Switch to trustPolicyIgnoreAfter

Author: karlhorky

pnpm-workspace.yaml

@@ -11,18 +11,11 @@ minimumReleaseAge: 10080
 minimumReleaseAgeStrict: true
 minimumReleaseAgeIgnoreMissingTime: false
 
-# Prevent package trust metadata from downgrading on updates
+# Prevent trust level decreases with packages newer than 60 days
+# to mitigate supply chain risks
 # https://pnpm.io/settings#trustpolicy
 trustPolicy: no-downgrade
-trustPolicyExclude:
-  # first version with provenance: eslint-config-prettier@10.1.4 https://github.com/prettier/eslint-config-prettier/issues/339#issuecomment-3090250555
-  - eslint-config-prettier@8.10.2
-  # first version with provenance: eslint-plugin-prettier@5.3.1 https://github.com/prettier/eslint-plugin-prettier/pull/757
-  - eslint-plugin-prettier@4.2.5
-  # first version with provenance: semver@7.5.1 https://github.com/npm/node-semver/issues/838#issuecomment-3698312268
-  - semver@5.7.2 || 6.3.1
-  # first version with provenance: undici-types@6.13.0 https://github.com/nodejs/undici/issues/4666
-  - undici-types@6.19.8
+trustPolicyIgnoreAfter: 86400
 
 # Fail before scripts when dependencies are out of sync
 # https://pnpm.io/settings#verifydepsbeforerun