Conversation
BREAKING CHANGE: V1 → V2 architecture transition from template validation to project development workflows
- Remove Docker-centric sections and replace with simple development commands - Update quick start to be 3-step process without Docker complexity - Emphasize AI agents and development workflow over containerization - Update version references to v2.0.20260411 - Armored Pangolin - Focus on task commands and quality assurance features
- Update repository policy from local_only to allow marketplace actions - Pin all external actions to specific SHA commits for security: * actions/checkout@8ade135 * astral-sh/setup-uv@d19427a * codecov/codecov-action@015f24e * github/codeql-action@e2b3eaf - Remove unnecessary files: .secrets.baseline, validate-docker.py - Fix CI pipeline while maintaining security best practices Resolves GitHub Actions startup_failure issues in workflows.
Update SHA from d19427ac7c4a6a471caeb4f19c27e9026d98d1d8 to cdfb2ee6dde255817c739680168ad81e184c4bfb (latest valid commit) to resolve GitHub Actions failure.
- Generate uv.lock file required by --locked flag in workflows - Update CI matrix to only test Python 3.13 (project minimum requirement) - Resolves dependency sync failures in GitHub Actions
- Add missing return type annotation to main() function - Replace print statement with proper logging in setup_project.py - Import logging module for proper logging usage
- Add ruff noqa: T201 comment to allow print statements in setup script - Setup scripts legitimately need print for user interaction output - Revert logging changes that were inappropriate for this use case
- Remove ruff: noqa comment and fix properly - Add structured logging with clean output format - Replace all print() calls with logger.info() for proper code quality - Configure logging to output to stdout for user feedback
- Fix import sorting with ruff --fix - Add timezone.utc to datetime.now() calls - Convert type hints from implicit Optional to T | None syntax - Fix line length issues with proper string breaking - Resolve test code style issues (naming, unused vars, line wrapping) - Enhance pytest.raises with match parameter for better error checking All tests pass (4/4) and ruff linting checks are clean
All ruff checks pass locally - triggering CI to confirm remote validation
- Add ValidVerbosity import and type casting in tests - Configure pyright to exclude mutants/ and .mutmut-cache/ directories - Add proper type annotations with cast() for hypothesis tests - Fix intentionally invalid test case with type: ignore comment - All tests pass (5/5) and type checking is clean
- Restore .secrets.baseline file that was incorrectly removed - Generated with detect-secrets scan to establish baseline for known patterns - Fixes CI failure in 'Check for secrets' step - Contains baseline for one false positive in skill documentation
- Fix invalid SHA for astral-sh/setup-uv action (d19427ac -> cdfb2ee6dd) - Remove allow-licenses and deny-licenses conflict by using only allow-licenses - This should resolve both Python Dependency Security and Dependency Review failures
…b default setup The custom CodeQL workflow was failing because GitHub's default CodeQL setup is already enabled for this repository. Removing the custom workflow file resolves the conflict while maintaining security scanning through GitHub's built-in CodeQL functionality. Error was: 'CodeQL analyses from advanced configurations cannot be processed when the default setup is enabled'
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Complete V2 architecture implementation with GitHub Actions CI/CD fixes and simplified development workflow.
Key Changes
🔧 GitHub Actions Fixes
local_onlytoallto enable external marketplace actions🏗️ V2 Architecture
📚 Documentation & Simplification
🧹 File Cleanup
.secrets.baselineandvalidate-docker.pyfilesTesting
Migration Notes
This is a major version (v2.0) representing architectural changes from V1 to V2. Projects using V1 template validation workflows should plan migration to V2 project development workflows.