fix(deps): add pnpm supply chain security hardening (#14421)

davidkonigsberg · Swimburger · devin-ai-integration[bot] · web-flow · commit e6f952d8ca00 · 2026-04-01T09:07:04.000-04:00
* chore: add pnpm supply chain security hardening

- Add onlyBuiltDependencies allowlist (@sentry/cli, esbuild, puppeteer)
- Set minimumReleaseAge to 1440 minutes (1 day) to block freshly published malicious versions
- Exempt @fern-api/* and @fern-fern/* from release age requirement
- Enable trustPolicy: no-downgrade to catch compromised maintainer accounts
- Enable blockExoticSubdeps to prevent transitive deps from using git/tarball sources

Context: axios supply chain attack (March 31, 2026) where compromised maintainer
account published malicious versions with a hidden RAT via postinstall scripts.
These settings would have prevented installation of the compromised versions.

Co-Authored-By: Devin AI &lt;158243242+devin-ai-integration[bot]@users.noreply.github.com&gt;

* fix: use trustPolicyIgnoreAfter instead of per-package exclusions

Co-Authored-By: Devin AI &lt;158243242+devin-ai-integration[bot]@users.noreply.github.com&gt;

---------

Co-authored-by: Niels Swimberghe &lt;3382717+Swimburger@users.noreply.github.com&gt;
Co-authored-by: Devin AI &lt;158243242+devin-ai-integration[bot]@users.noreply.github.com&gt;
diff --git a/pnpm-workspace.yaml b/pnpm-workspace.yaml
@@ -11,6 +11,37 @@ packages:
   - "!packages/cli/cli-v2/dist/dev"
   - "!packages/cli/cli-v2/dist/prod"
 
+# Supply chain security settings
+# See: https://pnpm.io/settings
+onlyBuiltDependencies:
+  - "@sentry/cli"
+  - esbuild
+  - puppeteer
+
+# Require packages to be published for at least 1 day before they can be installed.
+# This mitigates supply chain attacks like the axios compromise (March 2026) where
+# malicious versions were published and removed within hours.
+minimumReleaseAge: 1440
+
+# Exempt internal Fern packages from the release age requirement since they are
+# published and consumed frequently within the monorepo ecosystem.
+minimumReleaseAgeExclude:
+  - "@fern-api/*"
+  - "@fern-fern/*"
+
+# Prevent trust level downgrades (e.g. a previously trusted-publisher package
+# losing its attestation). Catches compromised maintainer accounts.
+trustPolicy: no-downgrade
+
+# Only enforce trust checks on versions published within the last day.
+# Older versions that lost attestation are unlikely to be supply chain attacks;
+# attacks target the install window immediately after compromise.
+trustPolicyIgnoreAfter: 1440
+
+# Block transitive dependencies from using exotic sources (git repos, tarball URLs).
+# Only direct dependencies may use non-registry sources.
+blockExoticSubdeps: true
+
 catalog:
   "@babel/core": ^7.29.0
   "@babel/preset-env": ^7.29.2
