Add approval gate for canary publishes

## Problem

Canary versions auto-publish to npm on every config change without human review. A broken config goes to the public registry immediately.

## Risk

Consumers using `@vllnt/typescript@canary` get broken configs until next fix.

## Options

1. Add `environment: canary` with required reviewers in workflow
2. Change canary to `--dry-run` + upload artifact for manual verification
3. Add smoke test gate before canary publish (blocks on failure)

## Acceptance Criteria

- [ ] Choose and implement gating strategy
- [ ] Broken configs cannot reach npm without explicit approval or passing tests

## Priority

Medium — affects downstream consumers.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add approval gate for canary publishes #3

Problem

Risk

Options

Acceptance Criteria

Priority

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Add approval gate for canary publishes #3

Description

Problem

Risk

Options

Acceptance Criteria

Priority

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions