Skip to content

chore: bump deps and adopt Socket Firewall Free in CI#169

Merged
SutuSebastian merged 3 commits into
mainfrom
chore/deps-socket-firewall
Jun 5, 2026
Merged

chore: bump deps and adopt Socket Firewall Free in CI#169
SutuSebastian merged 3 commits into
mainfrom
chore/deps-socket-firewall

Conversation

@SutuSebastian

Copy link
Copy Markdown
Contributor

Summary

  • Bump dependencies to latest: oxc-parser/resolver, oxfmt, oxlint, lint-staged, tsdown, @clack/prompts, tinyglobby, @typescript/native-preview, and transitive lockfile updates.
  • Adopt Socket Firewall Free for CI dependency installs via socketdev/action (mode: firewall-free) in the shared setup action and release workflow — sfw bun install --frozen-lockfile.
  • Marketplace action uses sfw npm install when sfw is on PATH (optional for consumers); document optional local sfw bun install in CONTRIBUTING.

Test plan

  • bun run check (build, format, lint, tests, typecheck, golden, agent-eval)
  • CI green on PR (Socket Firewall step + frozen lockfile install)

Refresh toolchain and parser packages to latest, and route CI dependency
installs through Socket Firewall Free so malicious packages are blocked
before they reach runners.
@changeset-bot

changeset-bot Bot commented Jun 5, 2026

Copy link
Copy Markdown

🦋 Changeset detected

Latest commit: f58eaaf

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 1 package
Name Type
@stainless-code/codemap Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

@coderabbitai

coderabbitai Bot commented Jun 5, 2026

Copy link
Copy Markdown

Warning

Review limit reached

@SutuSebastian, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 33 minutes and 18 seconds. Learn how PR review limits work.

Your organization has run out of usage credits. Purchase more in the billing tab.

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info
⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: b47dc69a-4b94-4278-a979-4853c656ccea

📥 Commits

Reviewing files that changed from the base of the PR and between 231d6cc and f58eaaf.

⛔ Files ignored due to path filters (1)
  • bun.lock is excluded by !**/*.lock
📒 Files selected for processing (6)
  • .changeset/deps-socket-firewall-ci.md
  • .github/CONTRIBUTING.md
  • .github/actions/setup/action.yml
  • .github/workflows/release.yml
  • action.yml
  • package.json
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch chore/deps-socket-firewall

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@SutuSebastian SutuSebastian merged commit 1632bdd into main Jun 5, 2026
11 checks passed
@SutuSebastian SutuSebastian deleted the chore/deps-socket-firewall branch June 5, 2026 07:59
@github-actions github-actions Bot mentioned this pull request Jun 5, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant