build(deps): bump github.com/brokenbots/criteria from 0.3.0 to 0.5.0 in /sdk in the minor-and-patch group

[dependabot]

Bumps the minor-and-patch group in /sdk with 1 update: github.com/brokenbots/criteria.

Updates github.com/brokenbots/criteria from 0.3.0 to 0.5.0

Release notes

Sourced from github.com/brokenbots/criteria's releases.

v0.5.0

[Unreleased] — Adapter system v2 (protocol v2; clean break from v0.3.0)

Headline: The adapter system was rewritten end to end. Adapters are now signed OCI artifacts pulled from any registry and pinned per workflow, the wire protocol is v2 (a hard cut — v1 adapters no longer load), and a single term — "adapter" — is used throughout. Existing adapters were migrated in parallel; artifacts track the 0.5.0 line (v2 is the protocol version, not a product version). The release tag and date are finalized by the release gate.

Adapter system rewrite

• OCI-based distribution. Adapters publish as multi-platform OCI artifacts (per-platform binary blobs + an adapter.yaml manifest) to any OCI-compliant registry. No central registry; adapters are referenced by source + version.
• Per-workflow lockfile. .criteria.lock.hcl pins every referenced adapter by digest and records the signer identity, for run-to-run reproducibility. Populated by criteria adapter lock.
• Signing & verification. cosign signatures attached as OCI referrers, with the lockfile as the trust anchor: lock pins the signer and pull/compile/apply re-verify against the pin (a changed signer is a SignerChanged diff). Keyless (Sigstore/Fulcio OIDC) is the default CI path — signatures are now recorded in the Rekor transparency log and shipped as a Sigstore bundle, so they remain verifiable after the ephemeral Fulcio certificate expires; an adapter signed by its own repo's CI verifies with no per-consumer config. Explicit Ed25519 keys are supported for offline/ enterprise trust via a trusted_key config (~/.criteria/trust.hcl, a workflow-dir trust.hcl, or --trusted-key). A uniform unsigned-override (--allow-unsigned / CRITERIA_ALLOW_UNSIGNED) and the workflow-level verification = "strict" | "warn" | "off" attribute are honored across pull/lock/compile/apply. The effective default is warn during the signing-completion transition and returns to strict once keyless verification is confirmed in CI.
• New criteria adapter CLI group: pull, lock, list, info, where, remove, prune, dev, publish. publish supports --keyless, --sign-key, and --image (record an already-pushed runnable container image).
• Environment block expanded. New types sandbox (Linux namespaces + landlock
  • seccomp, or bubblewrap; macOS sandbox-exec), container (docker/podman), and remote (phone-home) join shell, with policy fields (policy_mode, sandbox, filesystem, network, secrets, resources, os).
• Lifecycle operations. Protocol v2 adds Pause/Resume, Snapshot/Restore, and Inspect, driven by the host and exercised by the shared conformance suite.
• Secrets channel. Declared secrets resolve through a provider stack and flow over a dedicated channel (never config/process env), with automatic log redaction and compile-time taint propagation.
• Three SDKs with consistent helper APIs and single-binary builds — TypeScript (Bun), Python (Nuitka), Go — each in its own repo, plus starter templates and a reusable publish-adapter action.

Breaking changes

... (truncated)

Changelog

Sourced from github.com/brokenbots/criteria's changelog.

Changelog

All notable changes to Criteria are recorded here.

Commits

• a868571 Merge pull request #256 from brokenbots/repo-cleanup
• cb9568b docs: remove inert validator directives from prose
• e6ac0ee docs: technical rewrite of prose docs; align with reality
• 1d25994 docs: fix stale links and a dead example reference
• ae4bc65 examples: consolidate single-feature demos; trim non-useful ones
• 411da42 docs(readme): drop removed-item row; demote server mode to a footnote
• 77459f4 docs(readme): technical, concise rewrite with status tables
• c99097a docs(readme): reframe as an honest WIP; AI-driven agent workflow engine
• 1910039 docs(readme): rewrite for current layout; expand what/why; note stabilizing
• eeaab95 chore: remove repo cruft and the workstream-automation subsystem
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions