From f5d9f2084972e3d452261592fa745a65956b2d2f Mon Sep 17 00:00:00 2001
From: Ryota Murakami <dojce1048@gmail.com>
Date: Tue, 9 Dec 2025 15:05:37 +0900
Subject: [PATCH 1/2] chore(ci): update malware-safe-chain workflow to use curl
 installation

---
 .github/workflows/malware-safe-chain.yml | 25 ++++++++++--------------
 1 file changed, 10 insertions(+), 15 deletions(-)

diff --git a/.github/workflows/malware-safe-chain.yml b/.github/workflows/malware-safe-chain.yml
index c2af9487..e875bf7d 100644
--- a/.github/workflows/malware-safe-chain.yml
+++ b/.github/workflows/malware-safe-chain.yml
@@ -1,30 +1,25 @@
 name: Malware Safe Chain
+
 on:
+  pull_request: ~
   push:
     branches:
       - main
-  pull_request:
-    branches:
-      - main
+
 jobs:
-  safe-chain:
+  malware-safe-chain:
     runs-on: ubuntu-latest
-    permissions:
-      contents: read
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
       - name: Install pnpm
         uses: pnpm/action-setup@v4
-        with:
-          version: 10
       - name: Use Node.js
         uses: actions/setup-node@v4
         with:
           node-version: '22'
-          cache: 'pnpm'
-      - name: Install Aikido Safe Chain
-        run: npm install -g @aikidosec/safe-chain
-      - name: Setup Safe Chain for CI
-        run: safe-chain setup-ci
+
+      - name: Install safe-chain
+        run: curl -fsSL https://raw.githubusercontent.com/AikidoSec/safe-chain/main/install-scripts/install-safe-chain.sh | sh -s -- --ci
+
       - name: Install dependencies with Safe Chain protection
-        run: pnpm install
+        run: pnpm install --frozen-lockfile

From 037278b7c7681d672e3d713694be952a2bf7889f Mon Sep 17 00:00:00 2001
From: Ryota Murakami <dojce1048@gmail.com>
Date: Wed, 10 Dec 2025 08:38:13 +0900
Subject: [PATCH 2/2] fix(ci): add packageManager field to resolve pnpm version
 detection

- Add packageManager: pnpm@10.25.0 to package.json
- This enables pnpm/action-setup@v4 to detect the correct version
- Also add permissions and cache settings to malware-safe-chain workflow
---
 .github/workflows/malware-safe-chain.yml | 3 +++
 package.json                             | 1 +
 2 files changed, 4 insertions(+)

diff --git a/.github/workflows/malware-safe-chain.yml b/.github/workflows/malware-safe-chain.yml
index e875bf7d..1057c6e6 100644
--- a/.github/workflows/malware-safe-chain.yml
+++ b/.github/workflows/malware-safe-chain.yml
@@ -9,6 +9,8 @@ on:
 jobs:
   malware-safe-chain:
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
     steps:
       - uses: actions/checkout@v4
       - name: Install pnpm
@@ -17,6 +19,7 @@ jobs:
         uses: actions/setup-node@v4
         with:
           node-version: '22'
+          cache: 'pnpm'
 
       - name: Install safe-chain
         run: curl -fsSL https://raw.githubusercontent.com/AikidoSec/safe-chain/main/install-scripts/install-safe-chain.sh | sh -s -- --ci
diff --git a/package.json b/package.json
index fed1fd7d..62384995 100644
--- a/package.json
+++ b/package.json
@@ -3,6 +3,7 @@
   "version": "0.0.1",
   "license": "MIT",
   "type": "module",
+  "packageManager": "pnpm@10.25.0",
   "volta": {
     "node": "22.21.1"
   },