diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 33d9545bd..0bbaede12 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -119,12 +119,11 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main - name: Run lint shell: bash run: | - alias pnpm="$SFW_BIN pnpm" pnpm --filter @socketsecurity/cli run check type-check: @@ -187,12 +186,11 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main - name: Run type check shell: bash run: | - alias pnpm="$SFW_BIN pnpm" pnpm --filter @socketsecurity/cli run type # Sharded unit tests for faster CI. @@ -262,13 +260,12 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main - name: Build CLI working-directory: packages/cli shell: bash run: | - alias pnpm="$SFW_BIN pnpm" pnpm run build - name: Run unit tests (shard ${{ matrix.shard }}) @@ -277,7 +274,6 @@ jobs: env: SHARD: ${{ matrix.shard }} run: | - alias pnpm="$SFW_BIN pnpm" pnpm test:unit --shard="$SHARD"/3 # E2E tests @@ -347,13 +343,12 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main - name: Build CLI working-directory: packages/cli shell: bash run: | - alias pnpm="$SFW_BIN pnpm" pnpm run build - name: Run e2e tests (shard ${{ matrix.shard }}) @@ -363,5 +358,4 @@ jobs: SOCKET_CLI_API_TOKEN: ${{ secrets.SOCKET_CLI_API_TOKEN }} SHARD: ${{ matrix.shard }} run: | - alias pnpm="$SFW_BIN pnpm" pnpm run e2e-tests --shard="$SHARD"/2 diff --git a/.github/workflows/provenance.yml b/.github/workflows/provenance.yml index 910c69dcb..4513b9224 100644 --- a/.github/workflows/provenance.yml +++ b/.github/workflows/provenance.yml @@ -59,12 +59,11 @@ jobs: - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 - - uses: SocketDev/socket-registry/.github/actions/install@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main - name: Build CLI shell: bash run: | - alias pnpm="$SFW_BIN pnpm" pnpm --filter @socketsecurity/cli run build - name: Generate platform matrix @@ -107,7 +106,7 @@ jobs: - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 - - uses: SocketDev/socket-registry/.github/actions/install@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main - name: Download CLI bundle uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 @@ -122,7 +121,6 @@ jobs: MATRIX_PLATFORM: ${{ matrix.platform }} MATRIX_ARCH: ${{ matrix.arch }} run: | - alias pnpm="$SFW_BIN pnpm" LIBC_FLAG="" if [ "$MATRIX_LIBC" = "musl" ]; then LIBC_FLAG="--libc=musl" @@ -164,7 +162,7 @@ jobs: - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 - - uses: SocketDev/socket-registry/.github/actions/install@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main # Get versions for lock-stepped and independent packages. - name: Get versions @@ -264,7 +262,6 @@ jobs: - name: Build CLI shell: bash run: | - alias pnpm="$SFW_BIN pnpm" INLINED_PUBLISHED_BUILD=1 pnpm run build - name: Publish @socketsecurity/cli diff --git a/.github/workflows/weekly-update.yml b/.github/workflows/weekly-update.yml index 8f688b7bc..8e2d07044 100644 --- a/.github/workflows/weekly-update.yml +++ b/.github/workflows/weekly-update.yml @@ -38,13 +38,12 @@ jobs: node-version-file: .node-version cache: 'pnpm' - - uses: SocketDev/socket-registry/.github/actions/install@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main - name: Check for npm updates id: check shell: bash run: | - alias pnpm="$SFW_BIN pnpm" echo "Checking for npm package updates..." HAS_UPDATES=false NPM_UPDATES=$(pnpm outdated 2>/dev/null || true) @@ -78,7 +77,7 @@ jobs: node-version-file: .node-version cache: 'pnpm' - - uses: SocketDev/socket-registry/.github/actions/install@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main - name: Create update branch id: branch @@ -90,7 +89,7 @@ jobs: git checkout -b "$BRANCH_NAME" echo "branch=$BRANCH_NAME" >> $GITHUB_OUTPUT - - uses: SocketDev/socket-registry/.github/actions/setup-git-signing@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/setup-git-signing@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main with: gpg-private-key: ${{ secrets.BOT_GPG_PRIVATE_KEY }} @@ -101,13 +100,6 @@ jobs: ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }} GITHUB_ACTIONS: 'true' run: | - if [ -n "$SFW_BIN" ]; then - mkdir -p /tmp/sfw-bin - printf '#!/bin/bash\nexec "%s" pnpm "$@"\n' "$SFW_BIN" > /tmp/sfw-bin/pnpm - chmod +x /tmp/sfw-bin/pnpm - export PATH="/tmp/sfw-bin:$PATH" - fi - if [ -z "$ANTHROPIC_API_KEY" ]; then echo "ANTHROPIC_API_KEY not set - skipping automated update" echo "success=false" >> $GITHUB_OUTPUT @@ -155,13 +147,6 @@ jobs: id: tests if: steps.update.outputs.success == 'true' run: | - if [ -n "$SFW_BIN" ]; then - mkdir -p /tmp/sfw-bin - printf '#!/bin/bash\nexec "%s" pnpm "$@"\n' "$SFW_BIN" > /tmp/sfw-bin/pnpm - chmod +x /tmp/sfw-bin/pnpm - export PATH="/tmp/sfw-bin:$PATH" - fi - set +e pnpm build 2>&1 | tee build.log BUILD_EXIT=${PIPESTATUS[0]} @@ -184,13 +169,6 @@ jobs: ANTHROPIC_API_KEY: ${{ secrets.ANTHROPIC_API_KEY }} GITHUB_ACTIONS: 'true' run: | - if [ -n "$SFW_BIN" ]; then - mkdir -p /tmp/sfw-bin - printf '#!/bin/bash\nexec "%s" pnpm "$@"\n' "$SFW_BIN" > /tmp/sfw-bin/pnpm - chmod +x /tmp/sfw-bin/pnpm - export PATH="/tmp/sfw-bin:$PATH" - fi - FAILURE_LOG="$(cat build.log test.log 2>/dev/null)" set +e @@ -338,7 +316,7 @@ jobs: test.log retention-days: 7 - - uses: SocketDev/socket-registry/.github/actions/cleanup-git-signing@da519693b701861bc0f9690a30f50af1a1dcd49c # main + - uses: SocketDev/socket-registry/.github/actions/cleanup-git-signing@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main if: always() notify: