Merge branch 'main' into test/add-visual-tests-to-donations-(and-add-…

…aria-attribute)

.github/workflows/coverage.yml

@@ -12,8 +12,6 @@ env:
 jobs:
   test-with-coverage:
     runs-on: ubuntu-22.04
-    env:
-      APPLITOOLS_API_KEY: ${{ secrets.APPLITOOLS_API_KEY }}
     steps:
       - uses: actions/checkout@v3
       - name: Use Node.js

.github/workflows/validate.yaml

@@ -64,6 +64,8 @@ jobs:
     needs: build
     env:
       APPLITOOLS_API_KEY: ${{ secrets.APPLITOOLS_API_KEY }}
+      APPLITOOLS_LOG_DIR: ./logs
+      APPLITOOLS_SHOW_LOGS: true
     steps:
       - name: Download artifact
         uses: actions/download-artifact@v4
@@ -86,8 +88,6 @@ jobs:
       - name: Run test
         run: npm test
       - name: Run Storybook tests
-        env:
-          APPLITOOLS_BATCH_ID: ${{ github.sha }}
         if: env.APPLITOOLS_API_KEY
         run: npx -y @applitools/eyes-storybook --storybook-url http://localhost:3000/storybook/index.html
       - name: Prepare playwright artifact directory
@@ -102,6 +102,14 @@ jobs:
         with:
           name: playwright
           path: playwright-artifact
+      - name: upload logs if exists
+        if: always()
+        uses: actions/upload-artifact@v4
+        with:
+          name: logs
+          path: logs
+          if-no-files-found: warn
+
 
   publish-test-results:
     runs-on: ubuntu-latest

SECURITY.md

@@ -0,0 +1,15 @@
+# Security Policy
+
+First of all, thank you! The fast you're here reading this tells what a great person you are. We truly appreciate your commitment toward a safer web for everyone.
+
+## Supported Versions
+
+Latest - since only the latest version is deployed to production, please avoid submitting security disclousers on older releases
+
+## Reporting a Vulnerability
+
+Please contact us on info@hasadna.org.il
+We appreciate responsible coordinated disclosures.
+If you didn't recieve any update within a week, or it's an urgent matter we should immidiatly fix, please send a copy to noam.gaash@gmail.com.
+
+Thank you