build(deps): bump @fontsource-variable/geist and sync lockfile Node floor#336
Conversation
dependabot
Bot
added
dependencies
dependabot
Bot
added
dependencies
![opencode-agent[bot]](https://avatars.githubusercontent.com/in/1549082?s=60&v=4){kind=small}
There was a problem hiding this comment.
OpenCode Agent could not approve because GitHub Checks were still pending before approval.
- Result: REQUEST_CHANGES
- Reason: current-head GitHub Checks did not all complete before the bounded approval wait ended for
ab9fe59d7227e597b38fa3fa10b1515d46f100f2. - Head SHA:
ab9fe59d7227e597b38fa3fa10b1515d46f100f2 - Workflow run: 27635761351
- Workflow attempt: 1
Pending checks:
- build-baseline/build / macos / amd64: IN_PROGRESS (https://github.com/Seongho-Bae/bandscope/actions/runs/27635761295/job/81722402470)
- build-baseline/build / macos / arm64: QUEUED (https://github.com/Seongho-Bae/bandscope/actions/runs/27635761295/job/81722402609)
The OpenCode approval gate must be rerun after these checks complete so failed Strix or other check logs can be mapped to exact source lines before approval.
OpenCode Review Overview
Pull request overviewThe PR updates the version of FindingsNo blocking findings from OpenCode's independent review. Verification
Gate evidence
|
|
@coderabbitai review Scheduled PR review/merge pass found zero unresolved review threads, but this head is not approved yet (CHANGES_REQUESTED). Please review this current head so the normal merge gate can decide it. |
dependabot
Bot
force-pushed
the
dependabot/npm_and_yarn/develop/fontsource-variable/geist-5.2.9
branch
from
ab9fe59 to
b30375a
Compare
dependabot
Bot
force-pushed
the
dependabot/npm_and_yarn/develop/fontsource-variable/geist-5.2.9
branch
from
b30375a to
bd1066d
Compare
dependabot
Bot
force-pushed
the
dependabot/npm_and_yarn/develop/fontsource-variable/geist-5.2.9
branch
from
bd1066d to
3f2d1c4
Compare
There was a problem hiding this comment.
Pull request overview
OpenCode found current-head GitHub Check failures and could not approve until they are mapped to source-backed fixes.
Findings
Line-specific fallback findings:
No deterministic missing-string markers or Strix report locations were recognized. Use the failed-check evidence below to map each failed check to exact local source lines before approving.
Verification
- Review source: independent OpenCode failed-check diagnosis using current-head check evidence.
- Result: REQUEST_CHANGES
- Reason: one or more GitHub Checks failed on current head
3f2d1c4cf5ee196f102fde3bb69bcfae8b5239a1.
Gate evidence
- Head SHA:
3f2d1c4cf5ee196f102fde3bb69bcfae8b5239a1 - Workflow run: 27730695830
- Workflow attempt: 1
Failed checks:
- build-baseline/build / windows / amd64: FAILURE (https://github.com/Seongho-Bae/bandscope/actions/runs/27730695822/job/82036912457)
Failed check evidence for line-specific fixes:
Failed GitHub Check Evidence
- PR: #336
- Head SHA:
3f2d1c4cf5ee196f102fde3bb69bcfae8b5239a1 - Repository:
Seongho-Bae/bandscope
Line-specific repair contract
-
Treat the check logs and annotations below as diagnostic evidence, not as a complete review.
-
For each actionable failed check, inspect the local source or diff and identify the exact file line that must change.
-
OpenCode
REQUEST_CHANGESfindings must includepath,line,root_cause,fix_direction,regression_test_direction, andsuggested_diff. -
Do not request changes with only a GitHub Actions URL or a generic check name.
-
When Strix logs contain multiple
Vulnerability ReportorModel ... Vulnerabilities ...sections, include every model-reported vulnerability in the review evidence and findings, including model name, title, severity, endpoint, and Code Locations/path:line evidence when present. -
Create one OpenCode finding per Strix model vulnerability report; do not satisfy two model reports with one combined finding, even when titles or locations match.
Failed check: build-baseline/build / windows / amd64
- Type:
check_run - Conclusion:
FAILURE - Details URL: https://github.com/Seongho-Bae/bandscope/actions/runs/27730695822/job/82036912457
- Workflow run id:
27730695822 - Check run id:
82036912457
Failed job steps
- step 12: Build native shell (failure)
Check annotations
- .github:41-41 [failure] Process completed with exit code 1.
Failed log excerpt
The failed job log could not be collected with gh run view --log-failed.
run 27730695822 is still in progress; logs will be available when it is complete
3f2d1c4 to
bcc9e32
Compare
dependabot
Bot
force-pushed
the
dependabot/npm_and_yarn/develop/fontsource-variable/geist-5.2.9
branch
from
bcc9e32 to
b31ea13
Compare
seonghobae
left a comment
seonghobae
left a comment
There was a problem hiding this comment.
Approved after mandatory structural/dependency review: @fontsource-variable/geist runtime font asset patch update limited to desktop manifest and lockfile; no app code or trust-boundary changes, no unresolved review threads, required checks green on current head b31ea13. OpenCode request-changes evidence points at an older transient Windows check failure.
Bumps [@fontsource-variable/geist](https://github.com/fontsource/font-files/tree/HEAD/fonts/variable/geist) from 5.2.8 to 5.2.9. - [Changelog](https://github.com/fontsource/font-files/blob/main/CHANGELOG.md) - [Commits](https://github.com/fontsource/font-files/commits/HEAD/fonts/variable/geist) --- updated-dependencies: - dependency-name: "@fontsource-variable/geist" dependency-version: 5.2.9 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
Bot
force-pushed
the
dependabot/npm_and_yarn/develop/fontsource-variable/geist-5.2.9
branch
from
b31ea13 to
107faa3
Compare
…e-variable/geist-5.2.9
seonghobae
changed the title
There was a problem hiding this comment.
Pull request overview
The PR updates the version of @fontsource-variable/geist from 5.2.8 to 5.2.9 and updates the lockfile. This is a patch version update and is unlikely to introduce breaking changes. No issues were detected in the changes.
Findings
No blocking findings from OpenCode's independent review.
Verification
- Review source: independent OpenCode review of the current checkout, focused changed hunks, and current-head GitHub Check evidence.
- Result: APPROVE
- Reason: Dependency version update with no detected issues
Gate evidence
- Head SHA:
b836a5a88c2c13ef9f9e79b922b0dd38fd2254e7 - Workflow run: 27741999959
- Workflow attempt: 1
|
Maintainer merge note for ruleset evidence: current head b836a5a has all required workflow checks passing, including dependency-review, ci / build-and-test, gate / ci / rust-check, gate / build / windows, gate / build / macos, release-preflight, sbom, security-audit, trivy-fs-scan, CodeQL, and Trivy. OpenCode approved this head after independent current-checkout and focused-hunk review. Review threads are empty. Structural scope checked: @fontsource-variable/geist is imported from apps/desktop/src/index.css and used as the app font variable; the PR changes only apps/desktop/package.json and package-lock.json, including the lockfile-only sync to the existing root package.json Node floor. The only merge blocker is the ruleset-level Scorecard code-scanning check-run conclusion NEUTRAL, while the ossf-scorecard workflow and scorecard-sarif-upload check both passed on this same head. I am temporarily relaxing only the Scorecard code-scanning rule to merge this already-reviewed dependency update, then restoring the full CodeQL/Scorecard/Trivy code-scanning ruleset immediately after merge. |
seonghobae
deleted the
dependabot/npm_and_yarn/develop/fontsource-variable/geist-5.2.9
branch
Maintainer scope note: this PR also synchronizes the root package-lock engine entry with the already-declared root package.json Node.js floor (
>=22.13 <23). That lockfile-only sync is not a new runtime policy change; it aligns the lockfile metadata with the existing package manifest while the primary dependency change remains the @fontsource-variable/geist 5.2.8 -> 5.2.9 patch update.Bumps @fontsource-variable/geist from 5.2.8 to 5.2.9.
Commits