File tree Expand file tree Collapse file tree 2 files changed +12
-1
lines changed
Expand file tree Collapse file tree 2 files changed +12
-1
lines changed Original file line number Diff line number Diff line change 1+ # MCP CI Workflow Rules
2+
3+ - Pin every external action to a full commit SHA and keep the release tag in a comment.
4+ - Do not use floating Python or Docker setup actions in CI/release workflows.
5+ - When updating dependency-related workflow steps, prefer reproducible installs over convenience aliases.
Original file line number Diff line number Diff line change @@ -17,6 +17,12 @@ source .venv/bin/activate # On Windows: .venv\Scripts\activate
1717pip install -e .
1818```
1919
20+ ## Dependency Rules
21+
22+ - Keep Python dependency specifiers exact where this repository already pins them, including test extras and ` build-system ` .
23+ - If ` pyproject.toml ` changes affect resolved packages, verify the result through the lock/install path used by CI.
24+ - Do not introduce floating versions in CI or release automation when exact pins are practical.
25+
2026### Running the MCP Server
2127``` bash
2228# Basic run with stdio transport
@@ -155,4 +161,4 @@ The project uses automated publishing:
155161- ** Minor** (0.2.0 → 0.3.0): New features, enhancements
156162- ** Major** (0.2.0 → 1.0.0): Breaking changes, major releases
157163
158- When implementing features or fixes, evaluate if they warrant a version bump for users to benefit from the changes through the MCP Registry.
164+ When implementing features or fixes, evaluate if they warrant a version bump for users to benefit from the changes through the MCP Registry.
You can’t perform that action at this time.
0 commit comments