Skip to content

fix: production hardening (tok 0.1.0 CHANGELOG, trace panic, pin gosec/govulncheck, gosec enforcing)#35

Merged
Patel230 merged 1 commit into
mainfrom
production.hardening
Jun 10, 2026
Merged

fix: production hardening (tok 0.1.0 CHANGELOG, trace panic, pin gosec/govulncheck, gosec enforcing)#35
Patel230 merged 1 commit into
mainfrom
production.hardening

Conversation

@Patel230

@Patel230 Patel230 commented Jun 10, 2026

Copy link
Copy Markdown
Contributor

Production Readiness Fixes (9-May-2026)

  • tok CHANGELOG — added ## [0.1.0] header and moved Unreleased content, now all ecosystem repos have consistent version docs
  • trace:id/id.go — fixed bare panic, returning descriptive error via fmt.Errorf
  • CI tooling — pinned govulncheck@v1.1.4 and gosec@v2.22.4 across all 11 repos; removed continue-on-error: true from eyrie gosec, making it an enforcing job

All 11 repos are now:
• Clean on main (no uncommitted/untracked changes)
• In sync with origin/main (0/0 ahead-behind)
• CI green on HEAD (including Scorecard where applicable)
• Version-consistent (0.1.0 project version, Go 1.26.4 toolchain)
• Properly integrated (hawk/external submodules aligned, cross-repo pins valid)

Ready for merge and promotion to production.

Required Checks

  • CI workflow passes (all required jobs)
  • Scorecard runs successfully (if applicable)
  • Tags are present where needed (v0.1.0 / v0.1.0)
  • Submodule alignment (hawk external already aligned)
  • Security scanning passes (gosec now enforcing in eyrie)

@Patel230 Patel230 merged commit 6c99b54 into main Jun 10, 2026
14 checks passed
@Patel230 Patel230 deleted the production.hardening branch June 10, 2026 03:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Patel230