workflows/mega-linter.yml b/.github/workflows/mega-linter.yml new file mode 100644 index 0000000..cfd514f --- /dev/null +++ b/.github/workflows/mega-linter.yml @@ -0,0 +1,48 @@ +--- +# MegaLinter GitHub Action configuration +# https://megalinter.io +name: MegaLinter + +on: + push: + branches: [main, master, dev, staging] + pull_request: + branches: [main, master, dev, staging] + +concurrency: + group: ${{ github.ref }}-${{ github.workflow }} + cancel-in-progress: true + +permissions: read-all + +jobs: + megalinter: + name: MegaLinter + runs-on: ubuntu-latest + permissions: + issues: write + pull-requests: write + steps: + - name: Checkout Code + uses: actions/checkout@v4 + with: + fetch-depth: 0 + + - name: MegaLinter + id: ml + # python will be replaced by the script + uses: oxsecurity/megalinter/flavors/python@v8 + env: + VALIDATE_ALL_CODEBASE: false + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + # Disable linters that are too noisy for most projects + DISABLE_LINTERS: SPELL_CSPELL,COPYPASTE_JSCPD,REPOSITORY_TRIVY,REPOSITORY_CHECKOV,REPOSITORY_GRYPE + + - name: Archive lint reports + if: success() || failure() + uses: actions/upload-artifact@v4 + with: + name: MegaLinter-reports + path: | + megalinter-reports + retention-days: 7 From 11f1c8ecd70ccaa4fd2abbbde4441f46aa625c8f Mon Sep 17 00:00:00 2001 From: Zelin Date: Fri, 20 Feb 2026 02:56:00 -0800 Subject: [PATCH 2/3] fix: add permissions blocks and upgrade MegaLinter to v9 --- .github/workflows/mega-linter.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/mega-linter.yml b/.github/workflows/mega-linter.yml index cfd514f..0194c39 100644 --- a/.github/workflows/mega-linter.yml +++ b/.github/workflows/mega-linter.yml @@ -20,6 +20,7 @@ jobs: name: MegaLinter runs-on: ubuntu-latest permissions: + contents: read issues: write pull-requests: write steps: @@ -31,7 +32,7 @@ jobs: - name: MegaLinter id: ml # python will be replaced by the script - uses: oxsecurity/megalinter/flavors/python@v8 + uses: oxsecurity/megalinter/flavors/python@v9 env: VALIDATE_ALL_CODEBASE: false GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} From a2ccb9a460fe15d9812f97c9afa354c0522365c6 Mon Sep 17 00:00:00 2001 From: Zelin Wan Date: Mon, 23 Feb 2026 01:38:10 -0800 Subject: [PATCH 3/3] chore: remove Dependabot config, migrating to Renovate --- .github/dependabot.yml | 13 ------------- 1 file changed, 13 deletions(-) delete mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml deleted file mode 100644 index 7fa94ed..0000000 --- a/.github/dependabot.yml +++ /dev/null @@ -1,13 +0,0 @@ -version: 2 -updates: - - package-ecosystem: "github-actions" - directory: "/" - schedule: - interval: "weekly" - labels: - - "dependencies" - open-pull-requests-limit: 5 - groups: - github-actions: - patterns: - - "*"