Skip to content

πŸ“ docs(changelog): cut v1.5.0-rc.37 (security CVE batch + CI flake hardening)#437

Merged
scttbnsn merged 1 commit into
mainfrom
release/v1.5.0-rc.37
Jun 15, 2026
Merged

πŸ“ docs(changelog): cut v1.5.0-rc.37 (security CVE batch + CI flake hardening)#437
scttbnsn merged 1 commit into
mainfrom
release/v1.5.0-rc.37

Conversation

@scttbnsn

@scttbnsn scttbnsn commented Jun 15, 2026

Copy link
Copy Markdown
Contributor

Release prep for v1.5.0-rc.37. Adds the CHANGELOG entry required by release-cut.yml's validator.

rc.37 = rc.36 + #436 (πŸ”§ chore(ci): harden E2E/CI against transient flakes):

  • Security β€” patched the 2026-06-15 transitive CVE batch (vite CVE-2026-53571/53632, @babel/core CVE-2026-49356, form-data CVE-2026-12143, protobufjs CVE-2026-54269, ws CVE-2026-48779) via overrides/direct bumps across root/app/ui/e2e/apps/demo; js-yaml (artillery, test-only) triaged unreachable.
  • Changed β€” registry rate-limiter burst 5β†’10 for ghcr.io / Docker Hub; E2E/CI flake hardening (keep-alive fixtures so the watcher discovers the full set, strict bootstrap readiness, deterministic Playwright waits).

Changelog-only; no source changes in this PR. Once merged I'll dispatch release-cut.yml --ref main -f release_tag=v1.5.0-rc.37.

@scttbnsn
πŸ“ docs(changelog): add 1.5.0-rc.37 entry (security CVE batch + CI fla…
a37cc8a 
…ke hardening)

rc.37 = rc.36 + #436. Security: patched the 2026-06-15 transitive CVE batch
(vite, @babel/core, form-data, protobufjs, ws) via overrides/bumps; js-yaml
triaged unreachable. Changed: registry rate-limiter burst 5β†’10 for ghcr.io /
Docker Hub, and E2E/CI flake hardening (keep-alive fixtures, strict bootstrap,
deterministic Playwright waits). Required by release-cut's CHANGELOG validator.
@vercel

vercel Bot commented Jun 15, 2026
edited
Loading

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
drydock-website Ready Ready Preview, Comment Jun 15, 2026 7:56pm
drydockdemo-website Ready Ready Preview, Comment Jun 15, 2026 7:56pm

@codecov

codecov Bot commented Jun 15, 2026

Copy link
Copy Markdown

Codecov Report

βœ… All modified and coverable lines are covered by tests.

πŸ“’ Thoughts on this report? Let us know!

biggest-littlest
biggest-littlest approved these changes Jun 15, 2026
View reviewed changes

@biggest-littlest biggest-littlest left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changelog-only release-prep for rc.37. CI green (Lint, Coverage, Build, CodeQL, Snyk, qlty all pass); e2e correctly path-filtered. Matches #436 contents. LGTM.

ALARGECOMPANY
ALARGECOMPANY approved these changes Jun 15, 2026
View reviewed changes

@ALARGECOMPANY ALARGECOMPANY left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Verified the rc.37 CHANGELOG entry is accurate and the validator extracts it cleanly. Approving.

@scttbnsn scttbnsn merged commit 25b3df8 into main Jun 15, 2026
24 checks passed
@scttbnsn scttbnsn deleted the release/v1.5.0-rc.37 branch June 15, 2026 20:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@biggest-littlest biggest-littlest biggest-littlest approved these changes

@ALARGECOMPANY ALARGECOMPANY ALARGECOMPANY approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@scttbnsn @biggest-littlest @ALARGECOMPANY