From 344f06ffd732ac585bf7600749dcd4fd0bbd7f3a Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Mon, 6 Oct 2025 05:34:22 +0000 Subject: [PATCH 1/2] Initial plan From 24518f6fe740ccb85813d2cc18d12759a095adbd Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Mon, 6 Oct 2025 05:37:05 +0000 Subject: [PATCH 2/2] Add Aikido Safe Chain workflow for malware protection Co-authored-by: ryota-murakami <5501268+ryota-murakami@users.noreply.github.com> --- .github/workflows/safe-chain.yml | 47 ++++++++++++++++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 .github/workflows/safe-chain.yml diff --git a/.github/workflows/safe-chain.yml b/.github/workflows/safe-chain.yml new file mode 100644 index 00000000..2f52b65e --- /dev/null +++ b/.github/workflows/safe-chain.yml @@ -0,0 +1,47 @@ +name: Safe Chain +on: + push: + branches: + - main + pull_request: + branches: + - main +jobs: + safe-chain: + runs-on: ubuntu-latest + steps: + - name: Checkout + uses: actions/checkout@v3 + + - name: Install Node.js + uses: actions/setup-node@v3 + with: + node-version: 18 + + - uses: pnpm/action-setup@v2 + name: Install pnpm + with: + version: 8 + run_install: false + + - name: Get pnpm store directory + shell: bash + run: | + echo "STORE_PATH=$(pnpm store path --silent)" >> $GITHUB_ENV + + - uses: actions/cache@v3 + name: Setup pnpm cache + with: + path: ${{ env.STORE_PATH }} + key: ${{ runner.os }}-pnpm-store-${{ hashFiles('**/pnpm-lock.yaml') }} + restore-keys: | + ${{ runner.os }}-pnpm-store- + + - name: Install Aikido Safe Chain + run: npm install -g @aikidosec/safe-chain + + - name: Setup Aikido Safe Chain for CI + run: safe-chain setup-ci + + - name: Install dependencies with Safe Chain protection + run: pnpm install