From 7eb509db1486a65a198dd62683d6830e98476707 Mon Sep 17 00:00:00 2001 From: Aiden Cline Date: Wed, 10 Dec 2025 21:45:46 -0600 Subject: ci: rm bash tool from opencode ci workflow, reduce risks --- .github/workflows/opencode.yml | 1 + 1 file changed, 1 insertion(+) (limited to '.github/workflows') diff --git a/.github/workflows/opencode.yml b/.github/workflows/opencode.yml index 44c8d4a58..4c75ad2e0 100644 --- a/.github/workflows/opencode.yml +++ b/.github/workflows/opencode.yml @@ -29,5 +29,6 @@ jobs: uses: sst/opencode/github@latest env: OPENCODE_API_KEY: ${{ secrets.OPENCODE_API_KEY }} + OPENCODE_PERMISSION: '{"bash": "deny"}' with: model: opencode/claude-haiku-4-5 -- cgit v1.2.3 From c211b22a45b2d86d11594034013c5301b82172a8 Mon Sep 17 00:00:00 2001 From: Dax Raad Date: Thu, 11 Dec 2025 01:15:34 -0500 Subject: update --- .github/workflows/publish.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to '.github/workflows') diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index eea0e21ae..14078661c 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -55,7 +55,7 @@ jobs: - name: Install OpenCode if: inputs.bump || inputs.version - run: curl -fsSL https://opencode.ai/install | bash + run: bun i -g opencode-ai@1.0.143 - name: Login to GitHub Container Registry uses: docker/login-action@v3 -- cgit v1.2.3