Skip to content

ci: Replace local RL scanner with reusable action#68

Merged
kailash-b merged 1 commit into
masterfrom
feat/SDK-9492
Jun 9, 2026
Merged

ci: Replace local RL scanner with reusable action#68
kailash-b merged 1 commit into
masterfrom
feat/SDK-9492

Conversation

@kailash-b

@kailash-b kailash-b commented Jun 8, 2026

Copy link
Copy Markdown
Contributor

✏️ Changes

Migrates the ReversingLabs (RL) malware scan from this repo's local composite action to the shared, maintained reusable action in auth0/devsecops-tooling, so all Auth0 SDKs use one common scanner.

  • .github/workflows/rl-secure.yml: The "Run RL Scanner" step now uses auth0/devsecops-tooling/.github/actions/rl-scan@main instead of the local ./.github/actions/rl-scanner. Two new required secrets were added to the workflow_call definition: SIGNAL_HANDLER_DOMAIN and PRODSEC_PYTHON_TOOLS_REPO.
  • .github/workflows/release.yml: Wired the two new secrets (SIGNAL_HANDLER_DOMAIN, PRODSEC_PYTHON_TOOLS_REPO) into all three rl-scanner-* job calls.
  • .github/actions/rl-scanner/action.yml: Deleted - the shared reusable action fully replaces it, and there are no remaining references in the repo.

🔗 References

🎯 Testing

  • This change adds unit test coverage. N/A (CI workflow change)

  • This change adds integration test coverage. N/A (CI workflow change)

  • This change has been tested on the latest version of the platform/language or why not. N/A (CI workflow change)

✅ Checklist

@kailash-b kailash-b requested a review from a team as a code owner June 8, 2026 09:13
@codecov-commenter

codecov-commenter commented Jun 8, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 92.32%. Comparing base (1c1461d) to head (b00d8d7).

Additional details and impacted files 
@@            Coverage Diff             @@
##           master      #68      +/-   ##
==========================================
- Coverage   92.53%   92.32%   -0.21%     
==========================================
  Files          29       29              
  Lines        1433     1433              
  Branches      164      164              
==========================================
- Hits         1326     1323       -3     
- Misses         76       78       +2     
- Partials       31       32       +1

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

kishore7snehil
kishore7snehil requested changes Jun 8, 2026
View reviewed changes
Comment thread .github/workflows/rl-secure.yml
@@ -17,12 +17,16 @@ on:
required: true

@kishore7snehil kishore7snehil Jun 8, 2026

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There is one caller here, rl-secure.yml could be inlined into release.yml and removed.

kishore7snehil
kishore7snehil approved these changes Jun 9, 2026
View reviewed changes

@kishore7snehil kishore7snehil left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@kailash-b kailash-b merged commit 8da27ab into master Jun 9, 2026
3 checks passed
@kailash-b kailash-b deleted the feat/SDK-9492 branch June 9, 2026 06:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kishore7snehil kishore7snehil kishore7snehil approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kailash-b @codecov-commenter @kishore7snehil