Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 79.65%. Comparing base (7c92744) to head (91dae88).
⚠️ Report is 16 commits behind head on main.

@@            Coverage Diff             @@
##             main    #2486      +/-   ##
==========================================
- Coverage   79.66%   79.65%   -0.01%     
==========================================
  Files         658      658              
  Lines       50418    50420       +2     
  Branches      736      736              
==========================================
- Hits        40163    40160       -3     
- Misses      10175    10180       +5     
  Partials       80       80              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

Please undo the ADD. Hard links like that break builds in offline environments

Please undo the ADD. Hard links like that break builds in offline environments

As @ryan-pratt said, we can't build in a completely offline env anyway. Although some offline envs like to mirror the big package repos (npm, rubygems, etc) but would fail for an individual link like this.

This change will break the ci/cd builds in a program you are on. Undo.

Quality Gate failed

Failed conditions
1 Security Hotspot
C Reliability Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

We should have something in our CI pipeline that verifies the integrity of this file, then. A tar file in the repo is a very easy attack surface

We should have something in our CI pipeline that verifies the integrity of this file, then. A tar file in the repo is a very easy attack surface

Not sure how to "verify" a tar file. They don't give any hash information. We control the file and I have added to the update script a flag about when we need to update this.