Skip to content

Add automatic update checks for security tools (zizmor, SFW)#251

Open
John-David Dalton (jdalton) wants to merge 1 commit intomainfrom
feat/security-tools-updater
Open

Add automatic update checks for security tools (zizmor, SFW)#251
John-David Dalton (jdalton) wants to merge 1 commit intomainfrom
feat/security-tools-updater

Conversation

@jdalton
Copy link
Copy Markdown
Collaborator

@jdalton John-David Dalton (jdalton) commented Apr 10, 2026

Summary

  • Adds update.mts script that checks for new zizmor and SFW releases
  • Respects pnpm minimumReleaseAge cooldown for third-party tools (zizmor)
  • Updates Socket-owned tools (SFW) immediately without cooldown
  • Updates embedded SHA-256 checksums in index.mts when new versions are found
  • Adds phases 3b (security tools) and 3c (Claude Code version sync) to the updating skill

Files

  • .claude/hooks/setup-security-tools/update.mts - Version check and checksum update script
  • .claude/skills/updating/SKILL.md - Added phases 3b and 3c
  • .gitignore - Updated to track .claude/hooks/ and .claude/settings.json

Test plan

  • Run node .claude/hooks/setup-security-tools/update.mts and verify it checks versions
  • Verify zizmor cooldown is respected (skips if release is too new)
  • Verify SFW checksums are checked without cooldown
  • Verify /update skill document includes the new phases

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jdalton