Fix some security issues #2289
Merged
Fix some security issues #2289
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Dependency Review✅ No vulnerabilities or license issues found.Scanned Files
|
There was a problem hiding this comment.
Pull Request Overview
This PR appears to be a test update that modifies testing scripts and CI workflow configurations. The changes focus on updating dependency versions and improving test execution reliability.
- Updates Playwright version from unspecified to 1.44.0 with explicit version pinning
- Adds SHA256 hash pinning to GitHub Actions checkout action for enhanced security
- Removes redundant npm install command in favor of npm ci for more reliable builds
Reviewed Changes
Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
| ChatQnA/tests/test_compose_openeuler_on_xeon.sh | Updates Playwright commands to use specific version 1.44.0 and removes redundant npm install |
| .github/workflows/weekly-one-click-test.yml | Adds SHA256 hash to checkout action for security pinning |
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
ZePan110
requested review from
Spycsh,
WenjiaoYue,
ftian1,
lkk12014402,
minmin-intel,
rbrugaro and
yao531441
as code owners
Signed-off-by: ZePan110 <ze.pan@intel.com>
…mples into ze-fix/sec Signed-off-by: ZePan110 <ze.pan@intel.com>
ZePan110
force-pushed
the
ze-fix/sec
branch
from
4011ca0 to
b39ab88
Compare
ZePan110
force-pushed
the
ze-fix/sec
branch
from
b39ab88 to
5bd4674
Compare
Signed-off-by: ZePan110 <ze.pan@intel.com>
for more information, see https://pre-commit.ci
Signed-off-by: ZePan110 <ze.pan@intel.com>
Signed-off-by: ZePan110 <ze.pan@intel.com>
for more information, see https://pre-commit.ci
ZePan110
force-pushed
the
ze-fix/sec
branch
2 times, most recently
from
dc45a1f to
e5ebc7e
Compare
|
Due to the offline status of the epyc CI machine, the CI test timed out and failed |
joshuayao
approved these changes
Oct 21, 2025
chensuyue
approved these changes
Nov 3, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Fix some security issues.
Issues
List the issue or RFC link this PR is working on. If there is no such link, please mark it as
n/a.Type of change
List the type of change like below. Please delete options that are not relevant.
Dependencies
List the newly introduced 3rd party dependency if exists.
Tests
docker and helm test
https://github.com/opea-project/GenAIExamples/actions/runs/18516106845
trivy test
https://github.com/opea-project/GenAIExamples/actions/runs/18514829398
oneclick
http://github.com/opea-project/GenAIExamples/actions/runs/18519811203