Create qcom-preflight-checks.yaml by Sandhya1236 · Pull Request #144 · qualcomm-linux/kernel-config

Sandhya1236 · 2026-03-07T20:50:26Z

This PR adds the Qualcomm QC Preflight Checks workflow using the shared orchestrator: qcom-reusable-workflows/reusable-qcom-preflight-checks-orchestrator.yml@v2

The workflow enables:

Semgrep scan
Dependency review
Repolinter check
Copyright/license check
Commit email check

These checks help standardize code quality and security validation across the repository.

mynameistechno · 2026-03-09T21:50:47Z

@Sandhya1236 can you address the issue Repolinter found? If you click on the failed check and expand the repolinter output you can see the one Failing error is the readme is not referencing the license file

This PR adds the Qualcomm QC Preflight Checks workflow using the shared orchestrator: qcom-reusable-workflows/reusable-qcom-preflight-checks-orchestrator.yml@v2 The workflow enables: - Semgrep scan - Dependency review - Repolinter check - Copyright/license check - Commit email check These checks help standardize code quality and security validation across the repository. Signed-off-by: Sandhya Adavikolanu <sadaviko@qti.qualcomm.com>

njjetha

LGTM!

njjetha

LGTM!

quic-viskuma · 2026-04-06T07:22:13Z

.github/workflows/qcom-preflight-checks.yaml

+    name: Run QC Preflight Checks
+    uses: qualcomm/qcom-reusable-workflows/.github/workflows/reusable-qcom-preflight-checks-orchestrator.yml@v2
+    with:
+      enable-semgrep-scan: true


need to disable semgrep scan for Kernel

@quic-viskuma but isn't this particular workflow going to run on this kernel-config repo? I.e. PRs to kernel-config will trigger this workflows based on the file path. Or do we also use the workflow files defined here in Coral CI + kernel?

For kernel, I don't think any of the below checks make sense. So, I think we should enable this workflow only for kernel-config itself, but for kernel we prob don't want to run any of these as they are meant for QC-authored projects, not upstream projects with their own guidelines.

Sandhya1236 force-pushed the Add-Qualcomm-QC-Preflight-Checks-Workflow branch from 744690b to 8969a32 Compare March 7, 2026 20:52

mynameistechno mentioned this pull request Mar 9, 2026

Add dependabot.yml to automate GitHub actions dependency updates #146

Closed

Sandhya1236 force-pushed the Add-Qualcomm-QC-Preflight-Checks-Workflow branch 8 times, most recently from a21f353 to d37a1e1 Compare March 10, 2026 00:22

Sandhya1236 force-pushed the Add-Qualcomm-QC-Preflight-Checks-Workflow branch from d37a1e1 to 34b7f4a Compare March 10, 2026 08:02

njjetha assigned Sandhya1236 Mar 31, 2026

njjetha requested review from mynameistechno, njjetha and sgaud-quic March 31, 2026 06:17

njjetha approved these changes Mar 31, 2026

View reviewed changes

njjetha approved these changes Apr 1, 2026

View reviewed changes

quic-viskuma reviewed Apr 6, 2026

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Create qcom-preflight-checks.yaml#144

Create qcom-preflight-checks.yaml#144
Sandhya1236 wants to merge 1 commit intoqualcomm-linux:mainfrom
Sandhya1236:Add-Qualcomm-QC-Preflight-Checks-Workflow

Sandhya1236 commented Mar 7, 2026

Uh oh!

mynameistechno commented Mar 9, 2026

Uh oh!

njjetha left a comment

Uh oh!

njjetha left a comment

Uh oh!

quic-viskuma Apr 6, 2026

Uh oh!

mynameistechno Apr 6, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Conversation

Sandhya1236 commented Mar 7, 2026

Uh oh!

mynameistechno commented Mar 9, 2026

Uh oh!

njjetha left a comment

Choose a reason for hiding this comment

Uh oh!

njjetha left a comment

Choose a reason for hiding this comment

Uh oh!

quic-viskuma Apr 6, 2026

Choose a reason for hiding this comment

Uh oh!

mynameistechno Apr 6, 2026

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants