Bump senzing-factory/build-resources/.github/workflows/cspell.yaml from 3 to 4

[dependabot]

Bumps senzing-factory/build-resources/.github/workflows/cspell.yaml from 3 to 4.

Release notes

Sourced from senzing-factory/build-resources/.github/workflows/cspell.yaml's releases.

4.0.0

What's Changed

• #260 make shared workflows generic, misc cleanup by @​kernelsam in senzing-factory/build-resources#261

Full Changelog: senzing-factory/build-resources@v3...4.0.0

3.0.31

What's Changed

• Bump super-linter/super-linter from 8.4.0 to 8.5.0 by @​dependabot[bot] in senzing-factory/build-resources#257
• if the PR's REFRESHED_AT matches main's value, it only passes if that… by @​kernelsam in senzing-factory/build-resources#259

Full Changelog: senzing-factory/build-resources@v3...3.0.31

3.0.30

What's Changed

• Bump super-linter/super-linter from 8.3.1 to 8.3.2 by @​dependabot[bot] in senzing-factory/build-resources#254
• Bump actions/download-artifact from 6 to 7 by @​dependabot[bot] in senzing-factory/build-resources#250
• Bump super-linter/super-linter from 8.3.2 to 8.4.0 by @​dependabot[bot] in senzing-factory/build-resources#255
• Bump actions/upload-artifact from 5 to 6 by @​dependabot[bot] in senzing-factory/build-resources#249
• Fix regex for filtering GitHub workflows by @​kernelsam in senzing-factory/build-resources#256

Full Changelog: senzing-factory/build-resources@v3...3.0.30

3.0.29

What's Changed

• Bump super-linter/super-linter from 8.3.0 to 8.3.1 by @​dependabot[bot] in senzing-factory/build-resources#252
• Remove validation for natural language in workflows by @​kernelsam in senzing-factory/build-resources#253

Full Changelog: senzing-factory/build-resources@v3...3.0.29

3.0.28

What's Changed

• Add Markdown formatting guidelines to PR template by @​kernelsam in senzing-factory/build-resources#244
• Enhance PR review instructions for local and GitHub by @​kernelsam in senzing-factory/build-resources#246
• 247 dockter 1 by @​docktermj in senzing-factory/build-resources#248

New Contributors

• @​docktermj made their first contribution in senzing-factory/build-resources#248

Full Changelog: senzing-factory/build-resources@v3...3.0.28

3.0.27

Full Changelog: senzing-factory/build-resources@v3...3.0.27

3.0.26

Full Changelog: senzing-factory/build-resources@v3...3.0.26

... (truncated)

Changelog

Sourced from senzing-factory/build-resources/.github/workflows/cspell.yaml's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, markdownlint, and this project adheres to Semantic Versioning.

[Unreleased]

• Thing 5
• Thing 4

[1.0.1] - yyyy-mm-dd

Added to 1.0.1

• Thing 3

Fixed in 1.0.1

• Thing 2

[1.0.0] - yyyy-mm-dd

Added to 1.0.0

• Thing 2
• Thing 1

Commits

• 52eb86b bump tags to v4, slack channel override, missing claude settings (#262)
• 08fb769 #260 make shared workflows generic, misc cleanup (#261)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

Resolves #260
Resolves #262
Resolves #261
Resolves senzing-factory/build-resources#261
Resolves senzing-factory/build-resources#257
Resolves senzing-factory/build-resources#259
Resolves senzing-factory/build-resources#254
Resolves senzing-factory/build-resources#250
Resolves senzing-factory/build-resources#255
Resolves senzing-factory/build-resources#249
Resolves senzing-factory/build-resources#256
Resolves senzing-factory/build-resources#252
Resolves senzing-factory/build-resources#253
Resolves senzing-factory/build-resources#244
Resolves senzing-factory/build-resources#246
Resolves senzing-factory/build-resources#248

[github-actions]

🤖 Claude Code Review

I'll perform an automated code review of this pull request diff.

Code Review Analysis

Overview

This PR updates the GitHub Actions workflow reference from @v3 to @v4 for the cspell workflow.

---

Code Quality

✅ Code follows style guide - The YAML syntax is correct and follows standard GitHub Actions formatting conventions.

✅ No commented-out code - No commented code present.

✅ Meaningful variable names - N/A for this change (workflow reference only).

✅ DRY principle followed - N/A for this change.

✅ Identify Defects - No bugs, logic errors, or security vulnerabilities identified. This is a straightforward version bump of a workflow dependency.

✅ Project memory consideration - No .claude/CLAUDE.md file found in the repository root, so no project-specific guidelines to evaluate against.

---

Testing

⚠️ Testing requirements - N/A for workflow version bumps. However, it would be good practice to:

• Verify that the @v4 version of the cspell workflow exists in the senzing-factory/build-resources repository
• Check the changelog/release notes for breaking changes between v3 and v4
• Ensure the spellcheck job will run successfully with the new version

---

Documentation

✅ Readme updated if needed - No README update needed for internal workflow version bumps.

✅ API docs updated - N/A for workflow changes.

✅ Inline comments - No complex logic requiring comments.

⚠️ CHANGELOG.md - Could not verify if CHANGELOG.md was updated. For dependency version bumps like this, a changelog entry noting the workflow update would be beneficial but may not be strictly required depending on project conventions.

✅ Markdown formatting - N/A, no markdown files modified.

---

Security

✅ No hardcoded credentials - None present.

✅ Input validation - N/A for this change.

✅ Proper error handling - N/A for this change.

✅ No sensitive data in logs - None present.

✅ No license files - No .lic files or AQAAAD strings present in the diff.

---

Summary

Overall Assessment: ✅ APPROVED with minor recommendations

This is a clean, straightforward workflow dependency version bump from v3 to v4. The change is minimal and low-risk.

Recommendations:

1. Verify that senzing-factory/build-resources/.github/workflows/cspell.yaml@v4 exists and review its changelog for any breaking changes
2. Consider adding a brief entry to CHANGELOG.md noting the workflow update (if changelog maintenance is practiced for infrastructure changes)

Files affected:

• .github/workflows/spellcheck.yaml:13

No blocking issues identified. The PR is ready to merge pending verification that the v4 workflow exists and functions as expected.

Automated code review analyzing defects and coding standards

[github-actions]

🤖 Claude Code Review

Code Review Analysis

Summary

This PR updates the GitHub Actions workflow to use version 4 of the cspell workflow instead of version 3. This is a simple dependency version bump.

---

Code Quality

✅ Code follows style guide

The YAML syntax is correct and follows standard GitHub Actions formatting conventions.

✅ No commented-out code

No commented-out code present.

✅ Meaningful variable names

N/A - This is a configuration file with standard GitHub Actions syntax.

✅ DRY principle followed

N/A - Single line change to a workflow reference.

✅ No defects identified

The change is straightforward - updating a workflow version reference from @v3 to @v4. No logic errors, edge cases, or security vulnerabilities introduced.

❌ Project memory configuration

No .claude/CLAUDE.md file exists in this repository, so no project-specific guidelines to check against.

---

Testing

⚠️ Unit tests for new functions

N/A - This is a workflow configuration change, not code. The workflow itself will be tested when it runs on this PR.

⚠️ Integration tests for new endpoints

N/A - No endpoints involved.

⚠️ Edge cases covered

N/A - No code logic changes.

⚠️ Test coverage

N/A - Configuration change only.

---

Documentation

❌ CHANGELOG.md not updated

File: CHANGELOG.md

The CHANGELOG.md has not been updated to reflect this workflow version bump. While this is a minor infrastructure change, the changelog should document the update. The most recent entry is from 2025-04-25 (version 1.1.2), and this change should be added.

Recommendation: Add an entry like:

## [Unreleased]

### Changed
- Updated spellcheck workflow to use cspell v4

✅ Readme update not required

This internal workflow change doesn't require README updates.

✅ Inline comments not needed

YAML workflow files of this simplicity don't require additional comments.

⚠️ API docs

N/A - No API changes.

✅ Markdown formatting

The workflow file (.yaml) is not markdown. N/A.

---

Security

✅ No hardcoded credentials

No credentials present.

✅ Input validation

N/A - Configuration file.

✅ Proper error handling

N/A - GitHub Actions will handle workflow errors.

✅ No sensitive data in logs

No sensitive data introduced.

✅ No license files checked in

No .lic files or AQAAAD strings in the diff.

---

Overall Assessment

Status: ✅ Approved with minor recommendation

This is a clean, low-risk change that updates a workflow dependency. The only improvement would be updating the CHANGELOG.md to document this change, though for infrastructure updates this is sometimes considered optional depending on project conventions.

Risk Level: Low
Recommendation: Approve and merge. Consider adding a CHANGELOG entry for completeness.

Automated code review analyzing defects and coding standards

[github-actions]

🤖 Claude Code Review

Code Review Analysis

Review Checklist Evaluation

Code Quality

✅ Code follows style guide - The change is a simple version bump in a GitHub workflow file. No code style issues to evaluate.

✅ No commented-out code - Clean change with no commented code.

✅ Meaningful variable names - N/A for this change (workflow version reference only).

✅ DRY principle followed - N/A for this change.

✅ Identify Defects - No bugs, logic errors, or security vulnerabilities detected. This is a straightforward dependency version update from v3 to v4 of the cspell workflow.

File: .github/workflows/spellcheck.yaml:13

✅ Project memory (./.claude/CLAUDE.md) - No project-specific Claude configuration violations detected.

Testing

⚠️ Unit tests for new functions - N/A (workflow configuration change, not code).

⚠️ Integration tests for new endpoints - N/A (no endpoints modified).

⚠️ Edge cases covered - N/A (workflow dependency update).

⚠️ Test coverage > 80% - N/A (no testable code changed).

Note: Testing criteria don't apply to GitHub workflow version bumps. However, it would be prudent to verify that the v4 cspell workflow is compatible with your repository's needs.

Documentation

✅ Readme updated if needed - No README update required for internal workflow dependency updates.

✅ API docs updated - N/A (no API changes).

✅ Inline comments for complex logic - N/A (no complex logic added).

❌ CHANGELOG.md updated - The CHANGELOG.md should be updated to reflect this workflow dependency upgrade. This helps track infrastructure changes over time.

Action needed: Add entry to CHANGELOG.md documenting the upgrade from cspell.yaml@v3 to @v4.

✅ Markdown files follow CommonMark - N/A (no markdown files modified in this diff).

Security

✅ No hardcoded credentials - No credentials present.

✅ Input validation implemented - N/A (workflow reference only).

✅ Proper error handling - N/A (no error handling code).

✅ No sensitive data in logs - No sensitive data present.

✅ No license files (.lic) or AQAAAD strings - No license files or suspicious strings detected in the diff.

---

Summary

Overall Assessment: ✅ APPROVED with minor recommendations

This is a clean, straightforward dependency update. The only recommendation is to document this change in the CHANGELOG.md file.

Required Actions:

• Update CHANGELOG.md with this workflow dependency version bump

Recommendations:

• Verify that the v4 cspell workflow maintains compatibility with your project's requirements
• Check if the v4 version introduces any new features or breaking changes that should be noted

The change itself is safe to merge once the CHANGELOG is updated.

Automated code review analyzing defects and coding standards

[github-actions]

🤖 Claude Code Review

Pull Request Code Review

Code Quality

✅ Code follows style guide

The change is a simple version bump in a GitHub Actions workflow file. The syntax and formatting are correct and follow YAML conventions.

✅ No commented-out code

No commented-out code present.

✅ Meaningful variable names

N/A - This is a workflow configuration file with standard GitHub Actions syntax.

✅ DRY principle followed

N/A - Single line change.

✅ Identify Defects

No bugs, logic errors, or security vulnerabilities detected. This is a straightforward dependency version update from v3 to v4 of the shared workflow. The change appears intentional and safe.

✅ Project memory configuration

No .claude/CLAUDE.md file exists in the repository, so no project-specific considerations needed.

Testing

⚠️ Unit tests for new functions

N/A - This is a workflow configuration change, not application code. However, the updated workflow should be verified to run successfully in CI.

⚠️ Integration tests for new endpoints

N/A - No endpoints involved.

⚠️ Edge cases covered

N/A - Workflow dependency update.

⚠️ Test coverage > 80%

N/A - This change doesn't affect code coverage.

Documentation

❌ CHANGELOG.md updated

File: CHANGELOG.md

The CHANGELOG.md has not been updated to reflect this dependency version bump. While this is a minor infrastructure change, the Senzing project appears to follow strict changelog practices. A new entry should be added documenting the update to the cspell workflow from v3 to v4.

Recommendation: Add an entry like:

## [Unreleased]

### Changed

- Updated spellcheck workflow to use cspell.yaml@v4

✅ Readme updated if needed

N/A - This infrastructure change doesn't require README updates.

✅ API docs updated

N/A - No API changes.

✅ Inline comments for complex logic

N/A - Simple version bump doesn't require comments.

✅ Markdown files follow CommonMark

The workflow file is YAML, not Markdown. The existing file is properly formatted with no extra whitespace.

Security

✅ No hardcoded credentials

No credentials present.

✅ Input validation implemented

N/A - No user inputs in this change.

✅ Proper error handling

N/A - Delegated to the reusable workflow.

✅ No sensitive data in logs

No sensitive data present.

✅ No license files checked in

No .lic files or AQAAAD strings detected in this diff.

---

Summary

Overall Assessment: ✅ APPROVED with minor suggestion

This is a clean, straightforward dependency update with one minor documentation gap:

Required Action:

• ❌ Update CHANGELOG.md to document the workflow version bump (.github/workflows/spellcheck.yaml:13)

The change itself is safe and follows proper conventions. The updated workflow should be tested in CI to ensure v4 of the cspell workflow is compatible with this repository.

Automated code review analyzing defects and coding standards