pezkuwichain/pezkuwi-sdk
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fix(ci): fix Docker push permissions, macOS disk space, and audit summary overflow

Browse Source 
- build-publish-images: replace silent sudo chown failure (2>/dev/null || true)
  with proper error handling and fallback cleanup for all 7 push jobs.
  Root cause: container build jobs create root-owned files, non-container push
  jobs on runner2 couldn't sudo chown without sudoers config.
- tests-misc: add disk cleanup step to cargo-check-all-crate-macos job to free
  space before cargo check (remove Android SDK, old CLT SDKs, etc.)
- security-audit: truncate cargo-audit output to 500 lines before writing to
  GITHUB_STEP_SUMMARY to avoid the 1MB size limit crash.
This commit is contained in:
Kurdistan Tech Ministry
2026-03-02 13:58:38 +03:00
parent 233f6fcb9d
commit f8c4bca688
3 changed files with 59 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/workflows/security-audit.yml
+5 -1
View File
@@ -60,7 +60,11 @@ jobs:
if [ $RESULT -ne 0 ]; then
echo "### Vulnerabilities found" >> $GITHUB_STEP_SUMMARY
echo '```' >> $GITHUB_STEP_SUMMARY
cat audit-output.txt >> $GITHUB_STEP_SUMMARY
# Truncate output to avoid GITHUB_STEP_SUMMARY 1MB limit
head -500 audit-output.txt >> $GITHUB_STEP_SUMMARY
if [ "$(wc -l < audit-output.txt)" -gt 500 ]; then
echo "... (truncated, see full output in job logs)" >> $GITHUB_STEP_SUMMARY
fi
echo '```' >> $GITHUB_STEP_SUMMARY
exit $RESULT
else