Releases: trustabl/actions
Releases · trustabl/actions
v0.1.1
Patch release. Single bug fix for branch resolution on remote URL targets.
v0.1.1
Fixed
- Branch row showed
unknownforhttps://github.com/OWNER/NAMEtargets. The resolver only inspected local checkouts, so URL-based scans had no signal to read. v0.1.1 callsgh api repos/OWNER/NAME --jq .default_branchusing the runner's${{ github.token }}and shows the remote's default branch — the same one trustabl actually clones and scans.
Local-path targets still prefer main → master → HEAD. unknown remains the documented last-resort.
Usage
name: Trustabl
on: [push, pull_request]
permissions:
contents: read
jobs:
scan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: trustabl/actions@v0.1.1v0.1.0
First Marketplace release. Reusable composite Action that runs trustabl — the static reliability/safety analyzer for agent-SDK repos (Claude Agent SDK, OpenAI Agents SDK, Google ADK, MCP) — against any repository and gates the pipeline on readiness, risk, or severity thresholds.
⚠️ 0.x pre-stable. Pin to@v0.1.0(not a sliding@v0). Minor bumps may carry breaking changes until 1.0.0.
Quick start
name: Trustabl
on: [push, pull_request]
permissions:
contents: read
jobs:
scan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: trustabl/actions@v0.1.0
**Full Changelog**: https://github.com/trustabl/actions/commits/v0.1.0