The GitHub Actions job "GitHub Actions Security Analysis" on airflow-steward.git/sync-step4-archive-url-combined-apply has succeeded. Run started by GitHub user potiuk (triggered by potiuk).
Head commit for run: 844512dfde96fdffa4f1e2ed75b75fea62c0f856 / Jarek Potiuk <[email protected]> feat(security-issue-sync): wire archive-URL combined apply into Step 4 Complete the post-advisory close-out chain by adding three new action bullets to Step 4 (Apply confirmed changes): 1. Vulnogram state transition (REVIEW → PUBLIC) via the `vulnogram-api-record-publish` CLI from #223. Locked to the "Advisory archived on <users-list>" combined-apply trigger; idempotent on already-PUBLIC records. 2. Advisory short-summary extraction. Fetches the archived advisory email body from lists.apache.org, extracts the prose block between the CVE header and the affected-version-range block, surfaces in the Step 2 proposal so the user can spot misextraction before the body-field update applies. Lands the summary into the *Short public summary for publish* body field BEFORE the Step 5 JSON regen so the re-pushed JSON carries the published summary verbatim. 3. Wrap-up comment (post-close) using the `release-manager-wrap-up-comment.md` template from #224. Posts after the tracker close succeeds. The conditional `MILESTONE_BULLET` placeholder is resolved by a sibling-state check: if every milestone-sibling is closed at this moment, substitute the close-milestone link; otherwise substitute an empty bullet (the milestone close happens when the last sibling tracker reaches this same step). Idempotent via the `<!-- apache-steward: release-manager-wrap-up v1 -->` marker. The orchestration (which action fires in which order) is already documented in #222 on the Step 2b "Advisory archived" row; this PR provides the concrete per-action recipes that the agent reads when executing that combined apply. Closes the upstream side of the no-uv-run-for-RM + sync-drives- lifecycle-close-out arc: - #222: convention + handoff templates - #223: vulnogram-api-record-publish CLI - #224: wrap-up comment template - this PR: Step 4 action recipes that wire it all together Report URL: https://github.com/apache/airflow-steward/actions/runs/26065743334 With regards, GitHub Actions via GitBox --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
