From f47ef42ebf9b03b22bd8358d7819ac886c1d16cf Mon Sep 17 00:00:00 2001
From: jdalton <john.david.dalton@gmail.com>
Date: Sat, 14 Mar 2026 12:07:29 -0400
Subject: [PATCH 1/3] ci: fix socket-registry workflow SHA reference

---
 .github/workflows/ci.yml         | 2 +-
 .github/workflows/generate.yml   | 4 ++--
 .github/workflows/provenance.yml | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 5842ce9d..fdb0a9b4 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -17,7 +17,7 @@ permissions:
 jobs:
   ci:
     name: Run CI Pipeline
-    uses: SocketDev/socket-registry/.github/workflows/ci.yml@b5641338627b8c60caf16ec3d3cf17b1f29e1d74 # main
+    uses: SocketDev/socket-registry/.github/workflows/ci.yml@b56413387eccc05dd8a392d421602289971ac1fe # main
     with:
       fail-fast: false
       lint-script: 'pnpm run lint --all'
diff --git a/.github/workflows/generate.yml b/.github/workflows/generate.yml
index 100a0854..7669e8d2 100644
--- a/.github/workflows/generate.yml
+++ b/.github/workflows/generate.yml
@@ -50,7 +50,7 @@ jobs:
           persist-credentials: false
           token: ${{ secrets.GITHUB_TOKEN }}
 
-      - uses: SocketDev/socket-registry/.github/actions/setup-and-install@b5641338627b8c60caf16ec3d3cf17b1f29e1d74 # main
+      - uses: SocketDev/socket-registry/.github/actions/setup-and-install@b56413387eccc05dd8a392d421602289971ac1fe # main
 
       - name: Generate SDK
         # Fetches OpenAPI, generates types/api.d.ts and src/types-strict.ts
@@ -128,7 +128,7 @@ jobs:
           persist-credentials: false
           ref: automated/open-api
 
-      - uses: SocketDev/socket-registry/.github/actions/setup-and-install@b5641338627b8c60caf16ec3d3cf17b1f29e1d74 # main
+      - uses: SocketDev/socket-registry/.github/actions/setup-and-install@b56413387eccc05dd8a392d421602289971ac1fe # main
 
       - name: Build SDK
         run: pnpm run build
diff --git a/.github/workflows/provenance.yml b/.github/workflows/provenance.yml
index e81f7c5e..2eea5aa7 100644
--- a/.github/workflows/provenance.yml
+++ b/.github/workflows/provenance.yml
@@ -25,7 +25,7 @@ jobs:
     permissions:
       contents: write # To create GitHub releases
       id-token: write # For npm trusted publishing via OIDC
-    uses: SocketDev/socket-registry/.github/workflows/provenance.yml@b5641338627b8c60caf16ec3d3cf17b1f29e1d74 # main
+    uses: SocketDev/socket-registry/.github/workflows/provenance.yml@b56413387eccc05dd8a392d421602289971ac1fe # main
     with:
       debug: ${{ inputs.debug }}
       dist-tag: ${{ inputs.dist-tag }}

From 204ce1d83d1bac15e678f8cd18bf05c719f68a68 Mon Sep 17 00:00:00 2001
From: jdalton <john.david.dalton@gmail.com>
Date: Sat, 14 Mar 2026 12:26:01 -0400
Subject: [PATCH 2/3] chore(ci): update socket-registry workflow SHA

---
 .github/workflows/ci.yml         | 2 +-
 .github/workflows/generate.yml   | 4 ++--
 .github/workflows/provenance.yml | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index fdb0a9b4..5deb44fb 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -17,7 +17,7 @@ permissions:
 jobs:
   ci:
     name: Run CI Pipeline
-    uses: SocketDev/socket-registry/.github/workflows/ci.yml@b56413387eccc05dd8a392d421602289971ac1fe # main
+    uses: SocketDev/socket-registry/.github/workflows/ci.yml@7fa48b6cd525f57f98d92dbd35794cc9b20f2d14 # main
     with:
       fail-fast: false
       lint-script: 'pnpm run lint --all'
diff --git a/.github/workflows/generate.yml b/.github/workflows/generate.yml
index 7669e8d2..86c11faf 100644
--- a/.github/workflows/generate.yml
+++ b/.github/workflows/generate.yml
@@ -50,7 +50,7 @@ jobs:
           persist-credentials: false
           token: ${{ secrets.GITHUB_TOKEN }}
 
-      - uses: SocketDev/socket-registry/.github/actions/setup-and-install@b56413387eccc05dd8a392d421602289971ac1fe # main
+      - uses: SocketDev/socket-registry/.github/actions/setup-and-install@7fa48b6cd525f57f98d92dbd35794cc9b20f2d14 # main
 
       - name: Generate SDK
         # Fetches OpenAPI, generates types/api.d.ts and src/types-strict.ts
@@ -128,7 +128,7 @@ jobs:
           persist-credentials: false
           ref: automated/open-api
 
-      - uses: SocketDev/socket-registry/.github/actions/setup-and-install@b56413387eccc05dd8a392d421602289971ac1fe # main
+      - uses: SocketDev/socket-registry/.github/actions/setup-and-install@7fa48b6cd525f57f98d92dbd35794cc9b20f2d14 # main
 
       - name: Build SDK
         run: pnpm run build
diff --git a/.github/workflows/provenance.yml b/.github/workflows/provenance.yml
index 2eea5aa7..969852b9 100644
--- a/.github/workflows/provenance.yml
+++ b/.github/workflows/provenance.yml
@@ -25,7 +25,7 @@ jobs:
     permissions:
       contents: write # To create GitHub releases
       id-token: write # For npm trusted publishing via OIDC
-    uses: SocketDev/socket-registry/.github/workflows/provenance.yml@b56413387eccc05dd8a392d421602289971ac1fe # main
+    uses: SocketDev/socket-registry/.github/workflows/provenance.yml@7fa48b6cd525f57f98d92dbd35794cc9b20f2d14 # main
     with:
       debug: ${{ inputs.debug }}
       dist-tag: ${{ inputs.dist-tag }}

From b0ed9c3616c8ce655f88ce23115cf394fbd4d535 Mon Sep 17 00:00:00 2001
From: jdalton <john.david.dalton@gmail.com>
Date: Sat, 14 Mar 2026 12:39:01 -0400
Subject: [PATCH 3/3] chore(deps): update @socketsecurity/lib to v5.9.0

---
 package.json   |  2 +-
 pnpm-lock.yaml | 10 +++++-----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/package.json b/package.json
index d99d339c..a1369dd4 100644
--- a/package.json
+++ b/package.json
@@ -65,7 +65,7 @@
   },
   "dependencies": {
     "@socketregistry/packageurl-js": "1.3.5",
-    "@socketsecurity/lib": "5.8.2",
+    "@socketsecurity/lib": "5.9.0",
     "form-data": "4.0.5"
   },
   "devDependencies": {
diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml
index 5a11f87d..866ea657 100644
--- a/pnpm-lock.yaml
+++ b/pnpm-lock.yaml
@@ -15,8 +15,8 @@ importers:
         specifier: 1.3.5
         version: 1.3.5
       '@socketsecurity/lib':
-        specifier: 5.8.2
-        version: 5.8.2(typescript@5.9.3)
+        specifier: 5.9.0
+        version: 5.9.0(typescript@5.9.3)
       form-data:
         specifier: 4.0.5
         version: 4.0.5
@@ -919,8 +919,8 @@ packages:
     resolution: {integrity: sha512-Fl4GNUJ/z3IBJBGj4IsJfuRGUBCRMgX0df0mb5x5buaCPDKC+NhMhAFuxpc3viLSHV12CO2rGaNCf4fBYWI0FA==}
     engines: {node: '>=18', pnpm: '>=10.16.0'}
 
-  '@socketsecurity/lib@5.8.2':
-    resolution: {integrity: sha512-DBm741XLIotu9vUpOwEEcHMXk1Dc0QYRvPLx6snxJgnn322OO2TboQfsQiG80Lyc8oN4jS7enNRgkfX45KdpLQ==}
+  '@socketsecurity/lib@5.9.0':
+    resolution: {integrity: sha512-j3lF9HDDix1lySOAH4DHdJaCF67/QIByEFGk2Ee/ONBiVwnO3hn6qfXItPcO5nQCtlLHRa+g6ZL5qsu0aghAEA==}
     engines: {node: '>=22', pnpm: '>=10.25.0'}
     peerDependencies:
       typescript: '>=5.0.0'
@@ -2458,7 +2458,7 @@ snapshots:
 
   '@socketregistry/packageurl-js@1.3.5': {}
 
-  '@socketsecurity/lib@5.8.2(typescript@5.9.3)':
+  '@socketsecurity/lib@5.9.0(typescript@5.9.3)':
     optionalDependencies:
       typescript: 5.9.3