Skip to content

🌿 Fern Regeneration -- August 29, 2025 #30

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Aug 29, 2025
Merged

🌿 Fern Regeneration -- August 29, 2025 #30

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
15 changes: 0 additions & 15 deletions .devcontainer/devcontainer.json
View file
Open in desktop

This file was deleted.

1 change: 1 addition & 0 deletions .fernignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
# Specify files that shouldn't be modified by Fern
96 changes: 19 additions & 77 deletions .github/workflows/ci.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,88 +1,30 @@
name: CI
on:
push:
branches-ignore:
- 'generated'
- 'codegen/**'
- 'integrated/**'
- 'stl-preview-head/**'
- 'stl-preview-base/**'
pull_request:
branches-ignore:
- 'stl-preview-head/**'
- 'stl-preview-base/**'
name: ci

jobs:
lint:
timeout-minutes: 10
name: lint
runs-on: ${{ github.repository == 'stainless-sdks/browser-use-typescript' && 'depot-ubuntu-24.04' || 'ubuntu-latest' }}
if: github.event_name == 'push' || github.event.pull_request.head.repo.fork
steps:
- uses: actions/checkout@v4

- name: Set up Node
uses: actions/setup-node@v4
with:
node-version: '20'
on: [push]

- name: Bootstrap
run: ./scripts/bootstrap

- name: Check types
run: ./scripts/lint
jobs:
compile:
runs-on: ubuntu-latest

build:
timeout-minutes: 5
name: build
runs-on: ${{ github.repository == 'stainless-sdks/browser-use-typescript' && 'depot-ubuntu-24.04' || 'ubuntu-latest' }}
if: github.event_name == 'push' || github.event.pull_request.head.repo.fork
permissions:
contents: read
id-token: write
steps:
- uses: actions/checkout@v4
- name: Checkout repo
uses: actions/checkout@v4

- name: Set up Node
uses: actions/setup-node@v4
with:
node-version: '20'
- name: Set up node
uses: actions/setup-node@v3

- name: Bootstrap
run: ./scripts/bootstrap
- name: Compile
run: yarn && yarn build

- name: Check build
run: ./scripts/build

- name: Get GitHub OIDC Token
if: github.repository == 'stainless-sdks/browser-use-typescript'
id: github-oidc
uses: actions/github-script@v6
with:
script: core.setOutput('github_token', await core.getIDToken());

- name: Upload tarball
if: github.repository == 'stainless-sdks/browser-use-typescript'
env:
URL: https://pkg.stainless.com/s
AUTH: ${{ steps.github-oidc.outputs.github_token }}
SHA: ${{ github.sha }}
run: ./scripts/utils/upload-artifact.sh
test:

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}
timeout-minutes: 10
name: test
runs-on: ${{ github.repository == 'stainless-sdks/browser-use-typescript' && 'depot-ubuntu-24.04' || 'ubuntu-latest' }}
if: github.event_name == 'push' || github.event.pull_request.head.repo.fork
steps:
- uses: actions/checkout@v4
runs-on: ubuntu-latest

- name: Set up Node
uses: actions/setup-node@v4
with:
node-version: '20'
steps:
- name: Checkout repo
uses: actions/checkout@v4

- name: Bootstrap
run: ./scripts/bootstrap
- name: Set up node
uses: actions/setup-node@v3

- name: Run tests
run: ./scripts/test
- name: Compile
run: yarn && yarn test
Comment on lines +20 to +30

Check warning

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}

Copilot Autofix

AI 24 days ago

To fix this problem, you should add a permissions key to the workflow at either the root or job level. Since both jobs (compile and test) do not appear to require elevated permissions (they only perform source checkout, dependency install, build, and test), the minimal contents: read permission is sufficient. The best practice here is to add the permissions block at the top level of the workflow, so it applies to all jobs unless specifically overridden, thus adhering to the principle of least privilege.

To implement:

  • Edit .github/workflows/ci.yml
  • Add the following block directly below the name: field and above the on: block to set the minimally required permissions globally: 
    permissions:
  contents: read

No further code or job modifications are necessary for this fix.

Suggested changeset 1
.github/workflows/ci.yml

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -1,4 +1,6 @@
 name: ci
+permissions:
+  contents: read
 
 on: [push]
 
EOF
@@ -1,4 +1,6 @@
name: ci
permissions:
contents: read

on: [push]

Copilot is powered by AI and may make mistakes. Always verify output.
32 changes: 0 additions & 32 deletions .github/workflows/publish-npm.yml
View file
Open in desktop

This file was deleted.

21 changes: 0 additions & 21 deletions .github/workflows/release-doctor.yml
View file
Open in desktop

This file was deleted.

12 changes: 2 additions & 10 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,11 +1,3 @@
.prism.log
node_modules
yarn-error.log
codegen.log
Brewfile.lock.json
dist
dist-deno
/*.tgz
.idea/

.env
.DS_Store
/dist
10 changes: 10 additions & 0 deletions .npmignore
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,10 @@
node_modules
src
tests
.gitignore
.github
.fernignore
.prettierrc.yml
tsconfig.json
yarn.lock
pnpm-lock.yaml
1 change: 0 additions & 1 deletion .nvmrc
View file
Open in desktop

This file was deleted.

7 changes: 0 additions & 7 deletions .prettierignore
View file
Open in desktop

This file was deleted.

7 changes: 0 additions & 7 deletions .prettierrc.json
View file
Open in desktop

This file was deleted.

2 changes: 2 additions & 0 deletions .prettierrc.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
tabWidth: 4
printWidth: 120
3 changes: 0 additions & 3 deletions .release-please-manifest.json
View file
Open in desktop

This file was deleted.

4 changes: 0 additions & 4 deletions .stats.yml
View file
Open in desktop

This file was deleted.

1 change: 0 additions & 1 deletion Brewfile
View file
Open in desktop

This file was deleted.

157 changes: 0 additions & 157 deletions CHANGELOG.md
View file
Open in desktop

This file was deleted.

Loading