You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Security scan note: the vu1nz review itself completed with 0 findings, but the workflow failed in the final Comment on PR step because GitHub Actions returned Resource not accessible by integration for a forked PR comment.\n\nRelevant local/CI verification remains green:\n- pnpm exec vitest run packages/cli/src/commands/config.test.ts\n- pnpm --filter @profullstack/sh1pt typecheck\n- git diff --check\n- GitHub test check passed\n- Socket checks passed\n\nSo this looks like a workflow permissions issue, not a code/security failure.
Hey @BogdanMaryniuk — the failing vu1nz security scan check is a CI issue on our side (fork PRs get a read-only token and can't post the review comment). I just pushed a fix to master in b3290b8.
Could you rebase this branch on master so the workflow picks up the fix? Something like:
git fetch upstream
git rebase upstream/master
git push --force-with-lease
Update: I went ahead and triggered "Update branch" on this PR, so the rebase isn't needed anymore — CI should re-run with the fixed workflow shortly.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Closes #259\n\n## Summary\n- replaces the
sh1pt config payments liststub with a read-only manifest reader forsh1pt.config.ts\n- shows provider key, adapter id, enabled/disabled state, default provider, and platform fee when configured\n- adds--jsonand--config <path>for scripts/smoke tests\n- covers the parser with focused Vitest tests\n\n## Verification\n-pnpm exec vitest run packages/cli/src/commands/config.test.ts\n-pnpm --filter @profullstack/sh1pt typecheck\n-git diff --check\n-pnpm exec tsx packages/cli/src/index.ts config payments list --config boilerplates/axum-supabase/sh1pt.config.ts\n-pnpm exec tsx packages/cli/src/index.ts config payments list --json --config boilerplates/axum-supabase/sh1pt.config.ts