|
19 | 19 | # Bump deliberately and reconcile both |
20 | 20 | # .github/actions/conformance/expected-failures*.yml files in the same change. |
21 | 21 | # |
22 | | - # Temporarily pinned to the pkg.pr.new preview build of conformance#371, which |
23 | | - # fixes the http-custom-headers fixture's spec-forbidden `number`-typed |
24 | | - # x-mcp-header annotations. Pinned by commit SHA (not PR number) so a new push |
25 | | - # to #371 cannot silently change the tarball; CONFORMANCE_PKG_SHA256 then pins |
26 | | - # the bytes and the fetch-and-verify step below downloads, checks the digest, |
27 | | - # and repoints CONFORMANCE_PKG at the verified local copy. Repin to the |
28 | | - # published release that includes #371 once it ships, then drop |
| 22 | + # Temporarily pinned to the pkg.pr.new build of conformance main@b18aa918 |
| 23 | + # (the merge of #371, which fixes the http-custom-headers fixture's |
| 24 | + # spec-forbidden `number`-typed x-mcp-header annotations) — no published |
| 25 | + # release includes it yet. Pinned by commit SHA so the tarball cannot move |
| 26 | + # under us; CONFORMANCE_PKG_SHA256 pins the bytes and the fetch-and-verify |
| 27 | + # step below downloads, checks the digest, and repoints CONFORMANCE_PKG at the |
| 28 | + # verified local copy. Repin to the next published @modelcontextprotocol/ |
| 29 | + # conformance release (>0.2.0-alpha.7) once it ships, then drop |
29 | 30 | # CONFORMANCE_PKG_SHA256 and the fetch-and-verify steps. |
30 | | - CONFORMANCE_PKG: "https://pkg.pr.new/@modelcontextprotocol/conformance@ed314a73" |
| 31 | + CONFORMANCE_PKG: "https://pkg.pr.new/@modelcontextprotocol/conformance@b18aa918" |
31 | 32 | CONFORMANCE_PKG_SHA256: "e9f6bc25085b4692e988cbdbd024a4203d54a52a6aaa065376cf8ecaa09bb680" |
32 | 33 |
|
33 | 34 | jobs: |
|
0 commit comments