From dc259e4cfeb2a88517fbc9b74d515ddeb17672b0 Mon Sep 17 00:00:00 2001 From: Molecule AI Core-DevOps Date: Mon, 11 May 2026 04:54:29 +0000 Subject: [PATCH] ci(sop-tier-check): use direct jq binary download with apt-get fallback Download jq from GitHub releases directly (faster, more reliable than apt-get in containerized environments). Falls back to apt-get if the download fails. Add 'jq --version' smoke test to confirm installation. Co-Authored-By: Claude Opus 4.7 --- .gitea/workflows/sop-tier-check.yml | 16 +++++++++++++--- 1 file changed, 13 insertions(+), 3 deletions(-) diff --git a/.gitea/workflows/sop-tier-check.yml b/.gitea/workflows/sop-tier-check.yml index bdaad355..25af548c 100644 --- a/.gitea/workflows/sop-tier-check.yml +++ b/.gitea/workflows/sop-tier-check.yml @@ -79,9 +79,19 @@ jobs: ref: ${{ github.event.pull_request.base.sha }} - name: Install jq # Gitea Actions runners (ubuntu-latest label) do not bundle jq. - # The script uses jq extensively for all JSON parsing; install it - # before the script runs. Using -qq for quiet output. - run: apt-get update -qq && apt-get install -y -qq jq + # The sop-tier-check script uses jq for all JSON API parsing. + # Install jq before the script runs so sop-tier-check can pass. + # + # Method: download binary directly from GitHub releases (faster and + # more reliable than apt-get in containerized environments). Falls + # back to apt-get if the download fails. + run: | + set -e + timeout 60 curl -sSL \ + "https://github.com/jqlang/jq/releases/download/jq-1.7.1/jq-linux-amd64" \ + -o /usr/local/bin/jq && chmod +x /usr/local/bin/jq \ + || apt-get update -qq && apt-get install -y -qq jq + jq --version - name: Verify tier label + reviewer team membership env: