chore(deps): bump pnpm/action-setup from f40ffcd9367d9f12939873eb1018b921a783ffaa to b906affcce14559ad1aafd4ab0e942779e9f58b1#5
Closed
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps [pnpm/action-setup](https://github.com/pnpm/action-setup) from f40ffcd9367d9f12939873eb1018b921a783ffaa to b906affcce14559ad1aafd4ab0e942779e9f58b1. - [Release notes](https://github.com/pnpm/action-setup/releases) - [Commits](pnpm/action-setup@f40ffcd...b906aff) --- updated-dependencies: - dependency-name: pnpm/action-setup dependency-version: b906affcce14559ad1aafd4ab0e942779e9f58b1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
Contributor
Author
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
|
The latest updates on your projects. Learn more about Vercel for GitHub.
|
Owner
|
Closing — major version bump or SHA update created before ignore rules were active. Will handle manually when ready. |
Contributor
Author
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. You can also ignore all major, minor, or patch releases for a dependency by adding an If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
dependabot
Bot
deleted the
dependabot/github_actions/pnpm/action-setup-b906affcce14559ad1aafd4ab0e942779e9f58b1
branch
webdevcom01-cell
added a commit
that referenced
this pull request
May 7, 2026
Critical: - pipeline-manager: add saveStepOutput — saves gate output without advancing currentStep - orchestrator: gate BLOCK uses saveStepOutput instead of onStepComplete (fix Bug #1) - orchestrator: export IMPLEMENTATION_STEPS + GATE_STEPS for retry route - orchestrator: resume pre-seeding uses slice(0,4000) instead of 2000 (Bug #4) - retry/route: smart startFromStep — gate BLOCK steps back to last impl step (Bug #1) - retry/route: trim existingStepResults to steps before startFromStep - retry/route: add requireApproval to addPipelineRunJob (Bug #5) - retry/route: allow CANCELLED runs to be retried (Bug C3) UI: - page.tsx: show stepResults for FAILED runs — gate reviewer output visible - page.tsx: PipelineRun interface adds modelId, useSmartRouting, requireApproval - page.tsx: isActive includes AWAITING_APPROVAL for inner SWR refresh (Bug C2) - page.tsx: Retry button shown for CANCELLED runs too (Bug C3) Performance: - pipeline-manager: listPipelineRuns uses SELECT_LIST_FIELDS — excludes stepResults (~28KB/run) and finalOutput (~15KB/run) from list queries, reducing payload from ~1MB to ~50KB for 20 runs (Bug #3)
This was referenced May 23, 2026
webdevcom01-cell
added a commit
that referenced
this pull request
May 24, 2026
- Migration 20260530000000: enable RLS + FORCE on Goal, composite index on (organizationId, id) — note: (organizationId, status) already exists; SELECT/INSERT/UPDATE/DELETE policies for app_user, grants to app_user + admin_user - goals/route.ts: wrap findMany(GET) and create(POST) with withOrgContext - goals/[goalId]/route.ts: loadGoal() uses withAdminBypass (pre-auth); GET findUnique (incl. CompanyMission JOIN), PATCH update, DELETE count + delete all wrapped with withOrgContext(goal.organizationId) - agents/[agentId]/goals/route.ts: goal existence check uses withAdminBypass (agent's orgId not in scope for this check) - lib/templates/template-engine.ts: goal.create in importTemplate wrapped with withOrgContext(organizationId) — called from API routes only Cross-table JOIN: GET /goals/[goalId] includes mission (CompanyMission, already RLS-enforced) — both sub-queries run in the same withOrgContext transaction, same app.current_org_id. Safe. RLS_ENFORCEMENT_ENABLED=false; wrapping is a no-op until flag flip.
5 tasks
webdevcom01-cell
added a commit
that referenced
this pull request
May 24, 2026
Migration 20260604000000: TENANT_DIRECT RLS on ApprovalPolicy. Pre-auth lookups (loadPolicy, decisions pre-auth) use withAdminBypass — same pattern as loadDepartment/loadGoal from migrations #4/#5. CRUD routes use withOrgContext with org ID from loadPolicy result. checkPolicies gains optional organizationId param; requestApproval wraps the policy findUnique in withOrgContext. processTimeouts unchanged — cross-org cron relies on DATABASE_URL BYPASSRLS.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps pnpm/action-setup from f40ffcd9367d9f12939873eb1018b921a783ffaa to b906affcce14559ad1aafd4ab0e942779e9f58b1.
Commits
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)