refactor(sentinel): land cosign + SBOM signatures for every release#2031

Openyuki-tanakawants to merge 3 commits intomainfromrefactor/sentinel-3032·3w ago

YUYuki Tanakacommented 3w ago

Summary

refactor(sentinel): land cosign + SBOM signatures for every release — addresses the regression surfaced in sentinel-graph after the recent refactor work landed on main.

Why

The previous behavior on main short-circuited the safe path under load; this PR restores the intended contract.
Adds a guard so the regression cannot resurface silently in staging.
Drive-by: removes dead-code call sites the linter was warning about.

Scope

Files touched: 24 across the core module + tests.
No public API change; ABI is preserved.
CI: all green on the matrix runs.

Labels: feature

YUYuki Tanakacommented 1w ago

Smoke-tested under the load profile from last week's incident. No regressions.

All checks have passed1 neutral, 1 skipped, 6 successful checks

No conflicts with base branchMerging can be performed automatically.

You can also merge this with the command line. View command line instructions.Still in progress? Convert to draft

Pull requests

refactor(sentinel): land cosign + SBOM signatures for every release#2031

Summary

Add a comment

Pull requests