Merged
Conversation
Contributor
supabase-cli-releaser
bot
commented
Mar 31, 2026
supabase-cli-releaser
bot
commented
- fix: mount notification email templates
- return errors
- chore: sync API types from infrastructure (chore: sync API types from infrastructure #4997)
- chore(deps): bump the actions-major group across 1 directory with 2 updates (chore(deps): bump the actions-major group across 1 directory with 2 updates #5002)
- chore(deps): bump github.com/oapi-codegen/runtime from 1.3.0 to 1.3.1 in the go-minor group across 1 directory (chore(deps): bump github.com/oapi-codegen/runtime from 1.3.0 to 1.3.1 in the go-minor group across 1 directory #4993)
…pdates (#5002) * chore(deps): bump the actions-major group across 1 directory with 2 updates Bumps the actions-major group with 2 updates in the / directory: [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) and [github/codeql-action](https://github.com/github/codeql-action). Updates `dependabot/fetch-metadata` from 2.5.0 to 3.0.0 - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](dependabot/fetch-metadata@21025c7...ffa630c) Updates `github/codeql-action` from 4.34.1 to 4.35.1 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@3869755...c10b806) --- updated-dependencies: - dependency-name: dependabot/fetch-metadata dependency-version: 3.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: actions-major - dependency-name: github/codeql-action dependency-version: 4.35.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-major ... Signed-off-by: dependabot[bot] <support@github.com> * feat: add workflow to create and push pkg Go module version tags (#5001) * Initial plan * feat: add workflow to create and push pkg version tags Agent-Logs-Url: https://github.com/supabase/cli/sessions/78b5dd93-1c78-4cdc-b6f0-c664080934b8 Co-authored-by: sweatybridge <1639722+sweatybridge@users.noreply.github.com> * feat: add version validation and tag existence check to tag-pkg workflow Agent-Logs-Url: https://github.com/supabase/cli/sessions/78b5dd93-1c78-4cdc-b6f0-c664080934b8 Co-authored-by: sweatybridge <1639722+sweatybridge@users.noreply.github.com> * Apply suggestion from @Copilot Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: sweatybridge <1639722+sweatybridge@users.noreply.github.com> Co-authored-by: Han Qiao <sweatybridge@gmail.com> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com> Co-authored-by: sweatybridge <1639722+sweatybridge@users.noreply.github.com> Co-authored-by: Han Qiao <sweatybridge@gmail.com> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
… in the go-minor group across 1 directory (#4993) chore(deps): bump github.com/oapi-codegen/runtime Bumps the go-minor group with 1 update in the /pkg directory: [github.com/oapi-codegen/runtime](https://github.com/oapi-codegen/runtime). Updates `github.com/oapi-codegen/runtime` from 1.3.0 to 1.3.1 - [Release notes](https://github.com/oapi-codegen/runtime/releases) - [Commits](oapi-codegen/runtime@v1.3.0...v1.3.1) --- updated-dependencies: - dependency-name: github.com/oapi-codegen/runtime dependency-version: 1.3.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
#5013) Bumps the go-minor group with 3 updates in the / directory: [github.com/andybalholm/brotli](https://github.com/andybalholm/brotli), [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) and [github.com/go-playground/validator/v10](https://github.com/go-playground/validator). Updates `github.com/andybalholm/brotli` from 1.2.0 to 1.2.1 - [Commits](andybalholm/brotli@v1.2.0...v1.2.1) Updates `github.com/go-git/go-git/v5` from 5.17.0 to 5.17.2 - [Release notes](https://github.com/go-git/go-git/releases) - [Commits](go-git/go-git@v5.17.0...v5.17.2) Updates `github.com/go-playground/validator/v10` from 10.30.1 to 10.30.2 - [Release notes](https://github.com/go-playground/validator/releases) - [Commits](go-playground/validator@v10.30.1...v10.30.2) --- updated-dependencies: - dependency-name: github.com/andybalholm/brotli dependency-version: 1.2.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-minor - dependency-name: github.com/go-git/go-git/v5 dependency-version: 5.17.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-minor - dependency-name: github.com/go-playground/validator/v10 dependency-version: 10.30.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: supabase-cli-releaser[bot] <246109035+supabase-cli-releaser[bot]@users.noreply.github.com>
…t` (#4873) Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
…/pkg/config/templates (#4992) fix(docker): bump supabase/postgres in /pkg/config/templates Bumps supabase/postgres from 17.6.1.095 to 17.6.1.102. --- updated-dependencies: - dependency-name: supabase/postgres dependency-version: 17.6.1.102 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
…dates (#5018) Bumps the docker-minor group with 6 updates in the /pkg/config/templates directory: | Package | From | To | | --- | --- | --- | | supabase/postgres-meta | `v0.96.1` | `v0.96.2` | | supabase/studio | `2026.03.23-sha-b7847b7` | `2026.03.30-sha-12a43e5` | | supabase/edge-runtime | `v1.73.0` | `v1.73.1` | | supabase/realtime | `v2.78.18` | `v2.80.4` | | supabase/storage-api | `v1.44.11` | `v1.48.10` | | supabase/logflare | `1.34.14` | `1.36.0` | Updates `supabase/postgres-meta` from v0.96.1 to v0.96.2 Updates `supabase/studio` from 2026.03.23-sha-b7847b7 to 2026.03.30-sha-12a43e5 Updates `supabase/edge-runtime` from v1.73.0 to v1.73.1 Updates `supabase/realtime` from v2.78.18 to v2.80.4 Updates `supabase/storage-api` from v1.44.11 to v1.48.10 Updates `supabase/logflare` from 1.34.14 to 1.36.0 --- updated-dependencies: - dependency-name: supabase/postgres-meta dependency-version: v0.96.2 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/studio dependency-version: 2026.03.30-sha-12a43e5 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/edge-runtime dependency-version: v1.73.1 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/realtime dependency-version: v2.80.4 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/storage-api dependency-version: v1.48.10 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/logflare dependency-version: 1.36.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docker-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…-major group across 1 directory (#5008) chore(deps): bump actions/setup-go in the actions-major group Bumps the actions-major group with 1 update: [actions/setup-go](https://github.com/actions/setup-go). Updates `actions/setup-go` from 6.3.0 to 6.4.0 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@4b73464...4a36011) --- updated-dependencies: - dependency-name: actions/setup-go dependency-version: 6.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…3593) (#4791) fix: use correct docker.sock binding when starting vector img (fixes #3127, #3512, #3593) This fixes Docker Desktop on Linux failing to start the vector container. The container tries to bind to the Docker Desktop socket directly, which is unsupported. The host binding path should always be /var/run/docker.sock, which has special handling under the hood (see docker/for-mac#6545 (comment)). Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
…tes (#5025) Bumps the go-minor group with 1 update in the / directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go). Bumps the go-minor group with 2 updates in the /pkg directory: [github.com/andybalholm/brotli](https://github.com/andybalholm/brotli) and [google.golang.org/grpc](https://github.com/grpc/grpc-go). Updates `google.golang.org/grpc` from 1.79.3 to 1.80.0 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.79.3...v1.80.0) Updates `github.com/andybalholm/brotli` from 1.2.0 to 1.2.1 - [Commits](andybalholm/brotli@v1.2.0...v1.2.1) Updates `google.golang.org/grpc` from 1.79.3 to 1.80.0 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.79.3...v1.80.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-version: 1.80.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-minor - dependency-name: github.com/andybalholm/brotli dependency-version: 1.2.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-minor - dependency-name: google.golang.org/grpc dependency-version: 1.80.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
…/pkg/config/templates (#5023) fix(docker): bump supabase/postgres in /pkg/config/templates Bumps supabase/postgres from 17.6.1.102 to 17.6.1.104. --- updated-dependencies: - dependency-name: supabase/postgres dependency-version: 17.6.1.104 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
Co-authored-by: supabase-cli-releaser[bot] <246109035+supabase-cli-releaser[bot]@users.noreply.github.com>
…5031) * Add merge_group triggers to CI workflows Agent-Logs-Url: https://github.com/supabase/cli/sessions/956fab18-300f-4c6c-8e28-57242abff9e1 Co-authored-by: avallete <8771783+avallete@users.noreply.github.com> * chore: update codeowners for team cli --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: avallete <8771783+avallete@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com> Co-authored-by: avallete <andrew.valleteau@supabase.io>
…dates (#5030) Bumps the docker-minor group with 4 updates in the /pkg/config/templates directory: supabase/edge-runtime, supabase/realtime, supabase/storage-api and supabase/logflare. Updates `supabase/edge-runtime` from v1.73.1 to v1.73.2 Updates `supabase/realtime` from v2.80.4 to v2.80.7 Updates `supabase/storage-api` from v1.48.10 to v1.48.13 Updates `supabase/logflare` from 1.36.0 to 1.36.1 --- updated-dependencies: - dependency-name: supabase/edge-runtime dependency-version: v1.73.2 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/realtime dependency-version: v2.80.7 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/storage-api dependency-version: v1.48.13 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/logflare dependency-version: 1.36.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: docker-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
…ons-major group across 1 directory (#5029) chore(deps): bump docker/login-action in the actions-major group Bumps the actions-major group with 1 update: [docker/login-action](https://github.com/docker/login-action). Updates `docker/login-action` from 4.0.0 to 4.1.0 - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@b45d80f...4907a6d) --- updated-dependencies: - dependency-name: docker/login-action dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
…jor group (#5021) chore(deps): bump https-proxy-agent in the npm-major group Bumps the npm-major group with 1 update: [https-proxy-agent](https://github.com/TooTallNate/proxy-agents/tree/HEAD/packages/https-proxy-agent). Updates `https-proxy-agent` from 8.0.0 to 9.0.0 - [Release notes](https://github.com/TooTallNate/proxy-agents/releases) - [Changelog](https://github.com/TooTallNate/proxy-agents/blob/main/packages/https-proxy-agent/CHANGELOG.md) - [Commits](https://github.com/TooTallNate/proxy-agents/commits/https-proxy-agent@9.0.0/packages/https-proxy-agent) --- updated-dependencies: - dependency-name: https-proxy-agent dependency-version: 9.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: npm-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
When agent mode is active, run a lightweight RLS check after each query and include an advisory in the JSON envelope if any user-schema tables lack Row Level Security. Uses the same schema exclusion list as lints.sql (rls_disabled_in_public). Ref: GROWTH-712
…illing-links-for-branches-commands
Coverage Report for CI Build 24348109058Warning No base build found for commit Coverage: 63.72%Details
Uncovered Changes
Coverage RegressionsRequires a base build to compare against. How to fix this → Coverage Stats
💛 - Coveralls |
…dates (#5042) Bumps the docker-minor group with 5 updates in the /pkg/config/templates directory: | Package | From | To | | --- | --- | --- | | postgrest/postgrest | `v14.7` | `v14.8` | | supabase/studio | `2026.03.30-sha-12a43e5` | `2026.04.06-sha-b9e83b2` | | supabase/edge-runtime | `v1.73.2` | `v1.73.3` | | supabase/realtime | `v2.80.7` | `v2.80.12` | | supabase/storage-api | `v1.48.13` | `v1.48.21` | Updates `postgrest/postgrest` from v14.7 to v14.8 Updates `supabase/studio` from 2026.03.30-sha-12a43e5 to 2026.04.06-sha-b9e83b2 Updates `supabase/edge-runtime` from v1.73.2 to v1.73.3 Updates `supabase/realtime` from v2.80.7 to v2.80.12 Updates `supabase/storage-api` from v1.48.13 to v1.48.21 --- updated-dependencies: - dependency-name: postgrest/postgrest dependency-version: v14.8 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/studio dependency-version: 2026.04.06-sha-b9e83b2 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/edge-runtime dependency-version: v1.73.3 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/realtime dependency-version: v2.80.12 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/storage-api dependency-version: v1.48.21 dependency-type: direct:production dependency-group: docker-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Julien Goux <hi@jgoux.dev>
… 6.1.0 in the actions-major group (#5041) chore(deps): bump aws-actions/configure-aws-credentials Bumps the actions-major group with 1 update: [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials). Updates `aws-actions/configure-aws-credentials` from 6.0.0 to 6.1.0 - [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases) - [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md) - [Commits](aws-actions/configure-aws-credentials@8df5847...ec61189) --- updated-dependencies: - dependency-name: aws-actions/configure-aws-credentials dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com> Co-authored-by: Julien Goux <hi@jgoux.dev>
* feat: add posthog telemetry * fix(cli): cursor agent detection * feat: use single flag map and explicit safe flag annotation * feat: add env vars signal telemetry * fix: lint add goreleaser changes * chore: group telemetry constants
Error message was not indicating which Docker container failed to start, forcing the user to use a process of elimination to narrow down the problem. Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
* fix(diff): migra js OOM error * chore: not use uneffective flags
* feat(telemetry): add cli_upgrade_suggested event and return bool from SuggestUpgradeOnError * feat(branches): fire upgrade suggested telemetry on 402 errors * fix(telemetry): return org_slug from SuggestUpgradeOnError and include in event --------- Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
…h 4 updates (#5048) fix(docker): bump the docker-minor group Bumps the docker-minor group in /pkg/config/templates with 4 updates: supabase/postgres-meta, supabase/realtime, supabase/storage-api and supabase/logflare. Updates `supabase/postgres-meta` from v0.96.2 to v0.96.3 Updates `supabase/realtime` from v2.80.12 to v2.80.13 Updates `supabase/storage-api` from v1.48.21 to v1.48.27 Updates `supabase/logflare` from 1.36.1 to 1.37.0 --- updated-dependencies: - dependency-name: supabase/postgres-meta dependency-version: v0.96.3 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/realtime dependency-version: v2.80.13 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/storage-api dependency-version: v1.48.27 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/logflare dependency-version: 1.37.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docker-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
* fix: remove all containers on stop to prevent name conflicts * nit --------- Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
…/pkg/config/templates (#5056) fix(docker): bump supabase/postgres in /pkg/config/templates Bumps supabase/postgres from 17.6.1.104 to 17.6.1.105. --- updated-dependencies: - dependency-name: supabase/postgres dependency-version: 17.6.1.105 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…h 5 updates (#5055) fix(docker): bump the docker-minor group Bumps the docker-minor group in /pkg/config/templates with 5 updates: | Package | From | To | | --- | --- | --- | | supabase/postgres-meta | `v0.96.3` | `v0.96.4` | | supabase/studio | `2026.04.06-sha-b9e83b2` | `2026.04.08-sha-205cbe7` | | supabase/realtime | `v2.80.13` | `v2.82.0` | | supabase/storage-api | `v1.48.27` | `v1.48.28` | | supabase/logflare | `1.37.0` | `1.37.1` | Updates `supabase/postgres-meta` from v0.96.3 to v0.96.4 Updates `supabase/studio` from 2026.04.06-sha-b9e83b2 to 2026.04.08-sha-205cbe7 Updates `supabase/realtime` from v2.80.13 to v2.82.0 Updates `supabase/storage-api` from v1.48.27 to v1.48.28 Updates `supabase/logflare` from 1.37.0 to 1.37.1 --- updated-dependencies: - dependency-name: supabase/postgres-meta dependency-version: v0.96.4 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/studio dependency-version: 2026.04.08-sha-205cbe7 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/realtime dependency-version: v2.82.0 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/storage-api dependency-version: v1.48.28 dependency-type: direct:production dependency-group: docker-minor - dependency-name: supabase/logflare dependency-version: 1.37.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: docker-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
…ests - Wrap StitchLogin callback in sync.Once to prevent duplicate $alias calls if concurrent API responses both carry X-Gotrue-Id - Rename HeaderGotrueId → HeaderGotrueID per Go naming conventions - Add tests for nil callback and inner transport error paths
Avoids capturing OnGotrueID by value at GetSupabase() init time, which would silently hold nil if clientOnce.Do ran before PersistentPreRunE set the callback. Transport now holds &OnGotrueID and dereferences at call time, decoupling initialization order.
…/pkg/config/templates (#5059) fix(docker): bump supabase/postgres in /pkg/config/templates Bumps supabase/postgres from 17.6.1.105 to 17.6.1.106. --- updated-dependencies: - dependency-name: supabase/postgres dependency-version: 17.6.1.106 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
) * fix(decalrative): change default declarative/ folder to database/ * fix: rename from database to schemas * fix: capture declarative cmds telemetry * Revert "fix: rename from database to schemas" This reverts commit 90d022c.
#5066) * refactor(plan-gate): check entitlements on any non-2xx, only show link when confirmed gated Previously SuggestUpgradeOnError only triggered on 402. Many plan-gated endpoints return 400 or 404 instead. Now checks entitlements on any non-2xx and only sets CmdSuggestion when hasAccess is confirmed false, preventing false positives. * refactor(branches): rename was402 to isGated in upgrade check Aligns variable name with the new semantics: SuggestUpgradeOnError now checks entitlements on any non-2xx, not just 402. * feat(sso): wire billing link into sso commands when plan-gated Check org entitlements for auth.saml_2 on any non-2xx response from SSO provider endpoints. Shows billing upgrade link when the feature is confirmed gated, before falling through to existing error handling. * feat(vanity-subdomains): wire billing link into vanity-subdomain commands when plan-gated Check org entitlements for vanity_subdomain on any non-2xx response. The platform API returns 400 when vanity subdomains are not available on the org's plan; the entitlements check confirms the gate before showing a billing upgrade link. * docs(telemetry): clean up EventUpgradeSuggested comment * refactor(plan-gate): use named returns for readability * fix(plan-gate): use correct projectRef in branches/update, restrict check to 4xx Two fixes: - branches/update passed flags.ProjectRef instead of the local projectRef resolved from the branch ID, causing entitlements to look up the wrong org - Restrict SuggestUpgradeOnError to 4xx client errors only (skip 2xx success and 5xx server errors) to avoid unnecessary API calls on server outages * refactor(telemetry): extract shared TrackUpgradeSuggested helper Replace 8 identical per-package trackUpgradeSuggested functions with a single exported telemetry.TrackUpgradeSuggested. Avoids utils->telemetry import cycle by keeping the helper in the telemetry package. --------- Co-authored-by: Andrew Valleteau <avallete@users.noreply.github.com>
avallete
approved these changes
Apr 13, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.