gnezim/clawsec
1
0
Fork 0
mirror of https://github.com/prompt-security/clawsec.git synced 2026-06-13 05:28:02 +03:00
Code Issues Packages Projects Releases Wiki Activity

fix(attestation): include runtime libs in release sbom (#235)

Browse Source 
* fix(attestation): include runtime libs in release sbom

* ci: verify staged skill release import closure

* fix(release): include missing skill runtime sbom files

* fix(release): require files for import closure

---------

Co-authored-by: David Abutbul <David.a@prompt.security>
This commit is contained in:
David Abutbul
2026-05-17 00:40:12 +03:00
committed by GitHub
parent 1e48a955cc
commit 19c5113511
12 changed files with 206 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/workflows/skill-release.yml
+6
View File
@@ -530,6 +530,9 @@ jobs:
echo " [Dry-run] Removed test signatures from release staging"
fi
# --- Verify staged runtime import closure before archiving ---
python3 scripts/ci/verify_skill_release_import_closure.py "${inner_dir}"
# --- Create zip preserving directory structure ---
zip_name="${skill_name}-v${version}.zip"
(cd "${staging_dir}" && zip -qr "${OLDPWD}/${out_assets}/${zip_name}" .)
@@ -892,6 +895,9 @@ jobs:
cp "$SKILL_PATH/skill.json" "$INNER_DIR/skill.json"
# --- Verify staged runtime import closure before archiving ---
python3 scripts/ci/verify_skill_release_import_closure.py "$INNER_DIR"
# --- Create zip preserving directory structure ---
ZIP_NAME="${SKILL_NAME}-v${VERSION}.zip"
(cd "$STAGING_DIR" && zip -qr "$OLDPWD/release-assets/$ZIP_NAME" .)