akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 6 Packages Projects Releases Wiki Activity
1,229 Commits 11 Branches 107 Tags
4c8a699c4b2875d17d6b1c8e7264af5c6b276b5e
Commit Graph

1229 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
GitHub Actions 4c8a699c4b fix: update task label and command for building and running local Docker image 2025-12-14 08:45:15 +00:00
Jeremy 114df30186 Merge pull request #398 from Wikid82/development 
Development
 2025-12-14 03:15:16 -05:00
Jeremy dd841f1943 Merge branch 'feature/beta-release' into development 2025-12-14 03:15:03 -05:00
GitHub Actions 7f82df80b7 fix: complete geoip2-golang v2 migration 
- Update import paths to github.com/oschwald/geoip2-golang/v2
- Handle API breaking changes (net.IP → netip.Addr, IsoCode → ISOCode)
- Fix VERSION.md to match git tag (0.7.13)
- Resolves CI failure in benchmark workflow
 2025-12-14 08:06:32 +00:00
Jeremy 8489394bbc Merge pull request #396 from Wikid82/renovate/github.com-oschwald-geoip2-golang-2.x 
fix(deps): update module github.com/oschwald/geoip2-golang to v2
 2025-12-14 02:33:39 -05:00
Jeremy dd9a559c8e Merge branch 'development' into renovate/github.com-oschwald-geoip2-golang-2.x 2025-12-14 02:33:06 -05:00
Jeremy 6469c6a2c5 Merge pull request #395 from Wikid82/renovate/node-24.x 
chore(deps): update dependency node to v24
 2025-12-14 02:32:51 -05:00
Jeremy 5376f28a64 Merge branch 'development' into renovate/node-24.x 2025-12-14 02:32:44 -05:00
Jeremy b298aa3e6a Merge pull request #394 from Wikid82/renovate/node-22.x 
chore(deps): update dependency node to v22
 2025-12-14 02:32:18 -05:00
Jeremy 2b36bd41fb Merge branch 'development' into renovate/node-22.x 2025-12-14 02:32:10 -05:00
Jeremy ee584877af Merge pull request #393 from Wikid82/renovate/major-6-github-artifact-actions 
chore(deps): update actions/upload-artifact action to v6
 2025-12-14 02:31:52 -05:00
Jeremy d0c6061544 Merge branch 'development' into renovate/major-6-github-artifact-actions 2025-12-14 02:31:43 -05:00
renovate[bot] df59d98289 chore(deps): update dependency node to v24 2025-12-14 07:31:33 +00:00
renovate[bot] d63a08d6a2 chore(deps): update dependency node to v22 2025-12-14 07:31:30 +00:00
Jeremy 8f06490aef Merge pull request #392 from Wikid82/renovate/major-5-github-artifact-actions 
chore(deps): update actions/upload-artifact action to v5
 2025-12-14 02:31:11 -05:00
Jeremy f1bd20ea9b Merge branch 'development' into renovate/major-5-github-artifact-actions 2025-12-14 02:31:02 -05:00
Jeremy 40526382a7 Merge pull request #391 from Wikid82/renovate/node-20.x 
chore(deps): update dependency node to v20.19.6
 2025-12-14 02:30:43 -05:00
Jeremy e35c6b5261 Merge branch 'development' into renovate/node-20.x 2025-12-14 02:27:37 -05:00
Jeremy b66383a7fb Merge pull request #397 from Wikid82/main 
Propagate changes from main into development
 2025-12-14 02:27:16 -05:00
GitHub Actions 7bca378275 fix: update renovate configuration for scheduling and automerge settings v0.7.13 2025-12-14 07:22:35 +00:00
Jeremy 7106efa94a Merge branch 'development' into main v0.7.12 2025-12-14 02:11:40 -05:00
GitHub Actions a26beefb08 fix: update Go version to 1.25.5 in go.work v0.7.11 2025-12-14 07:11:04 +00:00
GitHub Actions 833e2de2d6 fix: update version to 0.7.9 and add maxminddb-golang dependency v0.7.10 2025-12-14 07:09:10 +00:00
Jeremy 33fa5e7f94 Merge branch 'development' into renovate/node-20.x 2025-12-14 02:03:17 -05:00
Jeremy e65dfa3979 Merge pull request #390 from Wikid82/renovate/go-1.x 
chore(deps): update dependency go to v1.25.5
 2025-12-14 02:02:53 -05:00
renovate[bot] 85fd287b34 chore(deps): update actions/upload-artifact action to v6 2025-12-14 07:01:59 +00:00
renovate[bot] c19c4d4ff0 chore(deps): update actions/upload-artifact action to v5 2025-12-14 07:01:56 +00:00
Jeremy 8f6ebf6107 Merge branch 'development' into renovate/go-1.x 2025-12-14 02:01:51 -05:00
Jeremy e1925b0f5e Merge pull request #389 from Wikid82/renovate/pin-dependencies 
chore(deps): pin actions/upload-artifact action to ea165f8
 2025-12-14 02:01:10 -05:00
GitHub Actions 8c44d52b69 fix: update log message to include an icon for SQL injection detection v0.7.9 2025-12-14 06:50:39 +00:00
renovate[bot] 72821aba99 fix(deps): update module github.com/oschwald/geoip2-golang to v2 2025-12-14 06:44:09 +00:00
renovate[bot] 7c4b0002b5 chore(deps): update dependency node to v20.19.6 2025-12-14 06:43:40 +00:00
renovate[bot] 0600f9da2a chore(deps): update dependency go to v1.25.5 2025-12-14 06:43:33 +00:00
renovate[bot] e66404c817 chore(deps): pin actions/upload-artifact action to ea165f8 2025-12-14 06:43:09 +00:00
Jeremy 51cba4ec80 Merge pull request #387 from Wikid82/main 
Propagate changes from main into development
 2025-12-14 01:39:22 -05:00
GitHub Actions 99b8ed1996 chore: add renovate comments for alpine base image tracking 
Ensures Renovate detects and updates Alpine 3.23 to future versions
(3.24, 3.25, etc.) automatically without manual monitoring.
v0.7.8 		2025-12-14 06:36:42 +00:00
GitHub Actions 18868a47fc fix: add pull:true to docker-publish for fresh base images 
The docker-publish.yml workflow was missing pull:true, causing it
to use cached Alpine images with vulnerable c-ares 1.34.5-r0.

This completes the fix across all three Docker workflows:
- docker-build.yml ✓
- docker-publish.yml ✓ (this commit)
- security-weekly-rebuild.yml ✓

Resolves CVE-2025-62408 (c-ares)
v0.7.7 		2025-12-14 06:28:47 +00:00
GitHub Actions cb5bd01a93 fix: add pull:true to docker-build to ensure fresh base images 
Ensures all Docker builds pull fresh Alpine base images to get
security patches like c-ares 1.34.6-r0 (CVE-2025-62408).

This mirrors the change made to security-weekly-rebuild.yml.
v0.7.6 		2025-12-14 06:18:42 +00:00
GitHub Actions 72ebde31ce fix: add pull:true to security rebuild to fetch fresh base images 
Without pull:true, the weekly security rebuild may use stale base
images cached on GitHub runners, missing security patches like
c-ares 1.34.6-r0 (CVE-2025-62408).
v0.7.5 		2025-12-14 05:21:15 +00:00
GitHub Actions 7c79bf066a fix: update security package check to include apk update for accurate version info v0.7.4 2025-12-14 05:12:01 +00:00
GitHub Actions 394ada14f3 fix: update Docker run command to remove entrypoint for security package checks v0.7.3 2025-12-14 04:36:39 +00:00
GitHub Actions 9384c9c81f fix: build CrowdSec from source to address stdlib vulnerabilities and ensure compatibility with Go 1.25.5+ v0.7.2 2025-12-14 04:04:01 +00:00
GitHub Actions e9f9b6d95e docs: add commit message guidelines to Management agent documentation v0.7.1 2025-12-14 03:47:32 +00:00
GitHub Actions 926c4e239b fix: wrap mockOnClose in act() to fix flaky LiveLogViewer test 
Fixes race condition where WebSocket disconnect event wasn't being
processed within React's rendering cycle, causing intermittent CI
failures. Wrapping mockOnClose() in act() ensures React state updates
are flushed before assertions run.

Resolves #237
 2025-12-14 03:47:32 +00:00
GitHub Actions caf3e0340d fix: reduce weekly security scan build time (amd64 only, 60min timeout) 2025-12-14 03:47:32 +00:00
Jeremy 99e7fce264 Merge pull request #388 from Wikid82/main 
feat: Introduce new agent workflows for various development stages and update related documentation and configuration files.
 2025-12-13 22:29:36 -05:00
Jeremy d114fffafb Merge branch 'feature/beta-release' into main v0.7.0 2025-12-13 22:29:26 -05:00
GitHub Actions 9854a26375 feat: Introduce new agent workflows for various development stages and update related documentation and configuration files. 2025-12-14 03:19:57 +00:00
GitHub Actions acea4307ba Enhance documentation and testing plans 
- Added references to existing test files in the UI/UX testing plan.
- Updated CI failure remediation plan with improved file paths and clarity.
- Expanded CrowdSec full implementation documentation with detailed configuration steps and scripts.
- Improved CrowdSec testing plan with clearer objectives and expected results.
- Updated current specification documentation with additional context on CVE remediation.
- Enhanced docs-to-issues workflow documentation for better issue tracking.
- Corrected numbering in UI/UX bugfixes specification for clarity.
- Improved WAF testing plan with detailed curl commands and expected results.
- Updated QA reports for CrowdSec implementation and UI/UX testing with detailed results and coverage metrics.
- Fixed rate limit integration test summary with clear identification of issues and resolutions.
- Enhanced rate limit test status report with detailed root causes and next steps for follow-up.
v0.6.1 		2025-12-14 02:45:24 +00:00
GitHub Actions 5dfd546b42 feat: add weekly security rebuild workflow with no-cache scanning 
Implements proactive CVE detection strategy to catch Alpine package
vulnerabilities within 7 days without impacting development velocity.

Changes:
- Add .github/workflows/security-weekly-rebuild.yml
  - Runs weekly on Sundays at 02:00 UTC
  - Builds Docker image with --no-cache
  - Runs comprehensive Trivy scans (table, SARIF, JSON)
  - Uploads security reports to GitHub Security tab
  - 90-day artifact retention
- Update docs/plans/c-ares_remediation_plan.md
  - Document CI/CD cache strategy analysis
  - Add implementation status
  - Fix all markdown formatting issues
- Update docs/plans/current_spec.md (pointer)
- Add docs/reports/qa_report.md (validation results)

Benefits:
- Proactive CVE detection (~7 day window)
- No impact on PR/push build performance
- Only +50% CI cost vs +150% for all no-cache builds

First run: Sunday, December 15, 2025 at 02:00 UTC

Related: CVE-2025-62408 (c-ares vulnerability)
v0.6.0 		2025-12-14 02:08:16 +00:00