Skip to content

ci: harden release pipeline against supply-chain attacks #20

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
trick77 merged 1 commit into from
May 13, 2026
Merged

ci: harden release pipeline against supply-chain attacks #20

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 4 additions & 1 deletion .github/workflows/ci.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,9 +2,12 @@ name: ci

on:
push:
branches: [main]
branches: [master]
pull_request:

permissions:
contents: read

jobs:
test:
runs-on: ubuntu-latest
Expand Down
7 changes: 6 additions & 1 deletion .github/workflows/release.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,9 +9,14 @@ permissions:
contents: write # to create the GitHub Release
id-token: write # OIDC token used by npm trusted publishing

concurrency:
group: release-${{ github.ref }}
cancel-in-progress: false

jobs:
publish:
runs-on: ubuntu-latest
environment: npm-publish
steps:
- uses: actions/checkout@v6
- uses: actions/setup-node@v6
Expand All @@ -33,7 +38,7 @@ jobs:
# OIDC trusted publishing requires npm >= 11.5.1. Invoke via npx
# so we always get a recent enough CLI without mutating the
# global npm install on the runner.
- run: npx -y npm@latest publish --access public
- run: npx -y npm@latest publish --access public --provenance
- uses: softprops/action-gh-release@v3
with:
generate_release_notes: true
19 changes: 19 additions & 0 deletions AGENTS.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -110,3 +110,22 @@ chars. When adding entries to `permission.bash`:
- Telemetry, network calls beyond declared `@fetch` URLs.
- A second prompt UI library. The current `src/ui.ts` handles it.
- Backups under `~/.config/opencode/`; they belong in the cache dir.

## package.json — supply-chain hygiene

Do NOT add any of the following without an explicit human review:

- An `optionalDependencies` block, or a `dependencies` entry using a
`git+`, `http(s):`, `file:`, or tarball specifier. The May 2026
TanStack worm shipped its payload via exactly this shape.
- A `prepare`, `preinstall`, `postinstall`, or other install-time
lifecycle script. This package's only lifecycle scripts are
`prepare`/`prepublishOnly` running `tsc`; don't broaden them.
- Floating version ranges (`^`, `~`, `*`, `latest`) in `dependencies`
or `devDependencies`. Pin exact versions so `package-lock.json` is
the only source of truth.
- New runtime dependencies in general — see "Code conventions" above.

The `npm publish` step must pass `--provenance` so the published
tarball carries SLSA build attestation verifiable via
`npm audit signatures`.