From 8ecb5e91cc3d3174200dc5f544c5a8b1b274a93e Mon Sep 17 00:00:00 2001 From: jdalton Date: Tue, 7 Apr 2026 15:12:56 -0400 Subject: [PATCH 1/4] chore(ci): bump socket-registry action refs --- .github/workflows/ci.yml | 8 ++++---- .github/workflows/provenance.yml | 6 +++--- .github/workflows/weekly-update.yml | 8 ++++---- 3 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 0bbaede12..c39dd850c 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -119,7 +119,7 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/install@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main - name: Run lint shell: bash @@ -186,7 +186,7 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/install@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main - name: Run type check shell: bash @@ -260,7 +260,7 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/install@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main - name: Build CLI working-directory: packages/cli @@ -343,7 +343,7 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/install@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main - name: Build CLI working-directory: packages/cli diff --git a/.github/workflows/provenance.yml b/.github/workflows/provenance.yml index 4513b9224..2a0e91c11 100644 --- a/.github/workflows/provenance.yml +++ b/.github/workflows/provenance.yml @@ -59,7 +59,7 @@ jobs: - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 - - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/install@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main - name: Build CLI shell: bash @@ -106,7 +106,7 @@ jobs: - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 - - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/install@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main - name: Download CLI bundle uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 @@ -162,7 +162,7 @@ jobs: - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 - - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/install@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main # Get versions for lock-stepped and independent packages. - name: Get versions diff --git a/.github/workflows/weekly-update.yml b/.github/workflows/weekly-update.yml index 8e2d07044..6394489f4 100644 --- a/.github/workflows/weekly-update.yml +++ b/.github/workflows/weekly-update.yml @@ -38,7 +38,7 @@ jobs: node-version-file: .node-version cache: 'pnpm' - - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/install@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main - name: Check for npm updates id: check @@ -77,7 +77,7 @@ jobs: node-version-file: .node-version cache: 'pnpm' - - uses: SocketDev/socket-registry/.github/actions/install@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/install@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main - name: Create update branch id: branch @@ -89,7 +89,7 @@ jobs: git checkout -b "$BRANCH_NAME" echo "branch=$BRANCH_NAME" >> $GITHUB_OUTPUT - - uses: SocketDev/socket-registry/.github/actions/setup-git-signing@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/setup-git-signing@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main with: gpg-private-key: ${{ secrets.BOT_GPG_PRIVATE_KEY }} @@ -316,7 +316,7 @@ jobs: test.log retention-days: 7 - - uses: SocketDev/socket-registry/.github/actions/cleanup-git-signing@6147a08ccc20fcb1f690dcc4650ec745776b3345 # main + - uses: SocketDev/socket-registry/.github/actions/cleanup-git-signing@8d54162f37b88ef2970a892b6c619b7c064f0c23 # main if: always() notify: From dce71c43b16ad9cd42740900e21f87402f4d8dfb Mon Sep 17 00:00:00 2001 From: jdalton Date: Wed, 8 Apr 2026 14:38:39 -0400 Subject: [PATCH 2/4] fix(ci): use socket-registry setup action, remove pnpm/action-setup, update SHAs Replace pnpm/action-setup with socket-registry's setup action which provides checksum-verified native pnpm and sfw-free with shims for all supported ecosystems (npm, yarn, pnpm, pip, uv, cargo). Remove cache: pnpm from actions/setup-node to eliminate cache-poisoning vectors. Update all socket-registry action SHAs to latest post-cascade main (4edf2e3c). --- .github/workflows/ci.yml | 40 ++++++++++++----------------- .github/workflows/provenance.yml | 18 +++++-------- .github/workflows/weekly-update.yml | 18 ++++++------- 3 files changed, 30 insertions(+), 46 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index b458f3fde..2d2850b17 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -72,15 +72,13 @@ jobs: with: persist-credentials: false - - name: Setup pnpm - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 + - name: Setup pnpm and sfw + uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # zizmor: ignore[cache-poisoning] # v6.3.0 + uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version - cache: 'pnpm' - cache-dependency-path: 'pnpm-lock.yaml' - name: Create stub packages run: | @@ -119,7 +117,7 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Run lint shell: bash @@ -139,15 +137,13 @@ jobs: with: persist-credentials: false - - name: Setup pnpm - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 + - name: Setup pnpm and sfw + uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # zizmor: ignore[cache-poisoning] # v6.3.0 + uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version - cache: 'pnpm' - cache-dependency-path: 'pnpm-lock.yaml' - name: Create stub packages run: | @@ -186,7 +182,7 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Run type check shell: bash @@ -213,15 +209,13 @@ jobs: with: persist-credentials: false - - name: Setup pnpm - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 + - name: Setup pnpm and sfw + uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # zizmor: ignore[cache-poisoning] # v6.3.0 + uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version: ${{ matrix.node-version }} - cache: 'pnpm' - cache-dependency-path: 'pnpm-lock.yaml' - name: Create stub packages run: | @@ -260,7 +254,7 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Build CLI working-directory: packages/cli @@ -296,15 +290,13 @@ jobs: with: persist-credentials: false - - name: Setup pnpm - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 + - name: Setup pnpm and sfw + uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # zizmor: ignore[cache-poisoning] # v6.3.0 + uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version: ${{ matrix.node-version }} - cache: 'pnpm' - cache-dependency-path: 'pnpm-lock.yaml' - name: Create stub packages run: | @@ -343,7 +335,7 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Build CLI working-directory: packages/cli diff --git a/.github/workflows/provenance.yml b/.github/workflows/provenance.yml index d965dca11..289cb57a2 100644 --- a/.github/workflows/provenance.yml +++ b/.github/workflows/provenance.yml @@ -54,12 +54,10 @@ jobs: - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version - cache: 'pnpm' - cache-dependency-path: 'pnpm-lock.yaml' - - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 + - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - uses: SocketDev/socket-registry/.github/actions/install@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Build CLI shell: bash @@ -100,13 +98,11 @@ jobs: - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version - cache: 'pnpm' - cache-dependency-path: 'pnpm-lock.yaml' registry-url: 'https://registry.npmjs.org' - - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 + - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - uses: SocketDev/socket-registry/.github/actions/install@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Download CLI bundle uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 @@ -156,13 +152,11 @@ jobs: - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version - cache: 'pnpm' - cache-dependency-path: 'pnpm-lock.yaml' registry-url: 'https://registry.npmjs.org' - - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 + - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - uses: SocketDev/socket-registry/.github/actions/install@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main # Get versions for lock-stepped and independent packages. - name: Get versions diff --git a/.github/workflows/weekly-update.yml b/.github/workflows/weekly-update.yml index 495c973e9..ae3081f76 100644 --- a/.github/workflows/weekly-update.yml +++ b/.github/workflows/weekly-update.yml @@ -29,16 +29,15 @@ jobs: with: persist-credentials: false - - name: Setup pnpm - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 + - name: Setup pnpm and sfw + uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Setup Node.js uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version - cache: 'pnpm' - - uses: SocketDev/socket-registry/.github/actions/install@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Check for npm updates id: check @@ -68,16 +67,15 @@ jobs: fetch-depth: 0 persist-credentials: false - - name: Setup pnpm - uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5 + - name: Setup pnpm and sfw + uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Setup Node.js uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version - cache: 'pnpm' - - uses: SocketDev/socket-registry/.github/actions/install@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - name: Create update branch id: branch @@ -89,7 +87,7 @@ jobs: git checkout -b "$BRANCH_NAME" echo "branch=$BRANCH_NAME" >> $GITHUB_OUTPUT - - uses: SocketDev/socket-registry/.github/actions/setup-git-signing@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/setup-git-signing@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main with: gpg-private-key: ${{ secrets.BOT_GPG_PRIVATE_KEY }} @@ -316,7 +314,7 @@ jobs: test.log retention-days: 7 - - uses: SocketDev/socket-registry/.github/actions/cleanup-git-signing@ec0af5ed4601f2bca8c042b290135c30854648d9 # main + - uses: SocketDev/socket-registry/.github/actions/cleanup-git-signing@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main if: always() notify: From 0cb6f1c2118613fbf8e6260a36e7cad4187a641f Mon Sep 17 00:00:00 2001 From: jdalton Date: Wed, 8 Apr 2026 14:45:39 -0400 Subject: [PATCH 3/4] fix(ci): disable setup-node cache to fix zizmor cache-poisoning audit --- .github/workflows/ci.yml | 4 ++++ .github/workflows/provenance.yml | 3 +++ .github/workflows/weekly-update.yml | 2 ++ 3 files changed, 9 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 2d2850b17..b27e7d9e4 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -79,6 +79,7 @@ jobs: uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version + cache: 'false' - name: Create stub packages run: | @@ -144,6 +145,7 @@ jobs: uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version + cache: 'false' - name: Create stub packages run: | @@ -216,6 +218,7 @@ jobs: uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version: ${{ matrix.node-version }} + cache: 'false' - name: Create stub packages run: | @@ -297,6 +300,7 @@ jobs: uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version: ${{ matrix.node-version }} + cache: 'false' - name: Create stub packages run: | diff --git a/.github/workflows/provenance.yml b/.github/workflows/provenance.yml index 289cb57a2..d6dd7baa4 100644 --- a/.github/workflows/provenance.yml +++ b/.github/workflows/provenance.yml @@ -54,6 +54,7 @@ jobs: - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version + cache: 'false' - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main @@ -98,6 +99,7 @@ jobs: - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version + cache: 'false' registry-url: 'https://registry.npmjs.org' - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main @@ -152,6 +154,7 @@ jobs: - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version + cache: 'false' registry-url: 'https://registry.npmjs.org' - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main diff --git a/.github/workflows/weekly-update.yml b/.github/workflows/weekly-update.yml index ae3081f76..8dee71376 100644 --- a/.github/workflows/weekly-update.yml +++ b/.github/workflows/weekly-update.yml @@ -36,6 +36,7 @@ jobs: uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version + cache: 'false' - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main @@ -74,6 +75,7 @@ jobs: uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 with: node-version-file: .node-version + cache: 'false' - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main From 56f7795f55742d1629a8688dbf5321b867141491 Mon Sep 17 00:00:00 2001 From: jdalton Date: Wed, 8 Apr 2026 14:49:32 -0400 Subject: [PATCH 4/4] fix(ci): use setup-and-install, remove all third-party setup actions Replace separate setup + install steps with a single setup-and-install action call (checkout: false since we handle checkout ourselves). This removes all third-party setup actions: - pnpm/action-setup (replaced by socket-registry/setup's native pnpm) - actions/setup-node (replaced by socket-registry/setup's Node.js) Node version defaults to 25.9.0 from socket-registry. Test matrix jobs override with node-version input. --- .github/workflows/ci.yml | 54 ++++++++--------------------- .github/workflows/provenance.yml | 27 ++++----------- .github/workflows/weekly-update.yml | 22 +++--------- 3 files changed, 24 insertions(+), 79 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index b27e7d9e4..4437a7ee6 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -72,15 +72,6 @@ jobs: with: persist-credentials: false - - name: Setup pnpm and sfw - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 - with: - node-version-file: .node-version - cache: 'false' - - name: Create stub packages run: | mkdir -p packages/package-builder/build/dev/out/socketaddon-iocraft @@ -118,7 +109,9 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + - uses: SocketDev/socket-registry/.github/actions/setup-and-install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + with: + checkout: 'false' - name: Run lint shell: bash @@ -138,15 +131,6 @@ jobs: with: persist-credentials: false - - name: Setup pnpm and sfw - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 - with: - node-version-file: .node-version - cache: 'false' - - name: Create stub packages run: | mkdir -p packages/package-builder/build/dev/out/socketaddon-iocraft @@ -184,7 +168,9 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + - uses: SocketDev/socket-registry/.github/actions/setup-and-install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + with: + checkout: 'false' - name: Run type check shell: bash @@ -211,15 +197,6 @@ jobs: with: persist-credentials: false - - name: Setup pnpm and sfw - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 - with: - node-version: ${{ matrix.node-version }} - cache: 'false' - - name: Create stub packages run: | mkdir -p packages/package-builder/build/dev/out/socketaddon-iocraft @@ -257,7 +234,10 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + - uses: SocketDev/socket-registry/.github/actions/setup-and-install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + with: + checkout: 'false' + node-version: ${{ matrix.node-version }} - name: Build CLI working-directory: packages/cli @@ -293,15 +273,6 @@ jobs: with: persist-credentials: false - - name: Setup pnpm and sfw - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 - with: - node-version: ${{ matrix.node-version }} - cache: 'false' - - name: Create stub packages run: | mkdir -p packages/package-builder/build/dev/out/socketaddon-iocraft @@ -339,7 +310,10 @@ jobs: export default { text, view, renderToString, renderToStringWithWidth, printComponent, eprintComponent, getTerminalSize, TuiRenderer, init } CODE - - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + - uses: SocketDev/socket-registry/.github/actions/setup-and-install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + with: + checkout: 'false' + node-version: ${{ matrix.node-version }} - name: Build CLI working-directory: packages/cli diff --git a/.github/workflows/provenance.yml b/.github/workflows/provenance.yml index d6dd7baa4..e3e9c881a 100644 --- a/.github/workflows/provenance.yml +++ b/.github/workflows/provenance.yml @@ -51,14 +51,9 @@ jobs: with: persist-credentials: false - - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 + - uses: SocketDev/socket-registry/.github/actions/setup-and-install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main with: - node-version-file: .node-version - cache: 'false' - - - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + checkout: 'false' - name: Build CLI shell: bash @@ -96,16 +91,11 @@ jobs: with: persist-credentials: false - - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 + - uses: SocketDev/socket-registry/.github/actions/setup-and-install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main with: - node-version-file: .node-version - cache: 'false' + checkout: 'false' registry-url: 'https://registry.npmjs.org' - - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - name: Download CLI bundle uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: @@ -151,16 +141,11 @@ jobs: with: persist-credentials: false - - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 + - uses: SocketDev/socket-registry/.github/actions/setup-and-install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main with: - node-version-file: .node-version - cache: 'false' + checkout: 'false' registry-url: 'https://registry.npmjs.org' - - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - # Get versions for lock-stepped and independent packages. - name: Get versions id: version diff --git a/.github/workflows/weekly-update.yml b/.github/workflows/weekly-update.yml index 8dee71376..a316e4d33 100644 --- a/.github/workflows/weekly-update.yml +++ b/.github/workflows/weekly-update.yml @@ -29,16 +29,9 @@ jobs: with: persist-credentials: false - - name: Setup pnpm and sfw - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 + - uses: SocketDev/socket-registry/.github/actions/setup-and-install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main with: - node-version-file: .node-version - cache: 'false' - - - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + checkout: 'false' - name: Check for npm updates id: check @@ -68,16 +61,9 @@ jobs: fetch-depth: 0 persist-credentials: false - - name: Setup pnpm and sfw - uses: SocketDev/socket-registry/.github/actions/setup@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main - - - name: Setup Node.js - uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0 + - uses: SocketDev/socket-registry/.github/actions/setup-and-install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main with: - node-version-file: .node-version - cache: 'false' - - - uses: SocketDev/socket-registry/.github/actions/install@4edf2e3c3beff7d536e79ce43dfb61abba7cb537 # main + checkout: 'false' - name: Create update branch id: branch