Skip to content
Pull Request

security: add tag ancestry verification to release workflows #5954

Sign in to view logs

security: add tag ancestry verification to release workflows

security: add tag ancestry verification to release workflows #5954

Re-run triggered February 20, 2026 22:55
@zackverhamzackverham
#3585
add-tag-ancestry-verification
Status Success
Total duration 13m 41s
Artifacts 10

pull-request.yaml

on: pull_request
detect-changes
4s
detect-changes
lint  /  lint
1m 49s
lint / lint
build  /  build
2m 8s
build / build
Matrix: agent / native
Matrix: vscode / native
home-view-unit-tests  /  test
57s
home-view-unit-tests / test
generate-licenses  /  license-check
1m 9s
generate-licenses / license-check
package  /  vscode
4m 59s
package / vscode
archive  /  archive
41s
archive / archive
Matrix: e2e / cypress
upload  /  upload
1m 7s
upload / upload
Fit to window
Zoom out
Zoom in

Annotations

4 warnings
Sensitive data should not be used in the ARG or ENV commands: test/e2e/Dockerfile.base#L123
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
Sensitive data should not be used in the ARG or ENV commands: test/e2e/Dockerfile.base#L113
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "GH_DOWNLOAD_TOKEN") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
e2e / e2e (preview): test/e2e/tests/workbench/positron/deployments.cy.js#L53
Unexpected pending mocha test
e2e / e2e (preview): test/e2e/tests/deployments.cy.js#L61
Unexpected pending mocha test

Artifacts

Produced during runtime
Name Size Digest
posit-dev~publisher~25R86B.dockerbuild
32.4 KB
sha256:36e668a50815dd9966571047230ce943c50249822ce188c5f37cac3640c0e49b