feat(sync): add daemon-trusted stable-root routing (TIN-2853)#551
Draft
Jesssullivan wants to merge 4 commits into
Draft
feat(sync): add daemon-trusted stable-root routing (TIN-2853)#551Jesssullivan wants to merge 4 commits into
Jesssullivan wants to merge 4 commits into
Conversation
Jesssullivan
force-pushed
the
codex/stable-root-routing-20260714
branch
from
July 14, 2026 14:36
b822f6c to
a5521d5
Compare
Jesssullivan
force-pushed
the
codex/stable-root-routing-20260714
branch
from
July 14, 2026 15:15
d376381 to
69dfe07
Compare
Owner
Author
|
Independent Linux Nix repair proof:
No fleet, auth, deployment, or live root state changed. |
Jesssullivan
marked this pull request as draft
July 14, 2026 20:04
Owner
Author
|
Exact-head adversarial review found blocking root-identity and compatibility/claim gaps in the local hardening follow-up. Returning this PR to draft while those findings are fixed and revalidated; the incident freeze and source-only boundary remain unchanged. |
Close auth, namespace, exact hydration, Git, tombstone retention, and FileProvider fail-closed gaps found during PR #551 recovery. Regenerate iOS bindings and expand regression and CI coverage.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Adds the narrow daemon-trusted root identity seam required to inspect and resolve an isolated repo conflict cache without accepting client-supplied state paths or storage prefixes.
Changes
Test plan
Checklist
Claim boundary
This PR does not enroll or deploy a live root, verify an authentication session, execute a live dry-run or mutation, restart reconciliation, or prove multi-cycle fleet convergence. The active incident freeze remains in force.
Linear: TIN-2853
Packaging/runtime Git availability remains a separate blocker under TIN-2688; this source seam does not claim installed-service readiness.