chore(release): 7.0.0 (#1957 )

Bump the wrapper submodule (src/scripts) to the latest main (bad8df5), which fetches the Codecov Uploader PGP key from the codecovsecops Keybase account, and cut a new major version. Co-authored-by: Cursor <cursoragent@cursor.com>
ci: remove Enforce License Compliance workflow (#1950 )
2026-06-28 18:06:58 +00:00 · 2026-06-06 20:43:45 -05:00 · 2026-05-22 06:26:10 -06:00
6 changed files with 18 additions and 22 deletions
--- a/.github/workflows/enforce-license-compliance.yml
+++ b/.github/workflows/enforce-license-compliance.yml
@@ -1,14 +0,0 @@
-name: Enforce License Compliance
-
-on:
-  pull_request:
-    branches: [main]
-
-jobs:
-  enforce-license-compliance:
-    runs-on: ubuntu-latest
-    steps:
-      - name: 'Enforce License Compliance'
-        uses: getsentry/action-enforce-license-compliance@57ba820387a1a9315a46115ee276b2968da51f3d # main
-        with:
-          fossa_api_key: ${{ secrets.FOSSA_API_KEY }}
--- a/6
+++ b/6
@@ -1,7 +1,7 @@
 deploy:
 	$(eval VERSION := $(shell cat src/version))
-	git tag -d v6
-	git push origin :v6
-	git tag v6
+	git tag -d v7
+	git push origin :v7
+	git tag v7
 	git tag v$(VERSION) -s -m ""
 	git push origin --tags
--- a/README.md
+++ b/README.md
@@ -6,6 +6,10 @@

 ### Easily upload coverage reports to Codecov from GitHub Actions

+## v7 Release
+
+`v7` of the Codecov GitHub Action bumps the [Codecov Wrapper](https://github.com/codecov/wrapper) submodule, which now fetches the Codecov Uploader PGP verification key from the `codecovsecops` Keybase account.
+
 ## v6 Release

 `v6` of the Codecov GitHub Action support node24
--- a/dist/codecov.sh
+++ b/dist/codecov.sh
@@ -37,7 +37,7 @@ g="\033[0;32m"  # info/debug
 r="\033[0;31m"  # errors
 x="\033[0m"
 retry="--retry 5 --retry-delay 2"
-CC_WRAPPER_VERSION="0.2.7"
+CC_WRAPPER_VERSION="0.2.9"
 CC_VERSION="${CC_VERSION:-latest}"
 CC_FAIL_ON_ERROR="${CC_FAIL_ON_ERROR:-false}"
 CC_RUN_CMD="${CC_RUN_CMD:-upload-coverage}"
@@ -69,7 +69,13 @@ then
    exit_if_error "Could not install via pypi."
    exit
  fi
+  if [[ "$CC_CLI_TYPE" == "codecov-cli" ]]; then
+    CC_COMMAND="codecovcli"
+  elif [[ "$CC_CLI_TYPE" == "sentry-prevent-cli" ]]; then
+    CC_COMMAND="sentry-prevent-cli"
+  else
    CC_COMMAND="${CC_CLI_TYPE}"
+  fi
 else
  if [ -n "$CC_OS" ];
  then
@@ -110,7 +116,7 @@ then
    chmod +x "$CC_COMMAND"
  fi
 else
-  echo "$(curl -s https://keybase.io/codecovsecurity/pgp_keys.asc)" | \
+  echo "$(curl -s https://keybase.io/codecovsecops/pgp_keys.asc)" | \
    gpg --no-default-keyring --import
  # One-time step
  say "$g==>$x Verifying GPG signature integrity"
--- a/src/scripts
+++ b/src/scripts
--- a/src/version
+++ b/src/version
@@ -1 +1 @@
-6.0.1
+7.0.0
@@ -1 +1 @@
 .0.1
 .0.0