All pull requests

chore(deps): bump cosign and rebuild SBOM pipeline#894

Opennoor-hassanwants to merge 6 commits intomainfromchore/cosign-bump
NONoor Hassancommented 3d ago

Summary

chore(deps): bump cosign and rebuild SBOM pipeline — addresses the regression surfaced in harborlight after the recent chore work landed on main.

Why

  • The previous behavior on main short-circuited the safe path under load; this PR restores the intended contract.
  • Adds a guard so the regression cannot resurface silently in staging.
  • Drive-by: removes dead-code call sites the linter was warning about.

Scope

  • Files touched: 9 across the core module + tests.
  • No public API change; ABI is preserved.
  • CI: all green on the matrix runs.

Labels: security

NONoor Hassancommented 2d ago

Left a few small nits inline. Otherwise the shape is exactly what we discussed in the design doc.

LNLNcommented 2d ago

Confirmed the contract on the staging cluster — x-quorum is propagated end-to-end. Holding approval until I see the metric in Grafana.

MIMiguel Arroyocommented 2d ago

Rebased against main and force-pushed; CI is happy. Re-requesting review.

All checks have passed1 neutral, 1 skipped, 5 successful checks
No conflicts with base branchMerging can be performed automatically.
You can also merge this with the command line. View command line instructions.Still in progress? Convert to draft

Add a comment

M↓Markdown is supported