akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 9 Packages Projects Releases Wiki Activity
3,238 Commits 11 Branches 107 Tags
35ca99866a2e9054eaedbd4e23ec93573e8a36a6
Commit Graph

3238 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jeremy
cca5288154 Merge pull request #605 from Wikid82/renovate/feature/beta-release-pin-dependencies 
chore(deps): pin peter-evans/create-pull-request action to c5a7806 (feature/beta-release)
 2026-02-02 09:54:03 -05:00
renovate[bot]
280e7b9c19 chore(deps): pin peter-evans/create-pull-request action to c5a7806 2026-02-02 14:53:28 +00:00
Jeremy
ac310d3742 Merge pull request #607 from Wikid82/renovate/feature/beta-release-actions-github-script-8.x 
chore(deps): update actions/github-script action to v8 (feature/beta-release)
 2026-02-02 09:51:42 -05:00
Jeremy
a92e49604f Merge branch 'feature/beta-release' into renovate/feature/beta-release-peter-evans-create-pull-request-8.x 2026-02-02 09:48:59 -05:00
Jeremy
15d27b0c37 Merge branch 'feature/beta-release' into renovate/feature/beta-release-actions-github-script-8.x 2026-02-02 09:48:35 -05:00
Jeremy
8f6509da7f Merge pull request #606 from Wikid82/renovate/feature/beta-release-actions-checkout-6.x 
chore(deps): update actions/checkout action to v6 (feature/beta-release)
 2026-02-02 09:48:20 -05:00
renovate[bot]
3785e83323 chore(deps): update peter-evans/create-pull-request action to v8 2026-02-02 14:46:39 +00:00
renovate[bot]
dccf75545a chore(deps): update actions/github-script action to v8 2026-02-02 14:46:34 +00:00
renovate[bot]
530450440e chore(deps): update actions/checkout action to v6 2026-02-02 14:46:29 +00:00
Jeremy
4d7a30ef1c Merge pull request #604 from Wikid82/development 
fix(ci): propagation
 2026-02-02 09:42:01 -05:00
Jeremy
d0cc6c08cf Merge branch 'feature/beta-release' into development 2026-02-02 09:41:47 -05:00
Jeremy
b9c26a53ee Merge pull request #603 from Wikid82/main 
fix(ci): propagation
 2026-02-02 09:37:41 -05:00
Jeremy
28ce642f94 Merge branch 'development' into main v0.16.13 2026-02-02 09:37:27 -05:00
Jeremy
cc92c666d5 Merge pull request #602 from Wikid82/bot/update-geolite2-checksum 
chore(docker): update GeoLite2-Country.mmdb checksum
 2026-02-02 09:34:07 -05:00
Wikid82
96cbe3a5ac chore(docker): update GeoLite2-Country.mmdb checksum 
Automated checksum update for GeoLite2-Country.mmdb database.

Old: 6b778471c086c44d15bd4df954661d441a5513ec48f1af5545cb05af8f2e15b9
New: 436135ee98a521da715a6d483951f3dbbd62557637f2d50d1987fc048874bd5d

Auto-generated by: .github/workflows/update-geolite2.yml
 2026-02-02 14:18:41 +00:00
GitHub Actions
09dc2fc182 fix(ci): use valid BuildKit --check flag for Dockerfile syntax validation 
Replaced non-existent `docker build --dry-run` with BuildKit's
`--check` flag which validates Dockerfile syntax without building.

Fixes #601
 2026-02-02 14:18:08 +00:00
GitHub Actions
34f99535e8 fix(ci): add GeoLite2 checksum update workflow with error handling 2026-02-02 14:12:57 +00:00
GitHub Actions
a167ca9756 fix(ci): add workflow to update GeoLite2-Country.mmdb checksum automatically 2026-02-02 14:11:13 +00:00
Jeremy
44bb6ea183 Merge pull request #600 from Wikid82/renovate/development-weekly-non-major-updates 
fix(deps): update weekly-non-major-updates (development)
 2026-02-02 09:03:49 -05:00
renovate[bot]
4dd95f1b6b fix(deps): update weekly-non-major-updates 2026-02-02 14:03:20 +00:00
GitHub Actions
b27fb306f7 fix(ci): force push nightly branch to handle divergence from development v0.16.12 2026-02-02 13:47:36 +00:00
GitHub Actions
f3ed1614c2 fix(ci): improve nightly build sync process by fetching both branches and preventing non-fast-forward errors v0.16.11 2026-02-02 13:45:21 +00:00
GitHub Actions
3261f5d7a1 fix(ci): normalize branch name for Docker tag in security PR workflow v0.16.10 2026-02-02 13:42:49 +00:00
github-actions[bot]
a1114bb710 chore: move processed issue files to created/ v0.16.9 2026-02-02 13:32:21 +00:00
GitHub Actions
60c3336725 COMMIT_MESSAGE_START 
fix(docker): update GeoLite2-Country.mmdb checksum + automation

Fixes critical Docker build failure caused by upstream GeoLite2 database
update without corresponding Dockerfile checksum update.

**Root Cause:**
- GeoLite2-Country.mmdb file updated upstream
- Dockerfile still referenced old SHA256 checksum
- Build aborted at checksum verification (line 352)
- Cascade "blob not found" errors for all COPY commands

**Changes:**
- Update Dockerfile ARG GEOLITE2_COUNTRY_SHA256 to current value
- Add automated weekly checksum update workflow (.github/workflows/update-geolite2.yml)
- Implement error handling: retry logic, format validation, failure notifications
- Document rollback decision matrix with 10 failure scenarios
- Create comprehensive maintenance guide (docs/maintenance/geolite2-checksum-update.md)
- Update CHANGELOG.md and README.md with maintenance references

**Verification:**
- Checksum verified against current upstream file: 436135ee...
- Pre-commit hooks: PASSED (EOF/whitespace auto-fixed)
- Trivy security scan: PASSED (no critical/high issues)
- Dockerfile syntax: VALID
- GitHub Actions YAML: VALID
- No hardcoded secrets or injection vulnerabilities

**Automation Features:**
- Weekly scheduled checks (Monday 2 AM UTC)
- Auto-PR creation when checksum changes
- GitHub issue creation on workflow failure
- Comprehensive error handling and retry logic

**Impact:**
- Unblocks all CI/CD Docker image builds
- Enables publishing to GHCR/Docker Hub
- Prevents future checksum failures via automation
- Zero application code changes (no regression risk)

**Documentation:**
- Implementation plan: docs/plans/geolite2_checksum_fix_spec.md
- QA report: docs/reports/qa_geolite2_checksum_fix.md
- Maintenance guide: docs/maintenance/geolite2-checksum-update.md

**Supervisor Recommendations Implemented:**
- #1: Checksum freshness verification before update
- #3: Rollback decision criteria (10 scenarios)
- #4: Automated workflow error handling

Resolves: https://github.com/Wikid82/Charon/actions/runs/21584236523/job/62188372617
COMMIT_MESSAGE_END
 2026-02-02 13:31:56 +00:00
Jeremy
49d1252d82 Merge pull request #597 from Wikid82/renovate/development-weekly-non-major-updates 
chore(deps): update github/codeql-action digest to f52cbc8 (development)
 2026-02-02 07:58:20 -05:00
Jeremy
b60ebd4e59 Merge branch 'development' into renovate/development-weekly-non-major-updates 2026-02-02 07:58:14 -05:00
Jeremy
f78a653f1e Merge pull request #596 from Wikid82/renovate/feature/beta-release-weekly-non-major-updates 
chore(deps): update weekly-non-major-updates (feature/beta-release)
 2026-02-02 07:57:44 -05:00
Jeremy
809bba22c6 Merge branch 'feature/beta-release' into renovate/feature/beta-release-weekly-non-major-updates 2026-02-02 07:57:37 -05:00
Jeremy
99927e7b38 Merge pull request #594 from Wikid82/renovate/development-jsdom-28.x 
chore(deps): update dependency jsdom to v28 (development)
 2026-02-02 07:57:05 -05:00
Jeremy
e645ed60ca Merge pull request #593 from Wikid82/renovate/feature/beta-release-jsdom-28.x 
chore(deps): update dependency jsdom to v28 (feature/beta-release)
 2026-02-02 07:56:27 -05:00
renovate[bot]
8794e8948c chore(deps): update github/codeql-action digest to f52cbc8 2026-02-02 11:57:38 +00:00
renovate[bot]
085fa9cb2c chore(deps): update weekly-non-major-updates 2026-02-02 11:57:31 +00:00
GitHub Actions
719c340735 fix(ci): security toggles tests, CrowdSec response data, and coverage improvement documentation 
- Implemented comprehensive tests for security toggle handlers in `security_toggles_test.go`, covering enable/disable functionality for ACL, WAF, Cerberus, CrowdSec, and RateLimit.
- Added sample JSON response for CrowdSec decisions in `lapi_decisions_response.json`.
- Created aggressive preset configuration for CrowdSec in `preset_aggressive.json`.
- Documented backend coverage, security fixes, and E2E testing improvements in `2026-02-02_backend_coverage_security_fix.md`.
- Developed a detailed backend test coverage restoration plan in `current_spec.md` to address existing gaps and improve overall test coverage to 86%+.
 2026-02-02 11:55:55 +00:00
renovate[bot]
aa4cc8f7bf chore(deps): update dependency jsdom to v28 2026-02-02 08:31:41 +00:00
renovate[bot]
683d7d93a4 chore(deps): update dependency jsdom to v28 2026-02-02 08:31:33 +00:00
GitHub Actions
8e31db2a5a fix(e2e): implement clickSwitch utility for reliable toggle interactions and enhance tests with new helper functions 2026-02-02 07:23:49 +00:00
Jeremy
5b4df96581 Merge branch 'development' into feature/beta-release 2026-02-02 01:45:09 -05:00
GitHub Actions
fcb9eb79a8 chore: Remove dupe Playwright E2E test workflow 2026-02-02 06:44:21 +00:00
Jeremy
10e61d2ed6 Merge pull request #591 from Wikid82/renovate/development-weekly-non-major-updates 
chore(deps): update actions/upload-artifact digest to 47309c9 (development)
 2026-02-02 01:29:28 -05:00
Jeremy
ccab64dd7c Merge pull request #590 from Wikid82/renovate/feature/beta-release-weekly-non-major-updates 
chore(deps): update renovatebot/github-action action to v46.0.1 (feature/beta-release)
 2026-02-02 01:29:01 -05:00
Jeremy
c96ce0d07c Merge branch 'feature/beta-release' into renovate/feature/beta-release-weekly-non-major-updates 2026-02-02 01:28:52 -05:00
github-actions[bot]
0b26fc74bc chore: move processed issue files to created/ 2026-02-02 06:18:42 +00:00
GitHub Actions
032d475fba chore: remediate 61 Go linting issues and tighten pre-commit config 
Complete lint remediation addressing errcheck, gosec, and staticcheck
violations across backend test files. Tighten pre-commit configuration
to prevent future blind spots.

Key Changes:
- Fix 61 Go linting issues (errcheck, gosec G115/G301/G304/G306, bodyclose)
- Add proper error handling for json.Unmarshal, os.Setenv, db.Close(), w.Write()
- Fix gosec G115 integer overflow with strconv.FormatUint
- Add #nosec annotations with justifications for test fixtures
- Fix SecurityService goroutine leaks (add Close() calls)
- Fix CrowdSec tar.gz non-deterministic ordering with sorted keys

Pre-commit Hardening:
- Remove test file exclusion from golangci-lint hook
- Add gosec to .golangci-fast.yml with critical checks (G101, G110, G305)
- Replace broad .golangci.yml exclusions with targeted path-specific rules
- Test files now linted on every commit

Test Fixes:
- Fix emergency route count assertions (1→2 for dual-port setup)
- Fix DNS provider service tests with proper mock setup
- Fix certificate service tests with deterministic behavior

Backend: 27 packages pass, 83.5% coverage
Frontend: 0 lint warnings, 0 TypeScript errors
Pre-commit: All 14 hooks pass (~37s)
 2026-02-02 06:17:48 +00:00
renovate[bot]
08cc82ac19 chore(deps): update actions/upload-artifact digest to 47309c9 2026-02-02 05:40:03 +00:00
renovate[bot]
0ad65fcfb1 chore(deps): update renovatebot/github-action action to v46.0.1 2026-02-02 05:39:57 +00:00
GitHub Actions
64b804329b fix(package-lock): remove unnecessary peer dependencies and add project name 2026-02-02 01:17:25 +00:00
github-actions[bot]
b73988bd9c chore: move processed issue files to created/ 2026-02-02 01:15:07 +00:00
GitHub Actions
f19632cdf8 fix(tests): enhance system settings tests with feature flag propagation and retry logic 
- Added initial feature flag state verification before tests to ensure a stable starting point.
- Implemented retry logic with exponential backoff for toggling feature flags, improving resilience against transient failures.
- Introduced `waitForFeatureFlagPropagation` utility to replace hard-coded waits with condition-based verification for feature flag states.
- Added advanced test scenarios for handling concurrent toggle operations and retrying on network failures.
- Updated existing tests to utilize the new retry and propagation utilities for better reliability and maintainability.
 2026-02-02 01:14:46 +00:00
Jeremy
9f7ed657cd Merge pull request #588 from Wikid82/renovate/feature/beta-release-weekly-non-major-updates 
chore(deps): update weekly-non-major-updates (feature/beta-release)
 2026-02-01 16:08:33 -05:00