Josh Avant
bd4db5ee62
Add dependency release safety evidence and PR awareness ( #81325 )
...
* test: cover dependency pin guard
* build: add dependency vulnerability gate
* build: add dependency risk report
* build: add dependency drift reports
* build: include dependency ownership surface evidence
* build: rename dependency report commands
* build: respect release age exclusions in risk report
* build: clarify transitive risk accounting
* build: remove transitive risk exception registry
* build: clarify transitive risk signal wording
* ci: attach dependency evidence to release preflight
* ci: extract dependency release evidence generator
* build: rename ownership surface dependency report
* ci: clarify release evidence naming
* build: clarify recently published risk report
* build: reorder transitive risk report sections
* build: fix ownership surface pluralization
* ci: surface dependency changes on PRs
* ci: harden dependency change awareness
* ci: use dependency changed PR label
* build: fix dependency report lint
* docs: add dependency safety changelog
2026-05-13 03:05:09 -05:00
Andy Ye
7624b0d16d
fix(imessage): surface Full Disk Access probe failures
...
Preserve canonical iMessage Full Disk Access probe failures through non-sensitive health snapshots and status output, promote imsg denial banners to the public remediation message, and add a narrow audit exception for the reviewed Mistral advisory false-positive.
2026-05-11 21:41:08 -07:00
Gustavo Madeira Santana
4c52731051
fix(ci): parse quoted pnpm snapshot keys
2026-04-14 21:15:43 -04:00
Gustavo Madeira Santana
da43277cc9
fix(ci): make pnpm audit hook dependency-free
2026-04-14 21:12:26 -04:00
Vincent Koc
55ee327981
fix(ci): replace retired pnpm audit hook
2026-04-15 01:10:07 +01:00
