ci: Configure SDK compliance capture suite#191
Conversation
|
| compliance: | ||
| name: PostHog SDK compliance tests | ||
| uses: PostHog/posthog-sdk-test-harness/.github/workflows/test-sdk-action.yml@be8b8d5a3f94a249659844e94832e874f049c1e4 | ||
| uses: PostHog/posthog-sdk-test-harness/.github/workflows/test-sdk-action.yml@fix/sdk-harness-options-20260630 |
There was a problem hiding this comment.
Mutable branch reference replaces pinned SHA
The original ref (be8b8d5a3f94a249659844e94832e874f049c1e4) was an immutable commit SHA; the new ref (fix/sdk-harness-options-20260630) is a mutable branch in an external repository. Any force-push or new commit to that branch in PostHog/posthog-sdk-test-harness will silently alter the workflow code executed against this repo's CI — a classic supply-chain risk for reusable-workflow consumers. Once the upstream branch is merged and a stable SHA or tag is available, this should be pinned back to an immutable ref.
posthog-php Compliance ReportDate: 2026-06-30 10:01:40 UTC ✅ All Tests Passed!29/29 tests passed Capture Tests✅ 29/29 tests passed View Details
|
Problem
SDK compliance workflows need explicit harness suite/sdk-type selection and configurable blocking behavior so CI only runs the intended contract checks.
Changes
Testing
docker compose configfor the adapter compose file.git diff --check.Release / changeset
No SDK package changeset: CI/local compliance configuration only.
🤖 Agent context
Autonomy: Human-driven (agent-assisted)
Implemented with Pi using dedicated git worktrees. The change was requested to align SDK compliance harness setup across SDK repositories while keeping non-ready SDKs non-blocking.