chore(deps): bump @sourcegraph/amp-sdk from 0.1.0-20260312122132-g783443e to 0.1.0-20260316083307-gece88ce

[dependabot]

Bumps @sourcegraph/amp-sdk from 0.1.0-20260312122132-g783443e to 0.1.0-20260316083307-gece88ce.

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Labels

The following labels could not be found: npm. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[chatgpt-codex-connector]

Codex usage limits have been reached for code reviews. Please check with the admins of this repo to increase the limits by adding credits.
Credits must be used to enable repository wide code reviews.

[github-actions]

Issue Linking Reminder

This PR doesn't appear to have a linked issue. Consider linking to:

• This repo: Closes #123
• ralph-ideas: Closes multivmlabs/ralph-ideas#123

Using Closes, Fixes, or Resolves will auto-close the issue when this PR is merged.

---

If this PR doesn't need an issue, you can ignore this message.

[github-actions]

✔️ Bundle Size Analysis

Metric	Value
Base	2638.70 KB
PR	2638.70 KB
Diff	0 KB (0%)

Bundle breakdown

156K	dist/auth
80K	dist/automation
4.0K	dist/cli.d.ts
4.0K	dist/cli.d.ts.map
20K	dist/cli.js
12K	dist/cli.js.map
584K	dist/commands
28K	dist/config
4.0K	dist/index.d.ts
4.0K	dist/index.d.ts.map
4.0K	dist/index.js
4.0K	dist/index.js.map
896K	dist/integrations
100K	dist/llm
1.2M	dist/loop
188K	dist/mcp
60K	dist/presets
92K	dist/setup
40K	dist/skills
392K	dist/sources
76K	dist/ui
144K	dist/utils
336K	dist/wizard

[greptile-apps]

Greptile Summary

Dependabot patch bump of the optional @sourcegraph/amp-sdk dependency from 0.1.0-20260312122132-g783443e to 0.1.0-20260316083307-gece88ce, along with its transitive @sourcegraph/amp dependency update in the lockfile.

• The SDK is listed under optionalDependencies and is dynamically imported at runtime with a graceful CLI fallback, making this a low-risk update.
• No source code changes; only package.json version specifier and pnpm-lock.yaml integrity hashes are affected.
• No issues found during review.

Confidence Score: 5/5

• This PR is safe to merge — it is a minor version bump of an optional dependency with no source code changes.
• The change is limited to a version bump of an optional dependency in package.json and the corresponding lockfile update. The dependency is dynamically imported with a fallback path, so even if the new version had issues, runtime behavior would degrade gracefully to the CLI fallback. No logic, syntax, or architectural changes are introduced.
• No files require special attention.

Important Files Changed

Filename	Overview
package.json	Bumps @sourcegraph/amp-sdk optional dependency version string from 0.1.0-20260312122132-g783443e to 0.1.0-20260316083307-gece88ce. No other changes.
pnpm-lock.yaml	Lockfile updated to reflect the new @sourcegraph/amp-sdk version and its transitive dependency @sourcegraph/amp. Integrity hashes updated accordingly.

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A["package.json"] -->|"optionalDependencies"| B["@sourcegraph/amp-sdk\n0.1.0-20260316083307-gece88ce"]
    B -->|"transitive dep"| C["@sourcegraph/amp\n0.0.1773649032-gf6d352"]
    D["src/loop/agents/amp-sdk.ts"] -->|"dynamic import"| B
    D -->|"fallback if unavailable"| E["Amp CLI (subprocess)"]

Loading

_{Last reviewed commit: 3bbb14e}

[claude]

LGTM — routine Dependabot bump of an optional dependency.

Extended reasoning...

Overview

This PR bumps @sourcegraph/amp-sdk from 0.1.0-20260312122132-g783443e to 0.1.0-20260316083307-gece88ce. The only files touched are package.json (one-line version string change in optionalDependencies) and the auto-generated pnpm-lock.yaml. No application code, configuration, or tests are modified.

Security risks

None identified. The dependency is listed under optionalDependencies, meaning it is not required for the application to function. The version bump is a minor pre-release increment from the same package source (Sourcegraph). The integrity hashes in the lockfile are updated consistently.

Level of scrutiny

This is a low-risk, mechanical change generated by Dependabot. It follows the established pattern of prior dependency bumps in this repository (e.g., the recent chore(deps): bump @sourcegraph/amp-sdk commit on main). No human judgment is needed on design decisions or code logic.

Other factors

No outstanding reviewer comments exist. No bugs were found by the automated bug hunting system. The PR is labeled config, chore, and dependencies, correctly reflecting its nature. The dependency is optional and the change is fully contained in version metadata.

[dependabot]

Superseded by #310.