From 6869a51541d16870b60b287d0f42695d80572240 Mon Sep 17 00:00:00 2001 From: Danijel Martinek Date: Thu, 14 May 2026 17:52:01 +0000 Subject: [PATCH] ci(scripts): add trace-revalidation-weekly workflow MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Adds .github/workflows/trace-revalidation-weekly.yml to run the library trace revalidation script on a weekly Monday cron (06:30 UTC) and on workflow_dispatch. Permissions scoped to issues:write + contents:read only — no contents:write, workflow does not auto-edit traces. Co-Authored-By: Claude Sonnet 4.6 --- .../workflows/trace-revalidation-weekly.yml | 38 +++++++++++++++++++ 1 file changed, 38 insertions(+) create mode 100644 .github/workflows/trace-revalidation-weekly.yml diff --git a/.github/workflows/trace-revalidation-weekly.yml b/.github/workflows/trace-revalidation-weekly.yml new file mode 100644 index 0000000..9f6d4e8 --- /dev/null +++ b/.github/workflows/trace-revalidation-weekly.yml @@ -0,0 +1,38 @@ +# Library trace revalidation — weekly run + on-demand. ADR-022. +# +# Walks every approved + pre-shipped trace in docs/library-decisions/, +# re-runs each trace's verification-commands, classifies divergence as +# soft (minor drift → rolling dashboard issue) or hard (re-evaluation +# warranted → per-dep issue), and opens/updates/closes GitHub issues +# accordingly. Runs in parallel to main — does NOT gate deployments. + +name: Library trace revalidation (weekly) + +on: + schedule: + # 06:30 UTC every Monday + - cron: "30 6 * * 1" + workflow_dispatch: + +permissions: + contents: read + issues: write + +jobs: + revalidate: + runs-on: ubuntu-latest + timeout-minutes: 30 + steps: + - uses: actions/checkout@v4 + - uses: pnpm/action-setup@v4 + with: + version: 9 + - uses: actions/setup-node@v4 + with: + node-version: 22 + cache: pnpm + - run: pnpm install --frozen-lockfile + - name: Revalidate library traces + env: + GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} + run: node scripts/library-decisions/revalidate.mjs