unslothai · danielhanchen · May 18, 2026 · May 18, 2026 · May 18, 2026 · May 18, 2026
diff --git a/.github/workflows/consolidated-tests-ci.yml b/.github/workflows/consolidated-tests-ci.yml
@@ -316,6 +316,22 @@ jobs:
         run: |
           python -m pytest -v --tb=short tests/test_public_api_surface.py
 
+      - name: callback signature drift detector (HARD GATE)
+        # Catches the MLX-style bug from PR #5498: a producer in
+        # unsloth_zoo (or unsloth) grows a callback arg, but a consumer
+        # callback def still declares the old arity. The producer's
+        # try/except swallows the resulting TypeError and the symptom is
+        # "callback never fires" -- usually diagnosed downstream as a
+        # confusing assertion several seconds later. This static AST
+        # check fails fast at PR time. UNSLOTH_ZOO_SRC points at the
+        # freshly cloned main so the detector sees platform-specific
+        # submodules (e.g. unsloth_zoo/mlx/) that the released wheel
+        # may strip.
+        env:
+          UNSLOTH_ZOO_SRC: ${{ runner.temp }}/unsloth-zoo
+        run: |
+          python -m pytest -v --tb=short tests/test_callback_signature_drift.py
+
       - name: unsloth Bucket-A — CPU tests not in Repo tests (CPU)
         # 16 tests across 5 files. They live inside tests/saving/ and
         # tests/utils/, both of which Repo tests (CPU) excludes via --ignore
@@ -340,11 +356,19 @@ jobs:
         # cases below auto-skip on a GPU-less runner; deselect them
         # explicitly so the no-CUDA outcome is "deselected", not "skipped",
         # making intent visible in the report. Env inherited from job block.
+        #
+        # test_get_peft_model_passes_finetune_last_n_layers_through is
+        # deselected because unsloth_zoo/mlx/loader.py at line 2972 calls
+        # model.trainable_parameters() on the fake-model fixture, which
+        # the test never stubbed; this fails on every platform regardless
+        # of CUDA. Tracked upstream as an unsloth_zoo bug; deselecting
+        # here unblocks unsloth CI until the loader fixture is fixed.
         working-directory: ${{ runner.temp }}/unsloth-zoo
         run: |
           python -m pytest -q --tb=short tests/ \
             --deselect tests/test_unsloth_zoo_lora_merge.py::test_active_merge_device_returns_string_on_cuda_host \
-            --deselect tests/test_unsloth_zoo_lora_merge.py::test_merge_lora_moves_cpu_inputs_to_active_device
+            --deselect tests/test_unsloth_zoo_lora_merge.py::test_merge_lora_moves_cpu_inputs_to_active_device \
+            --deselect tests/test_mlx_finetune_last_n_layers.py::test_get_peft_model_passes_finetune_last_n_layers_through
 
       - name: unsloth_zoo — test_apply_fused_lm_head (lives in compiler.py)
         # `test_apply_fused_lm_head` lives at unsloth_zoo/compiler.py:1983,

diff --git a/.github/workflows/diffusion-backend-macos.yml b/.github/workflows/diffusion-backend-macos.yml
@@ -0,0 +1,45 @@
+# SPDX-License-Identifier: AGPL-3.0-only
+# Staging-only CI: diffusion backend tests on macOS 14 (Apple Silicon).
+# Confirms the Pillow / Pydantic / FastAPI import surface works the
+# same on darwin-arm64 as on Linux. No GPU; we stub diffusers.
+
+name: Diffusion backend (macOS)
+
+on:
+  push:
+    branches: [studio-diffusion-images-staging]
+  workflow_dispatch:
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+permissions:
+  contents: read
+
+jobs:
+  pytest:
+    runs-on: macos-14
+    timeout-minutes: 10
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          persist-credentials: false
+      - uses: actions/setup-python@v5
+        with:
+          python-version: '3.13'
+          cache: 'pip'
+      - name: Install minimal backend test deps
+        run: |
+          python -m pip install --upgrade pip
+          pip install pytest pytest-asyncio httpx fastapi pydantic structlog \
+                      pillow loguru python-multipart aiofiles sqlalchemy \
+                      cryptography pyyaml jinja2 'numpy<3' requests
+          pip install -r studio/backend/requirements/studio.txt
+          # PyTorch wheels for macOS-arm64 come from the default PyPI
+          # index; CPU/MPS is fine since the tests stub the pipeline.
+          pip install 'torch>=2.4,<2.11'
+      - name: Run diffusion backend + route tests
+        working-directory: studio/backend
+        run: |
+          python -m pytest tests/test_diffusion_backend.py tests/test_diffusion_routes.py -v --tb=short
diff --git a/.github/workflows/diffusion-backend-ubuntu.yml b/.github/workflows/diffusion-backend-ubuntu.yml
@@ -0,0 +1,51 @@
+# SPDX-License-Identifier: AGPL-3.0-only
+# Staging-only CI for the Studio diffusion image generation feature.
+# Runs the backend unit tests on Ubuntu (CPU). Imports are exercised
+# without the heavy diffusers / torch import; the test suite stubs
+# diffusers via sys.modules so this stays under two minutes.
+
+name: Diffusion backend (Ubuntu)
+
+on:
+  push:
+    branches: [studio-diffusion-images-staging]
+  workflow_dispatch:
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+permissions:
+  contents: read
+
+jobs:
+  pytest:
+    runs-on: ubuntu-latest
+    timeout-minutes: 10
+    strategy:
+      fail-fast: false
+      matrix:
+        python: ['3.10', '3.11', '3.12', '3.13']
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          persist-credentials: false
+      - uses: actions/setup-python@v5
+        with:
+          python-version: '${{ matrix.python }}'
+          cache: 'pip'
+      - name: Install minimal backend test deps
+        run: |
+          python -m pip install --upgrade pip
+          pip install pytest pytest-asyncio httpx fastapi pydantic structlog \
+                      pillow loguru python-multipart aiofiles sqlalchemy \
+                      cryptography pyyaml jinja2 'numpy<3' requests
+          pip install -r studio/backend/requirements/studio.txt
+          # diffusion.py imports torch lazily inside load_model and
+          # generate_image; CPU build is enough to satisfy the import
+          # since the tests stub the actual pipeline class.
+          pip install --index-url https://download.pytorch.org/whl/cpu 'torch>=2.4,<2.11'
+      - name: Run diffusion backend + route tests
+        working-directory: studio/backend
+        run: |
+          python -m pytest tests/test_diffusion_backend.py tests/test_diffusion_routes.py -v --tb=short
diff --git a/.github/workflows/diffusion-backend-windows.yml b/.github/workflows/diffusion-backend-windows.yml
@@ -0,0 +1,47 @@
+# SPDX-License-Identifier: AGPL-3.0-only
+# Staging-only CI: diffusion backend tests on Windows latest.
+# Mirrors Linux/macOS jobs; runs on a single Python interpreter to
+# stay under the 5-concurrent-Windows-runner cap.
+
+name: Diffusion backend (Windows)
+
+on:
+  push:
+    branches: [studio-diffusion-images-staging]
+  workflow_dispatch:
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+permissions:
+  contents: read
+
+jobs:
+  pytest:
+    runs-on: windows-latest
+    timeout-minutes: 15
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          persist-credentials: false
+      - uses: actions/setup-python@v5
+        with:
+          python-version: '3.13'
+          cache: 'pip'
+      - name: Install minimal backend test deps
+        shell: pwsh
+        run: |
+          python -m pip install --upgrade pip
+          pip install pytest pytest-asyncio httpx fastapi pydantic structlog `
+                      pillow loguru python-multipart aiofiles sqlalchemy `
+                      cryptography pyyaml jinja2 'numpy<3' requests
+          pip install -r studio/backend/requirements/studio.txt
+          # CPU torch on Windows: diffusion.py imports torch lazily and
+          # the tests stub the pipeline; the CPU wheel is enough.
+          pip install --index-url https://download.pytorch.org/whl/cpu 'torch>=2.4,<2.11'
+      - name: Run diffusion backend + route tests
+        working-directory: studio/backend
+        shell: pwsh
+        run: |
+          python -m pytest tests/test_diffusion_backend.py tests/test_diffusion_routes.py -v --tb=short
diff --git a/.github/workflows/lockfile-audit.yml b/.github/workflows/lockfile-audit.yml
@@ -0,0 +1,79 @@
+# SPDX-License-Identifier: AGPL-3.0-only
+# Copyright 2026-present the Unsloth AI Inc. team. All rights reserved.
+#
+# Fast, focused supply-chain audit of every checked-in lockfile.
+#
+# Runs scripts/lockfile_supply_chain_audit.py on PRs that touch any
+# npm or cargo lockfile, on push to main, and on a daily schedule so
+# newly-published IOCs surface even when no PR opens.
+#
+# Default behavior is "advisory": only public indicator-of-compromise
+# strings, known-malicious pinned versions, and structurally broken
+# lockfiles fail the build. Structural anomalies (missing integrity,
+# non-default registry, etc.) are emitted as GitHub Actions warnings
+# but do not block merges. This deliberately keeps the noise floor
+# low while still failing the moment a checked-in lockfile starts
+# pointing at known-bad bytes.
+#
+# This workflow is intentionally separate from security-audit.yml:
+#   - security-audit.yml is the umbrella job (pip-audit + npm audit +
+#     cargo audit + OSV + Semgrep + secret scanning + SBOM + ...);
+#     it takes ~25 minutes and runs only when dep manifests change.
+#   - lockfile-audit.yml is a ~30 second pure-Python parse + grep on
+#     the lockfiles themselves; it runs on every PR that even nudges
+#     a lockfile so reviewers always see the audit result inline.
+
+name: Lockfile supply-chain audit
+
+on:
+  pull_request:
+    paths:
+      - 'studio/frontend/package-lock.json'
+      - 'studio/backend/core/data_recipe/oxc-validator/package-lock.json'
+      - 'studio/package-lock.json'
+      - 'studio/src-tauri/Cargo.lock'
+      - 'scripts/lockfile_supply_chain_audit.py'
+      - '.github/workflows/lockfile-audit.yml'
+  push:
+    branches: [main]
+    paths:
+      - 'studio/frontend/package-lock.json'
+      - 'studio/backend/core/data_recipe/oxc-validator/package-lock.json'
+      - 'studio/package-lock.json'
+      - 'studio/src-tauri/Cargo.lock'
+      - 'scripts/lockfile_supply_chain_audit.py'
+      - '.github/workflows/lockfile-audit.yml'
+  schedule:
+    - cron: '37 5 * * *'
+  workflow_dispatch:
+
+concurrency:
+  group: ${{ github.workflow }}-${{ github.ref }}
+  cancel-in-progress: true
+
+permissions:
+  contents: read
+
+jobs:
+  audit:
+    name: lockfile supply-chain audit
+    runs-on: ubuntu-latest
+    timeout-minutes: 5
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          persist-credentials: false
+
+      - uses: actions/setup-python@v5
+        with:
+          python-version: '3.12'
+
+      - name: Verify audit script parses
+        run: python3 -c "import ast; ast.parse(open('scripts/lockfile_supply_chain_audit.py').read())"
+
+      - name: Run lockfile supply-chain audit
+        # Default mode: only known-malicious pinned versions, known IOC
+        # strings, and structurally broken lockfiles fail the build.
+        # Missing-integrity and other structural anomalies are emitted
+        # as ::warning:: annotations and do not gate merges.
+        run: python3 scripts/lockfile_supply_chain_audit.py
diff --git a/.github/workflows/release-desktop.yml b/.github/workflows/release-desktop.yml
@@ -551,7 +551,7 @@ jobs:
       - name: Install trusted-signing-cli
         if: matrix.platform == 'windows-latest'
         run: |
-          cargo install trusted-signing-cli --version 0.9.0 --locked
+          cargo install trusted-signing-cli --version 0.10.0 --locked
           echo "$env:USERPROFILE\.cargo\bin" | Out-File -FilePath $env:GITHUB_PATH -Encoding utf8 -Append
 
       # ── Windows: verify signing CLI is accessible ──