ci: add validation guard to generate-keys workflow

[rishiraj38]

Description

This PR adds a validation guard to the daily generate-keys.yml workflow. This ensures that any downloaded permissions spreadsheet file is valid and correctly formatted before it gets automatically committed to the repository, preventing corrupted files or Google Sheets error pages from breaking the site.

Changes

• Updated the download step to use the curl -f flag to fail immediately on HTTP error status codes.
• Added a validation check using grep to ensure keys.csv contains the expected column headers (Category,Function,Feature).
• Exits early with exit 1 if validation fails, preventing corrupted files from being committed.

Signed commits

• Yes, I signed my commits.

[welcome]

Yay, your first pull request! 👍 A contributor will be by to give feedback soon. In the meantime, please review the Layer5 Community Welcome Guide and sure to join the community Slack.
Be sure to double-check that you have signed your commits. Here are instructions for making signing an implicit activity while peforming a commit.

[gemini-code-assist]

Note

Gemini is unable to generate a review for this pull request due to the file types involved not being currently supported.

[github-actions]

PR Preview Action v1.6.3
Preview removed because the pull request was closed.
2026-06-24 18:18 UTC

[welcome]

        Thank you for contributing to the Layer5 community! 🎉 \ \ \ \         ⭐ Please leave a star on the project. 😄