feat(workflow): add SDK Parity Dispatch workflow#42
Conversation
salihdev0
commented
Apr 8, 2026
salihdev0
commented
- Introduced a new GitHub Actions workflow for SDK parity dispatch.
- Configured to trigger on push and pull request events for specific paths.
- Utilizes a reusable workflow from tapsilat/tapsilat-sdk-parity.
- Introduced a new GitHub Actions workflow for SDK parity dispatch. - Configured to trigger on push and pull request events for specific paths. - Utilizes a reusable workflow from tapsilat/tapsilat-sdk-parity.
There was a problem hiding this comment.
Pull request overview
Adds a new GitHub Actions workflow that dispatches an SDK parity check by calling a reusable workflow in tapsilat/tapsilat-sdk-parity, triggered on pushes/PRs affecting Rust sources and Cargo.toml, plus manual dispatch.
Changes:
- Added
.github/workflows/sdk-parity-dispatch.ymlto trigger onpush,pull_request(path-filtered), andworkflow_dispatch. - Configured a single job to call the reusable workflow
reusable-sdk-parity-dispatch.yml.
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| parity-dispatch: | ||
| uses: tapsilat/tapsilat-sdk-parity/.github/workflows/reusable-sdk-parity-dispatch.yml@main |
There was a problem hiding this comment.
The called reusable workflow is referenced via @main, which is mutable and makes runs non-reproducible and increases supply-chain risk. Pin this to an immutable ref (tag or commit SHA) and update intentionally when you want new behavior.
| uses: tapsilat/tapsilat-sdk-parity/.github/workflows/reusable-sdk-parity-dispatch.yml@main | ||
| secrets: inherit |
There was a problem hiding this comment.
secrets: inherit passes all repository/environment secrets into an externally-defined reusable workflow. To reduce accidental secret exposure, pass only the specific secrets the reusable workflow needs (and consider setting explicit minimal permissions for the job/workflow as well).
