seed: bump to a81351d2bab1 #15

Merged

zach merged 1 commit from automated/seed-bump-a81351d2bab1 into main

2026-06-08 04:07:09 +00:00

unredacted_bot commented

2026-06-08 04:00:20 +00:00

Owner

Automated seed-bump proposal from tools/bump-seed.sh — the anthraxx commit signature was verified against keys/anthraxx.gpg.

Review before merging: confirm the new seed targets the kernel version we build (the seed may legitimately lag) and that the hardening delta below is acceptable. Merging only updates the pinned config seed; the next kernel tag picks it up, and build-kernel.yml's fidelity assertion + hardening-drift guard run on that build.

fetching CURRENT pinned commit (05f37148910214f3f5241abb9850f32e5bc0e4c9) for diff baseline...
checking out NEW ref (origin/HEAD)...
  signature: OK (signed by E240B57E2C4630BA768E2F26FC1B547C8D8172C8)

==================== summary ====================
  url        : https://gitlab.archlinux.org/archlinux/packaging/packages/linux-hardened.git
  old commit : 05f37148910214f3f5241abb9850f32e5bc0e4c9  (sha256 cdc76d4e3b3b4eb396c18827c0981b1de27118a992f84cadb1464d5707fa43c9)
  new commit : a81351d2bab1e3da9ba9010e5c61185478002ed3  (sha256 4cb7f3058843970a24176e537b377f1604ce2dffbe56f1c828e378052987ac51)
  new tag    : 7.0.11.hardened1-1

==================== kconfig delta (hardening-relevant only) ====================
  (no hardening-relevant changes; only drivers/CC_HAS_*/fs etc.)

==================== rewriting upstream-seed.toml ====================
updated /workspace/unredacted/linux-hardened-unredacted/configs/upstream-seed.toml

Next steps:
  git diff configs/upstream-seed.toml
  # If the kconfig delta above introduced symbols you want pinned in
  # intent.config, add them and re-check policy parity locally.
  git add configs/upstream-seed.toml [configs/intent.config configs/POLICY.md]
  git commit -m "seed: bump to origin/HEAD (a81351d2bab1e3da9ba9010e5c61185478002ed3)"

Automated seed-bump proposal from `tools/bump-seed.sh` — the anthraxx commit signature was verified against `keys/anthraxx.gpg`. **Review before merging:** confirm the new seed targets the kernel version we build (the seed may legitimately lag) and that the hardening delta below is acceptable. Merging only updates the pinned config seed; the next kernel tag picks it up, and `build-kernel.yml`'s fidelity assertion + hardening-drift guard run on that build. ``` fetching CURRENT pinned commit (05f37148910214f3f5241abb9850f32e5bc0e4c9) for diff baseline... checking out NEW ref (origin/HEAD)... signature: OK (signed by E240B57E2C4630BA768E2F26FC1B547C8D8172C8) ==================== summary ==================== url : https://gitlab.archlinux.org/archlinux/packaging/packages/linux-hardened.git old commit : 05f37148910214f3f5241abb9850f32e5bc0e4c9 (sha256 cdc76d4e3b3b4eb396c18827c0981b1de27118a992f84cadb1464d5707fa43c9) new commit : a81351d2bab1e3da9ba9010e5c61185478002ed3 (sha256 4cb7f3058843970a24176e537b377f1604ce2dffbe56f1c828e378052987ac51) new tag : 7.0.11.hardened1-1 ==================== kconfig delta (hardening-relevant only) ==================== (no hardening-relevant changes; only drivers/CC_HAS_*/fs etc.) ==================== rewriting upstream-seed.toml ==================== updated /workspace/unredacted/linux-hardened-unredacted/configs/upstream-seed.toml Next steps: git diff configs/upstream-seed.toml # If the kconfig delta above introduced symbols you want pinned in # intent.config, add them and re-check policy parity locally. git add configs/upstream-seed.toml [configs/intent.config configs/POLICY.md] git commit -m "seed: bump to origin/HEAD (a81351d2bab1e3da9ba9010e5c61185478002ed3)" ```

unredacted_bot added 1 commit

2026-06-08 04:00:20 +00:00