chore(ci): cascade socket-registry pin to 85a2fc0d#1285
Open
John-David Dalton (jdalton) wants to merge 4 commits intomainfrom
Open
chore(ci): cascade socket-registry pin to 85a2fc0d#1285John-David Dalton (jdalton) wants to merge 4 commits intomainfrom
John-David Dalton (jdalton) wants to merge 4 commits intomainfrom
Conversation
Picks up the latest socket-registry workflow updates (currently the bootstrap-from-registry step in install/action.yml + the path-guard fleet rollout cascade). Self-landable split from #1279.
Picks up the firewall-checker fix in @SocketDev/socket-registry — any alert from Socket Firewall now blocks the bootstrap (no severity threshold; the API only returns alerts when a package is flagged as malware, so any alert means malware). Cascade chain: check-firewall.mts Layer 1 e4193847 setup-and-install Layer 2 b94c9571 reusable workflows Layer 3 85a2fc0d ← propagation SHA _local-not-for-reuse-* Layer 4 25ec2c76 (socket-registry only)
John-David Dalton (jdalton)
force-pushed
the
chore/registry-cascade
branch
from
7872ca4 to
9ef28f8
Compare
Contributor
Author
|
bugbot run |
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
✅ Bugbot reviewed your changes and found no new issues!
Comment @cursor review or bugbot run to trigger another review on this PR
Reviewed by Cursor Bugbot for commit 9ef28f8. Configure here.
Bill Li (billxinli)
approved these changes
Apr 27, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Self-landable split from #1279.
Bumps
SocketDev/socket-registryworkflow pins from ea1986b8 to 85a2fc0d. Picks up:Test plan
Note
Medium Risk
Medium risk because it changes the pinned versions of shared CI/publish automation (
setup-and-installand git-signing actions), which can affect build, test, and release behavior even though no product code changes.Overview
Bumps the pinned
SocketDev/socket-registryaction revision acrossci.yml,provenance.yml, andweekly-update.yml(fromea1986b8…to85a2fc0d…).This updates the versions used for dependency setup/installation and the weekly-update git signing/cleanup steps, aligning CI, publishing, and automation with the newer shared workflow implementation.
Reviewed by Cursor Bugbot for commit 9ef28f8. Configure here.