Skip to content

Commit d52c041

Browse files
wiggzzwiggzz
authored
Security: add minimum package release age gate against supply chain attacks (#746)
1 parent fc5d2a3 commit d52c041

4 files changed

Lines changed: 17 additions & 1 deletion

File tree

.changes/unreleased/Security-20260501-124250.yaml

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,3 @@
1+
kind: Security
2+
body: Add 7-day minimum package release age gate to prevent supply chain attacks via freshly-published malicious packages
3+
time: 2026-05-01T12:42:50.530604-05:00

.tool-versions

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
nodejs 20.17.0
2-
uv 0.8.19
2+
uv 0.11.8
33
task 3.43.2
44
pnpm 10.15.1
55
shellcheck 0.11.0

pyproject.toml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -45,6 +45,10 @@ dependencies = [
4545
"filelock~=3.20.3",
4646
"starlette~=0.50.0",
4747
]
48+
[tool.uv]
49+
exclude-newer = "7 days"
50+
exclude-newer-package = { dbt-protos = false, dbt-sl-sdk = false, dbtlabs-vortex = false }
51+
4852
[dependency-groups]
4953
dev = [
5054
"ruff>=0.11.2",

uv.lock

Lines changed: 9 additions & 0 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)