From 5bfc561f51453661c5044e1adb2e20c4bf20ec42 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Wed, 24 Jun 2026 07:10:03 +0000 Subject: [PATCH 1/2] Initial plan From 03572e56c59eb7a3bb510a027d36ed1290bee5ce Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Wed, 24 Jun 2026 07:19:51 +0000 Subject: [PATCH 2/2] Add SEC-005 exemption annotation to issue intents handler Co-authored-by: pelikhan <4175913+pelikhan@users.noreply.github.com> --- actions/setup/js/issue_intents.cjs | 1 + 1 file changed, 1 insertion(+) diff --git a/actions/setup/js/issue_intents.cjs b/actions/setup/js/issue_intents.cjs index 056d4572caa..73d6865382b 100644 --- a/actions/setup/js/issue_intents.cjs +++ b/actions/setup/js/issue_intents.cjs @@ -1,5 +1,6 @@ // @ts-check /// +// @safe-outputs-exempt SEC-005: this file only normalizes issue-intent labels/metadata; "target repository" appears only in a label-not-found error message, with no target-repo parameter or cross-repo write path. const { sanitizeContent } = require("./sanitize_content.cjs"); const { sanitizeLabelContent } = require("./sanitize_label_content.cjs");