chore(ci+deps): cascade socket-registry to 51f34ffb + drift updates#634
Closed
John-David Dalton (jdalton) wants to merge 4 commits intomainfrom
Closed
chore(ci+deps): cascade socket-registry to 51f34ffb + drift updates#634John-David Dalton (jdalton) wants to merge 4 commits intomainfrom
John-David Dalton (jdalton) wants to merge 4 commits intomainfrom
Conversation
Bumps the four workflow files (ci.yml, generate.yml, provenance.yml, weekly-update.yml) to socket-registry@51f34ffb. That commit includes: - 4c4b12cc — pnpm 11.0.6 GA + Rust toolchain pin for Node 26 Temporal + SRI integrity migration in external-tools.json - e5f83c31 — wire updating-xport into the umbrella drift flow - 51f34ffb — release-workflow-guard quote-mask false-positive fix Bumps from main's @85a2fc0d, skipping the @4c4b12cc step since the sdk hadn't cascaded since.
- external-tools.json — SRI integrity migration (sha256 → integrity)
matches socket-registry's external-tools schema
- package.json + pnpm-lock.yaml + pnpm-workspace.yaml — catalog
alignment with @socketsecurity/lib + @socketregistry/* fleet
- scripts/power-state.mts — fleet-canonical helper sync from
socket-repo-template@c23dfef
- scripts/publish.mts — pnpm-publish + --ignore-scripts staged-copy
+ os.tmpdir() staging refresh
- scripts/xport-{schema,emit-schema}.mts — drift sync
Splits content out of #630, paired with the cascade SHA bump in the
commit before this one.
|
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
|
The cascade bump in this PR pulls socket-registry@51f34ffb's setup-and-install action, which installs pnpm 11.0.6 from external-tools.json. Without this matching package.json bump, pnpm refuses to run with a version-mismatch error. Independent of #631's wider Node-26 / pnpm bundle. This PR only sets the integrity-checked packageManager string and widens engines.pnpm to >=11.0.6.
John-David Dalton (jdalton)
added a commit
that referenced
this pull request
May 5, 2026
* chore(hooks): sync .claude/hooks fleet from canonical
Synced from socket-repo-template canonical hooks fleet. Adds the
new fleet-canonical guard hooks not yet present on this repo's main.
Hooks added:
- auth-rotation-reminder — prompts on token rotation events
- logger-guard — blocks console.log/error in production code
- stale-process-sweeper — Stop hook reaping orphaned vitest workers
Hooks updated:
- path-guard — README + segments drift
- token-guard — README drift
Harness config:
- .claude/settings.json — register new hooks under PreToolUse / Stop
- .git-hooks/{_helpers,pre-commit,pre-push}.mts — drift sync from
socket-repo-template
- .oxfmtrc.json — JSDoc formatting drift
Splits content out of #630.
* chore(workspace): add catalog block + regen lockfile
The hook packages under .claude/hooks/* declare deps via 'catalog:'
specifiers but pnpm-workspace.yaml didn't define a catalog. Add the
catalog block (matches socket-sdk-js #634/#631 / fleet canonical) and
regenerate the lockfile so pnpm install resolves cleanly.
Collaborator
Author
|
Closing as superseded. Main has advanced past this PR's content via #631 (which absorbed pnpm 11.0.6 + cascade + the lockfile regen) and subsequent fleet updates. The cascade SHA, packageManager pin, external-tools.json (now SRI-format), and |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
ci.yml,generate.yml,provenance.yml,weekly-update.yml) tosocket-registry@51f34ffb(was@85a2fc0don main).external-tools.jsonschema now usesintegritySRI strings (wassha256hex), aligning with socket-registry's canonical schema.package.json/pnpm-lock.yaml/pnpm-workspace.yamlcatalog alignment,scripts/power-state.mtssync,scripts/publish.mtspnpm-publish refresh,scripts/xport-{schema,emit-schema}.mtsdrift.Scope
Cascade SHA bump + deps drift slice split out of #630.
Companion splits: hooks (#632), skills+CLAUDE.md (#633). After all three land, #630 closes.
Test plan
setup-and-install@51f34ffb)pnpm installresolves the catalog