potiuk opened a new pull request, #505: URL: https://github.com/apache/airflow-steward/pull/505
Bumps the pinned `claude-code` from **2.1.165** to **2.1.172** (released 2026-06-10, past the 1-day cooldown). Changelog reviewed against the secure setup — no weakening of permission-rule semantics, sandbox flags, or prompt-injection mitigations. Several entries *strengthen* the posture: - **2.1.166** — relayed `SendMessage` tool requests no longer carry user authority (closes a cross-session permission-escalation path); glob deny rules in tool-name position; managed-settings enforcement hardened. - **2.1.169** — untrusted project settings can no longer set OTEL client-cert paths without trust confirmation. - **2.1.172** — `WebFetch` allow/deny/ask domain-wildcard rules now match subdomains correctly (was a silent permission gap). 2.1.170 ships Claude Fable 5. Updates `pinned_at` and both install commands in `docs/setup/secure-agent-setup.md`. `check-tool-updates.sh` is green after the bump. 🤖 Generated with [Claude Code](https://claude.com/claude-code) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
