Publish hosted managed runtime images#134
Conversation
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: 6df38e4f30
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
| if _authority_findings(payload): | ||
| diagnostics.append("authority_boundary_expanded") |
There was a problem hiding this comment.
Require authority boundary fields before accepting locks
When the downloaded lock omits authority_boundary entirely, _authority_findings(payload) returns an empty list and the validator still reports success as long as the other fields are present. For the production image-lock handoff, that lets a malformed or stripped artifact be treated as the machine-checkable proof that publishing cannot deploy, expand allowlists, or execute operations even though those explicit false grants are absent; require the expected authority_boundary object and may_*: false keys before accepting the lock.
Useful? React with 👍 / 👎.
Summary
Motivation
Goals
Changes
Validation
Commands run:
Results:
353 passed,7 skipped.3 passed.Risks / Notes
main; actual production deployment remains separate.Checklist