Skip to content

🔧 update: dependencies and improve commit workflow configuration#68

Draft
warengonzaga wants to merge 54 commits intomainfrom
dev
Draft

🔧 update: dependencies and improve commit workflow configuration#68
warengonzaga wants to merge 54 commits intomainfrom
dev

Conversation

@warengonzaga
Copy link
Copy Markdown
Owner

@warengonzaga warengonzaga commented Apr 13, 2026

This pull request introduces a range of improvements and maintenance updates across the codebase, focusing on configuration flexibility, CI/CD workflow modernization, dependency upgrades, and documentation enhancements. The most significant changes include expanding provider configuration options, updating and streamlining CI/CD workflows, and improving project documentation for contributors.

Configuration Enhancements

  • Added providerId and mode (with allowed values local or cloud) fields to the ProviderEntrySchema in packages/config/src/types.ts, allowing for more flexible provider definitions. Updated the schema to accept arbitrary provider keys and added corresponding tests for new fields and validation logic. [1] [2] [3] [4] [5]

CI/CD Workflow and Tooling Updates

  • Upgraded GitHub Actions and third-party workflow actions to their latest versions across multiple workflow files, including ci.yml, codeql.yml, container.yml, landing.yml, package.yml, and release.yml. Also updated Docker base images to newer versions. [1] [2] [3] [4] [5] [6] [7] [8] [9] [10]
  • Added .gitattributes file to enforce consistent line endings and file type handling.
  • Introduced .contributerc.json to standardize contribution workflow and commit conventions.
  • Removed Husky commit message validation scripts, shifting commit convention enforcement to CI/CD and repository configuration. [1] [2]

Dependency and Toolchain Upgrades

  • Updated Biome, TypeScript, and related dependencies to their latest versions in package.json, biome.json, and packages/compactor/package.json. [1] [2] [3]

Documentation Improvements

  • Enhanced the README.md with clearer contributing instructions, improved licensing and author attribution, and updated project structure and feature descriptions. [1] [2] [3] [4]

Minor Core and Type Additions

  • Added StreamEvent and Tool to imports in packages/core/src/loop.ts, and introduced a constant for the restart tool name. [1] [2]

warengonzaga and others added 30 commits February 26, 2026 20:08
@warengonzaga
⚙️ setup: add contributor configuration for clean commit workflow
2453218
@dependabot
☕ chore: bump wgtechlabs/container-build-flow-action from 1.3.1 to 1.…
0df6164 
…7.0 (#43)

Bumps [wgtechlabs/container-build-flow-action](https://github.com/wgtechlabs/container-build-flow-action) from 1.3.1 to 1.7.0.
- [Release notes](https://github.com/wgtechlabs/container-build-flow-action/releases)
- [Changelog](https://github.com/wgtechlabs/container-build-flow-action/blob/main/CHANGELOG.md)
- [Commits](wgtechlabs/container-build-flow-action@v1.3.1...v1.7.0)

---
updated-dependencies:
- dependency-name: wgtechlabs/container-build-flow-action
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: bump github/codeql-action from 4.32.4 to 4.32.5 (#42)
1964d85 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.4 to 4.32.5.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@89a39a4...c793b71)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.32.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: bump oven/bun from 1.3.9-slim to 1.3.10-slim (#41)
9a48480 
Bumps oven/bun from 1.3.9-slim to 1.3.10-slim.

---
updated-dependencies:
- dependency-name: oven/bun
  dependency-version: 1.3.10-slim
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@warengonzaga
☕ chore: remove contribute now config
9682500
@warengonzaga
📖 docs (readme): add contributing section and update formatting
03522e0
@warengonzaga
☕ chore (deps): bump biome to 2.4.6 and update type definitions
e13910c 
- bump @biomejs/biome 2.4.4 -> 2.4.6
- bump @types/node 25.3.0 -> 25.3.3
- bump @types/bun and bun-types 1.3.8 -> 1.3.10

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@warengonzaga
🔧 update (delegation): improve queue error handling in background runner
1bfd8b4 
- update failed task status in DB on queue-level errors
- emit intercom task:failed event for nudge system notifications
- auto-dismiss sub-agent when no remaining running tasks
- extract error message safely from unknown error types

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@warengonzaga
🔧 update: fix plugin system issues and add improvements
b5030e2
@warengonzaga
📦 new (landing): add favicon and web manifest
fade9ae
@warengonzaga
🔧 update (landing): rebrand theme colors and add logo animations
8641ee7
@warengonzaga
🔧 update (landing): replace emoji with Tiny Claw logo image
fcbf927
@warengonzaga
🔧 update (web): update app styles
314209f
@warengonzaga
⚙️ setup (ci): improve container workflow with commit convention and …
b27966d 
…dependabot fix
@warengonzaga
📦 new (telegram): add telegram channel plugin
93816ae
@warengonzaga
☕ chore: add gitattributes to enforce lf line endings
8525e0f 
Add .gitattributes to normalize all text files to LF line endings,
preventing false positive changes caused by core.autocrlf=true on
Windows development environments.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@warengonzaga
📦 new (provider): add Ollama provider plugin with model pairing and c…
20d489f 
…atalog
@warengonzaga
🔧 update (ci): upgrade package publish action and enable bot detection
c29afaf
@dependabot
☕ chore: Bump vite from 7.3.1 to 8.0.0 (#58)
097faa2 
Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 7.3.1 to 8.0.0.
- [Release notes](https://github.com/vitejs/vite/releases)
- [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md)
- [Commits](https://github.com/vitejs/vite/commits/create-vite@8.0.0/packages/vite)

---
updated-dependencies:
- dependency-name: vite
  dependency-version: 8.0.0
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump github/codeql-action from 4.32.5 to 4.33.0 (#57)
c4ea71f 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.32.5 to 4.33.0.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@c793b71...b1bff81)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.33.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump docker/setup-qemu-action from 3 to 4 (#53)
6a600ba 
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 3 to 4.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](docker/setup-qemu-action@v3...v4)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump wgtechlabs/release-build-flow-action from 1.6.0 to 1.7.0 (
a88d402 
#52)

Bumps [wgtechlabs/release-build-flow-action](https://github.com/wgtechlabs/release-build-flow-action) from 1.6.0 to 1.7.0.
- [Release notes](https://github.com/wgtechlabs/release-build-flow-action/releases)
- [Changelog](https://github.com/wgtechlabs/release-build-flow-action/blob/main/CHANGELOG.md)
- [Commits](wgtechlabs/release-build-flow-action@v1.6.0...v1.7.0)

---
updated-dependencies:
- dependency-name: wgtechlabs/release-build-flow-action
  dependency-version: 1.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump actions/setup-node from 6.2.0 to 6.3.0 (#51)
3d92455 
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 6.2.0 to 6.3.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@6044e13...53b8394)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: 6.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump oven/bun from 1.3.10-slim to 1.3.11-slim (#59)
ade1023 
Bumps oven/bun from 1.3.10-slim to 1.3.11-slim.

---
updated-dependencies:
- dependency-name: oven/bun
  dependency-version: 1.3.11-slim
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump nick-fields/retry from 3 to 4 (#60)
2cef636 
Bumps [nick-fields/retry](https://github.com/nick-fields/retry) from 3 to 4.
- [Release notes](https://github.com/nick-fields/retry/releases)
- [Commits](nick-fields/retry@v3...v4)

---
updated-dependencies:
- dependency-name: nick-fields/retry
  dependency-version: '4'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump wgtechlabs/package-build-flow-action from 2.1.0 to 2.1.1 (
1168acf 
#61)

Bumps [wgtechlabs/package-build-flow-action](https://github.com/wgtechlabs/package-build-flow-action) from 2.1.0 to 2.1.1.
- [Release notes](https://github.com/wgtechlabs/package-build-flow-action/releases)
- [Changelog](https://github.com/wgtechlabs/package-build-flow-action/blob/main/CHANGELOG.md)
- [Commits](wgtechlabs/package-build-flow-action@v2.1.0...v2.1.1)

---
updated-dependencies:
- dependency-name: wgtechlabs/package-build-flow-action
  dependency-version: 2.1.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump typescript from 5.9.3 to 6.0.2 (#63)
44c5e8b 
Bumps [typescript](https://github.com/microsoft/TypeScript) from 5.9.3 to 6.0.2.
- [Release notes](https://github.com/microsoft/TypeScript/releases)
- [Commits](microsoft/TypeScript@v5.9.3...v6.0.2)

---
updated-dependencies:
- dependency-name: typescript
  dependency-version: 6.0.2
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump github/codeql-action from 4.33.0 to 4.35.1 (#64)
79c2d2c 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.33.0 to 4.35.1.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@b1bff81...c10b806)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump actions/deploy-pages from 4.0.5 to 5.0.0 (#65)
23a6fc7 
Bumps [actions/deploy-pages](https://github.com/actions/deploy-pages) from 4.0.5 to 5.0.0.
- [Release notes](https://github.com/actions/deploy-pages/releases)
- [Commits](actions/deploy-pages@d6db901...cd2ce8f)

---
updated-dependencies:
- dependency-name: actions/deploy-pages
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump wgtechlabs/container-build-flow-action from 1.7.0 to 1.…
ce4ef05 
…7.1 (#67)

Bumps [wgtechlabs/container-build-flow-action](https://github.com/wgtechlabs/container-build-flow-action) from 1.7.0 to 1.7.1.
- [Release notes](https://github.com/wgtechlabs/container-build-flow-action/releases)
- [Changelog](https://github.com/wgtechlabs/container-build-flow-action/blob/main/CHANGELOG.md)
- [Commits](wgtechlabs/container-build-flow-action@v1.7.0...v1.7.1)

---
updated-dependencies:
- dependency-name: wgtechlabs/container-build-flow-action
  dependency-version: 1.7.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 13, 2026

📦 Package Build Flow — Monorepo Build

🔀 Pull Request Build — Pre-release package for testing PR changes

Package Version Status Install
@tinyclaw/plugins 2.0.0-dev.6c85ab5 ✅ Published npm i @tinyclaw/plugins@2.0.0-dev.6c85ab5
@tinyclaw/types 2.0.0-dev.6c85ab5 ✅ Published npm i @tinyclaw/types@2.0.0-dev.6c85ab5
tinyclaw 2.0.0-dev.6c85ab5 ✅ Published npm i tinyclaw@2.0.0-dev.6c85ab5
@tinyclaw/plugin-channel-discord 2.0.0-dev.6c85ab5 ✅ Published npm i @tinyclaw/plugin-channel-discord@2.0.0-dev.6c85ab5
@tinyclaw/plugin-channel-friends 2.0.0-dev.6c85ab5 ✅ Published npm i @tinyclaw/plugin-channel-friends@2.0.0-dev.6c85ab5
@tinyclaw/plugin-channel-telegram 2.0.0-dev.6c85ab5 ⚠️ Built (not published)
@tinyclaw/plugin-provider-ollama 2.0.0-dev.6c85ab5 ⚠️ Built (not published)
@tinyclaw/plugin-provider-openai 2.0.0-dev.6c85ab5 ⚠️ Built (not published)

📥 Quick Install (changed packages)

npm i @tinyclaw/types@2.0.0-dev.6c85ab5 @tinyclaw/plugins@2.0.0-dev.6c85ab5 @tinyclaw/plugin-channel-discord@2.0.0-dev.6c85ab5 @tinyclaw/plugin-channel-friends@2.0.0-dev.6c85ab5 tinyclaw@2.0.0-dev.6c85ab5

This package was built automatically by the Package Build Flow action.

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 13, 2026

🛠️ Container Build Complete - Dev Build

Build Status: ✅ Success
Flow Type: dev
Description: Development and testing

📦 Pull Image

Docker Hub: docker pull warengonzaga/tinyclaw:dev-6c85ab5
GHCR: docker pull ghcr.io/warengonzaga/tinyclaw:dev-6c85ab5

📋 Build Details

Property Value
Flow Type dev
Commit 7fde6f5
Registry Docker Hub + GHCR

🏷️ Image Tags

warengonzaga/tinyclaw:dev-6c85ab5
ghcr.io/warengonzaga/tinyclaw:dev-6c85ab5

🔍 Testing Your Changes

  1. Pull the image using one of the commands above
  2. Run the container with your test configuration
  3. Verify the changes work as expected
  4. Report any issues in this PR

🚀 Quick Start

# Pull and run the container
Docker Hub: docker pull warengonzaga/tinyclaw:dev-6c85ab5
docker run <your-options> <image>

🔒 Security Scan Results

📋 Pre-Build Security Checks

Source Code Scan: 0 vulnerabilities found
Dockerfile Scan: 0 misconfigurations found

🐳 Container Image Vulnerabilities

Severity Count
Total 0

📊 Detailed Security Reports

View detailed vulnerability reports in the GitHub Security tab.

🤖 Powered by Container Build Flow Action vv1.7.1
💻 with ❤️ by Waren Gonzaga under WG Technology Labs, and Him 🙏

@warengonzaga warengonzaga marked this pull request as draft April 13, 2026 08:31
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 13, 2026

📦 Package Build Flow — Monorepo Build

🔀 Pull Request Build — Pre-release package for testing PR changes

Package Version Status Install
@tinyclaw/plugins 2.0.0-dev.fa2f03f ⚠️ Built (not published)
@tinyclaw/types 2.0.0-dev.fa2f03f ⚠️ Built (not published)
tinyclaw 2.0.0-dev.fa2f03f ⚠️ Built (not published)
@tinyclaw/plugin-channel-discord 2.0.0-dev.fa2f03f ⚠️ Built (not published)
@tinyclaw/plugin-channel-friends 2.0.0-dev.fa2f03f ⚠️ Built (not published)
@tinyclaw/plugin-channel-telegram 2.0.0-dev.fa2f03f ⚠️ Built (not published)
@tinyclaw/plugin-provider-ollama 2.0.0-dev.fa2f03f ⚠️ Built (not published)
@tinyclaw/plugin-provider-openai 2.0.0-dev.fa2f03f ⚠️ Built (not published)

📥 Quick Install

⚠️ No packages were published to any registry.

This package was built automatically by the Package Build Flow action.

dependabot Bot added 3 commits April 21, 2026 00:20
@dependabot
☕ chore: Bump actions/upload-pages-artifact from 4.0.0 to 5.0.0 (#71)
d193bf9 
Bumps [actions/upload-pages-artifact](https://github.com/actions/upload-pages-artifact) from 4.0.0 to 5.0.0.
- [Release notes](https://github.com/actions/upload-pages-artifact/releases)
- [Commits](actions/upload-pages-artifact@7b1f4a7...fc324d3)

---
updated-dependencies:
- dependency-name: actions/upload-pages-artifact
  dependency-version: 5.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump oven/bun from 1.3.11-slim to 1.3.12-slim (#72)
00575dc 
Bumps oven/bun from 1.3.11-slim to 1.3.12-slim.

---
updated-dependencies:
- dependency-name: oven/bun
  dependency-version: 1.3.12-slim
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump marked from 17.0.6 to 18.0.0 (#73)
5567025 
Bumps [marked](https://github.com/markedjs/marked) from 17.0.6 to 18.0.0.
- [Release notes](https://github.com/markedjs/marked/releases)
- [Commits](markedjs/marked@v17.0.6...v18.0.0)

---
updated-dependencies:
- dependency-name: marked
  dependency-version: 18.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 20, 2026

📦 Package Build Flow — Monorepo Build

🔀 Pull Request Build — Pre-release package for testing PR changes

Package Version Status Install
@tinyclaw/plugins 2.0.0-dev.62eac7e ⚠️ Built (not published)
@tinyclaw/types 2.0.0-dev.62eac7e ⚠️ Built (not published)
tinyclaw 2.0.0-dev.62eac7e ⚠️ Built (not published)
@tinyclaw/plugin-channel-discord 2.0.0-dev.62eac7e ⚠️ Built (not published)
@tinyclaw/plugin-channel-friends 2.0.0-dev.62eac7e ⚠️ Built (not published)
@tinyclaw/plugin-channel-telegram 2.0.0-dev.62eac7e ⚠️ Built (not published)
@tinyclaw/plugin-provider-ollama 2.0.0-dev.62eac7e ⚠️ Built (not published)
@tinyclaw/plugin-provider-openai 2.0.0-dev.62eac7e ⚠️ Built (not published)

📥 Quick Install

⚠️ No packages were published to any registry.

This package was built automatically by the Package Build Flow action.

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 20, 2026

📦 Package Build Flow — Monorepo Build

🔀 Pull Request Build — Pre-release package for testing PR changes

Package Version Status Install
@tinyclaw/plugins 2.0.0-dev.dfdc723 ⚠️ Built (not published)
@tinyclaw/types 2.0.0-dev.dfdc723 ⚠️ Built (not published)
tinyclaw 2.0.0-dev.dfdc723 ⚠️ Built (not published)
@tinyclaw/plugin-channel-discord 2.0.0-dev.dfdc723 ⚠️ Built (not published)
@tinyclaw/plugin-channel-friends 2.0.0-dev.dfdc723 ⚠️ Built (not published)
@tinyclaw/plugin-channel-telegram 2.0.0-dev.dfdc723 ⚠️ Built (not published)
@tinyclaw/plugin-provider-ollama 2.0.0-dev.dfdc723 ⚠️ Built (not published)
@tinyclaw/plugin-provider-openai 2.0.0-dev.dfdc723 ⚠️ Built (not published)

📥 Quick Install

⚠️ No packages were published to any registry.

This package was built automatically by the Package Build Flow action.

warengonzaga and others added 10 commits May 6, 2026 20:44
@warengonzaga
🔧 update: improve shield SQL detection and CLI channel routing (#69)
25a5ee7 
* 🔒 security (shield): fix false positives in SQL injection arg matching

* 🔧 update (cli): register cli channel alias for cli-prefixed owner routing

* 🔧 update: hoist CONTENT_FIELDS to module scope and add gateway alias tests

Agent-Logs-Url: https://github.com/warengonzaga/tinyclaw/sessions/826a02ef-4bef-4226-84ab-b5891dcc060d

Co-authored-by: warengonzaga <15052701+warengonzaga@users.noreply.github.com>

---------

Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: warengonzaga <15052701+warengonzaga@users.noreply.github.com>
@dependabot
☕ chore: Bump oven/bun from 1.3.12-slim to 1.3.13-slim
b8ba51e 
Bumps oven/bun from 1.3.12-slim to 1.3.13-slim.

---
updated-dependencies:
- dependency-name: oven/bun
  dependency-version: 1.3.13-slim
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump actions/setup-node from 6.3.0 to 6.4.0
eae94cf 
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 6.3.0 to 6.4.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](actions/setup-node@53b8394...48b55a0)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-version: 6.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump wgtechlabs/container-build-flow-action from 1.7.1 to 1.8.0
7523e16 
Bumps [wgtechlabs/container-build-flow-action](https://github.com/wgtechlabs/container-build-flow-action) from 1.7.1 to 1.8.0.
- [Release notes](https://github.com/wgtechlabs/container-build-flow-action/releases)
- [Changelog](https://github.com/wgtechlabs/container-build-flow-action/blob/main/CHANGELOG.md)
- [Commits](wgtechlabs/container-build-flow-action@v1.7.1...v1.8.0)

---
updated-dependencies:
- dependency-name: wgtechlabs/container-build-flow-action
  dependency-version: 1.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump github/codeql-action from 4.35.1 to 4.35.3
5b5e1a5 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.1 to 4.35.3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@c10b806...e46ed2c)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
☕ chore: Bump zod from 3.25.76 to 4.4.3
6ca1e65 
Bumps [zod](https://github.com/colinhacks/zod) from 3.25.76 to 4.4.3.
- [Release notes](https://github.com/colinhacks/zod/releases)
- [Commits](colinhacks/zod@v3.25.76...v4.4.3)

---
updated-dependencies:
- dependency-name: zod
  dependency-version: 4.4.3
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@warengonzaga
🔧 update(CI): enable AI commit assistance and tips
191a616
@warengonzaga
⚙️ setup(CI): refactor and streamline GitHub workflows
24efe58
@warengonzaga
⚙️ setup (config): update 1 config file
d866933
@warengonzaga
🔧 update (workflow): merge dev pipeline changes
268e130
github-advanced-security[bot]
github-advanced-security AI found potential problems May 7, 2026
View reviewed changes
Comment thread src/cli/tests/purge.test.ts Fixed
Comment thread src/cli/tests/purge.test.ts Fixed
Comment thread src/cli/tests/purge.test.ts Fixed
Comment thread packages/plugins/src/update-checker.ts Fixed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

+1 more reviewer

@github-advanced-security github-advanced-security[bot] github-advanced-security[bot] left review comments

Reviewers whose approvals may not affect merge requirements

At least 0 approving reviews are required to merge this pull request.

Assignees

@warengonzaga warengonzaga

Labels

maintainer only [Community] Reserved for maintainers — not open for external contribution [issues, PRs]

Projects

Labs
Status: In Progress

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@warengonzaga @github-advanced-security