From ca0a928a4cb3911011e868128a5cd90437c12db1 Mon Sep 17 00:00:00 2001 From: Tom Hu <88201630+thomasrockhu-codecov@users.noreply.github.com> Date: Fri, 22 May 2026 06:26:10 -0600 Subject: [PATCH 1/2] ci: remove Enforce License Compliance workflow (#1950) Removes the Enforce License Compliance GitHub Actions workflow. --- .github/workflows/enforce-license-compliance.yml | 14 -------------- 1 file changed, 14 deletions(-) delete mode 100644 .github/workflows/enforce-license-compliance.yml diff --git a/.github/workflows/enforce-license-compliance.yml b/.github/workflows/enforce-license-compliance.yml deleted file mode 100644 index 80c04ac..0000000 --- a/.github/workflows/enforce-license-compliance.yml +++ /dev/null @@ -1,14 +0,0 @@ -name: Enforce License Compliance - -on: - pull_request: - branches: [main] - -jobs: - enforce-license-compliance: - runs-on: ubuntu-latest - steps: - - name: 'Enforce License Compliance' - uses: getsentry/action-enforce-license-compliance@57ba820387a1a9315a46115ee276b2968da51f3d # main - with: - fossa_api_key: ${{ secrets.FOSSA_API_KEY }} From fb8b3582c8e4def4969c97caa2f19720cb33a72f Mon Sep 17 00:00:00 2001 From: Tom Hu <88201630+thomasrockhu-codecov@users.noreply.github.com> Date: Sat, 6 Jun 2026 19:43:45 -0600 Subject: [PATCH 2/2] chore(release): 7.0.0 (#1957) Bump the wrapper submodule (src/scripts) to the latest main (bad8df5), which fetches the Codecov Uploader PGP key from the codecovsecops Keybase account, and cut a new major version. Co-authored-by: Cursor --- Makefile | 6 +++--- README.md | 4 ++++ dist/codecov.sh | 12 +++++++++--- src/scripts | 2 +- src/version | 2 +- 5 files changed, 18 insertions(+), 8 deletions(-) diff --git a/Makefile b/Makefile index 929ae14..442b9a7 100644 --- a/Makefile +++ b/Makefile @@ -1,7 +1,7 @@ deploy: $(eval VERSION := $(shell cat src/version)) - git tag -d v6 - git push origin :v6 - git tag v6 + git tag -d v7 + git push origin :v7 + git tag v7 git tag v$(VERSION) -s -m "" git push origin --tags diff --git a/README.md b/README.md index 6564cd1..245eb55 100644 --- a/README.md +++ b/README.md @@ -6,6 +6,10 @@ ### Easily upload coverage reports to Codecov from GitHub Actions +## v7 Release + +`v7` of the Codecov GitHub Action bumps the [Codecov Wrapper](https://github.com/codecov/wrapper) submodule, which now fetches the Codecov Uploader PGP verification key from the `codecovsecops` Keybase account. + ## v6 Release `v6` of the Codecov GitHub Action support node24 diff --git a/dist/codecov.sh b/dist/codecov.sh index 0b77171..b7eba51 100755 --- a/dist/codecov.sh +++ b/dist/codecov.sh @@ -37,7 +37,7 @@ g="\033[0;32m" # info/debug r="\033[0;31m" # errors x="\033[0m" retry="--retry 5 --retry-delay 2" -CC_WRAPPER_VERSION="0.2.7" +CC_WRAPPER_VERSION="0.2.9" CC_VERSION="${CC_VERSION:-latest}" CC_FAIL_ON_ERROR="${CC_FAIL_ON_ERROR:-false}" CC_RUN_CMD="${CC_RUN_CMD:-upload-coverage}" @@ -69,7 +69,13 @@ then exit_if_error "Could not install via pypi." exit fi - CC_COMMAND="${CC_CLI_TYPE}" + if [[ "$CC_CLI_TYPE" == "codecov-cli" ]]; then + CC_COMMAND="codecovcli" + elif [[ "$CC_CLI_TYPE" == "sentry-prevent-cli" ]]; then + CC_COMMAND="sentry-prevent-cli" + else + CC_COMMAND="${CC_CLI_TYPE}" + fi else if [ -n "$CC_OS" ]; then @@ -110,7 +116,7 @@ then chmod +x "$CC_COMMAND" fi else - echo "$(curl -s https://keybase.io/codecovsecurity/pgp_keys.asc)" | \ + echo "$(curl -s https://keybase.io/codecovsecops/pgp_keys.asc)" | \ gpg --no-default-keyring --import # One-time step say "$g==>$x Verifying GPG signature integrity" diff --git a/src/scripts b/src/scripts index 473e292..bad8df5 160000 --- a/src/scripts +++ b/src/scripts @@ -1 +1 @@ -Subproject commit 473e2924695f5dbe1cca4a5f6f8a7182c2ddadc5 +Subproject commit bad8df56cd845fa9c6115a924bbd3215e1926ec8 diff --git a/src/version b/src/version index 5fe6072..66ce77b 100644 --- a/src/version +++ b/src/version @@ -1 +1 @@ -6.0.1 +7.0.0