From 7a98310e4a3b361ff370ed9a840063df819e266b Mon Sep 17 00:00:00 2001
From: Chris Huber <chubes@extrachill.com>
Date: Wed, 4 Mar 2026 23:46:10 +0000
Subject: [PATCH 1/7] ci: enable changed-scope test mode in PR Homeboy workflow

Set homeboy-action test-scope to changed so PR checks run lint/test/audit on changed impact scope while release workflows remain full-suite.
---
 .github/workflows/homeboy.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/homeboy.yml b/.github/workflows/homeboy.yml
index c792f703..c3b77c02 100644
--- a/.github/workflows/homeboy.yml
+++ b/.github/workflows/homeboy.yml
@@ -48,6 +48,7 @@ jobs:
           extension: wordpress
           commands: lint,test,audit
           lint-changed-only: true
+          test-scope: 'changed'
           component: data-machine
           settings: '{"database_type": "mysql"}'
           php-version: '8.2'

From d931f02e4558dadfa12dc60bc9a9a8de9ee06ebb Mon Sep 17 00:00:00 2001
From: Chris Huber <chubes@extrachill.com>
Date: Thu, 5 Mar 2026 03:56:38 +0000
Subject: [PATCH 2/7] ci: run full homeboy suite on main and enable auto-issue

---
 .github/workflows/homeboy.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/homeboy.yml b/.github/workflows/homeboy.yml
index c3b77c02..da2b3025 100644
--- a/.github/workflows/homeboy.yml
+++ b/.github/workflows/homeboy.yml
@@ -3,6 +3,8 @@ name: Homeboy
 on:
   pull_request:
     branches: [main]
+  push:
+    branches: [main]
 
 permissions:
   contents: read
@@ -49,6 +51,7 @@ jobs:
           commands: lint,test,audit
           lint-changed-only: true
           test-scope: 'changed'
+          auto-issue: ${{ github.event_name != 'pull_request' }}
           component: data-machine
           settings: '{"database_type": "mysql"}'
           php-version: '8.2'

From a570f21490f33726c4f8b0c05aada040659554ae Mon Sep 17 00:00:00 2001
From: Chris Huber <chubes@extrachill.com>
Date: Thu, 5 Mar 2026 04:18:20 +0000
Subject: [PATCH 3/7] ci: split homeboy build and audit jobs

---
 .github/workflows/homeboy.yml | 35 ++++++++++++++++++++++++++++++++---
 1 file changed, 32 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/homeboy.yml b/.github/workflows/homeboy.yml
index da2b3025..aa834133 100644
--- a/.github/workflows/homeboy.yml
+++ b/.github/workflows/homeboy.yml
@@ -11,8 +11,8 @@ permissions:
   pull-requests: write
 
 jobs:
-  homeboy:
-    name: Lint, Test & Audit
+  build:
+    name: Homeboy Build (Lint & Test)
     runs-on: ubuntu-latest
     services:
       mysql:
@@ -48,7 +48,7 @@ jobs:
         with:
           version: 'latest'
           extension: wordpress
-          commands: lint,test,audit
+          commands: lint,test
           lint-changed-only: true
           test-scope: 'changed'
           auto-issue: ${{ github.event_name != 'pull_request' }}
@@ -56,3 +56,32 @@ jobs:
           settings: '{"database_type": "mysql"}'
           php-version: '8.2'
           node-version: '20'
+
+  audit:
+    name: Homeboy Audit
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - name: Setup PHP
+        uses: shivammathur/setup-php@v2
+        with:
+          php-version: '8.2'
+          extensions: mbstring, intl, pdo_sqlite, mysqli
+          tools: composer:v2
+          coverage: none
+
+      - name: Install project dependencies
+        run: composer install --no-interaction --prefer-dist
+
+      - uses: Extra-Chill/homeboy-action@v1
+        with:
+          version: 'latest'
+          extension: wordpress
+          commands: audit
+          auto-issue: ${{ github.event_name != 'pull_request' }}
+          component: data-machine
+          php-version: '8.2'
+          node-version: '20'

From d9e89c28ad5afeee1138ea1cf806e65949f9d9fe Mon Sep 17 00:00:00 2001
From: Chris Huber <chubes@extrachill.com>
Date: Thu, 5 Mar 2026 14:40:34 +0000
Subject: [PATCH 4/7] ci: pin homeboy and scope audit to PR changes

---
 .github/workflows/homeboy.yml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/homeboy.yml b/.github/workflows/homeboy.yml
index aa834133..939a16fd 100644
--- a/.github/workflows/homeboy.yml
+++ b/.github/workflows/homeboy.yml
@@ -46,7 +46,7 @@ jobs:
 
       - uses: Extra-Chill/homeboy-action@v1
         with:
-          version: 'latest'
+          version: '0.56.1'
           extension: wordpress
           commands: lint,test
           lint-changed-only: true
@@ -78,9 +78,10 @@ jobs:
 
       - uses: Extra-Chill/homeboy-action@v1
         with:
-          version: 'latest'
+          version: '0.56.1'
           extension: wordpress
           commands: audit
+          args: ${{ github.event_name == 'pull_request' && format('--changed-since {0}', github.event.pull_request.base.sha) || '' }}
           auto-issue: ${{ github.event_name != 'pull_request' }}
           component: data-machine
           php-version: '8.2'

From 72939bf974c2c6b56ea1f20ee783f5e243d27e78 Mon Sep 17 00:00:00 2001
From: Chris Huber <chubes@extrachill.com>
Date: Thu, 5 Mar 2026 14:47:06 +0000
Subject: [PATCH 5/7] ci: scope PR checks to lint and changed-file audit

---
 .github/workflows/homeboy.yml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/homeboy.yml b/.github/workflows/homeboy.yml
index 939a16fd..36dbddc2 100644
--- a/.github/workflows/homeboy.yml
+++ b/.github/workflows/homeboy.yml
@@ -46,9 +46,9 @@ jobs:
 
       - uses: Extra-Chill/homeboy-action@v1
         with:
-          version: '0.56.1'
+          version: 'latest'
           extension: wordpress
-          commands: lint,test
+          commands: ${{ github.event_name == 'pull_request' && 'lint' || 'lint,test' }}
           lint-changed-only: true
           test-scope: 'changed'
           auto-issue: ${{ github.event_name != 'pull_request' }}
@@ -78,7 +78,7 @@ jobs:
 
       - uses: Extra-Chill/homeboy-action@v1
         with:
-          version: '0.56.1'
+          version: 'latest'
           extension: wordpress
           commands: audit
           args: ${{ github.event_name == 'pull_request' && format('--changed-since {0}', github.event.pull_request.base.sha) || '' }}

From 3f677b689ac73defb8233420423c340f355e1279 Mon Sep 17 00:00:00 2001
From: Chris Huber <chubes@extrachill.com>
Date: Thu, 5 Mar 2026 14:49:34 +0000
Subject: [PATCH 6/7] fix: avoid duplicate changed-since flag in audit job

---
 .github/workflows/homeboy.yml | 1 -
 1 file changed, 1 deletion(-)

diff --git a/.github/workflows/homeboy.yml b/.github/workflows/homeboy.yml
index 36dbddc2..9e3ee52e 100644
--- a/.github/workflows/homeboy.yml
+++ b/.github/workflows/homeboy.yml
@@ -81,7 +81,6 @@ jobs:
           version: 'latest'
           extension: wordpress
           commands: audit
-          args: ${{ github.event_name == 'pull_request' && format('--changed-since {0}', github.event.pull_request.base.sha) || '' }}
           auto-issue: ${{ github.event_name != 'pull_request' }}
           component: data-machine
           php-version: '8.2'

From b3415871ccaca37fae0de5077638e1fc4360fe04 Mon Sep 17 00:00:00 2001
From: Chris Huber <chubes@extrachill.com>
Date: Thu, 5 Mar 2026 14:51:47 +0000
Subject: [PATCH 7/7] ci: run audit only on main pushes

---
 .github/workflows/homeboy.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/homeboy.yml b/.github/workflows/homeboy.yml
index 9e3ee52e..4ce00af8 100644
--- a/.github/workflows/homeboy.yml
+++ b/.github/workflows/homeboy.yml
@@ -59,6 +59,7 @@ jobs:
 
   audit:
     name: Homeboy Audit
+    if: github.event_name != 'pull_request'
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4