akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 8 Packages Projects Releases Wiki Activity
3,759 Commits 11 Branches 107 Tags
5c50d8b3149aa1ea44fc9a4cfb2fa541a16ec9a3
Commit Graph

3759 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
GitHub Actions 5c50d8b314 fix: update brace-expansion version to 1.1.14 for improved compatibility 2026-04-13 04:01:30 +00:00
Jeremy af95c1bdb3 Merge pull request #934 from Wikid82/renovate/feature/beta-release-softprops-action-gh-release-3.x 
chore(deps): update softprops/action-gh-release action to v3 (feature/beta-release)
 2026-04-12 21:14:11 -04:00
renovate[bot] 01e3d910f1 chore(deps): update softprops/action-gh-release action to v3 2026-04-13 01:12:42 +00:00
Jeremy 1230694f55 Merge pull request #933 from Wikid82/renovate/feature/beta-release-non-major-updates 
fix(deps): update non-major-updates (feature/beta-release)
 2026-04-12 21:06:36 -04:00
renovate[bot] 77f15a225f fix(deps): update non-major-updates 2026-04-12 16:50:55 +00:00
Jeremy d75abb80d1 Merge pull request #932 from Wikid82/renovate/feature/beta-release-non-major-updates 
fix(deps): update non-major-updates (feature/beta-release)
 2026-04-11 16:19:08 -04:00
GitHub Actions 42bc897610 fix: enhance certificate deletion handling with UUID validation and logging improvements 2026-04-11 17:54:42 +00:00
renovate[bot] b15f7c3fbc fix(deps): update non-major-updates 2026-04-11 17:47:55 +00:00
GitHub Actions bb99dacecd fix: update zlib and add libcrypto3 and libssl3 for improved security 2026-04-11 17:33:44 +00:00
GitHub Actions 4b925418f2 feat: Add certificate validation service with parsing and metadata extraction 
- Implemented certificate parsing for PEM, DER, and PFX formats.
- Added functions to validate key matches and certificate chains.
- Introduced metadata extraction for certificates including common name, domains, and issuer organization.
- Created unit tests for all new functionalities to ensure reliability and correctness.
 2026-04-11 07:17:45 +00:00
GitHub Actions 9e82efd23a fix: downgrade delve version from 1.26.2 to 1.26.1 for compatibility 2026-04-11 00:11:25 +00:00
GitHub Actions 8f7c10440c chore: align agent and instruction files with single-PR commit-slicing model 
- Rewrote commit slicing guidance in Management, Planning, and subagent
  instruction files to enforce one-feature-one-PR with ordered logical commits
- Removed multi-PR branching logic from the execution workflow
- Prevents partial feature merges that cause user confusion on self-hosted tools
- All cross-references now use "Commit N" instead of "PR-N"
 2026-04-10 23:41:05 +00:00
GitHub Actions a439e1d467 fix: add git to Dockerfile dependencies for improved build capabilities 2026-04-10 21:03:54 +00:00
Jeremy 718a957ad9 Merge branch 'development' into feature/beta-release 2026-04-10 16:53:27 -04:00
GitHub Actions 059ff9c6b4 fix: update Go version from 1.26.1 to 1.26.2 in Dockerfile and documentation for security improvements 2026-04-10 20:48:46 +00:00
Jeremy 062b86642d Merge pull request #927 from Wikid82/feature/beta-release 
fix: dependency updates, CVE suppression management, and Renovate version constraints
 2026-04-10 16:32:51 -04:00
GitHub Actions a5724aecf9 fix: update indirect dependencies for golang.org/x/arch, modernc.org/libc, and modernc.org/sqlite to latest versions 2026-04-10 19:22:04 +00:00
GitHub Actions 53dccbe82b fix: update baseline-browser-mapping and call-bind versions for security and compatibility 2026-04-10 19:22:04 +00:00
Jeremy 8d6645415a Merge pull request #926 from Wikid82/renovate/feature/beta-release-non-major-updates 
chore(deps): update non-major-updates (feature/beta-release)
 2026-04-10 15:21:01 -04:00
renovate[bot] 4cfcc9aa02 chore(deps): update non-major-updates 2026-04-10 19:18:28 +00:00
Jeremy 5d384e4afa Merge pull request #925 from Wikid82/renovate/feature/beta-release-actions-github-script-9.x 
chore(deps): update actions/github-script action to v9 (feature/beta-release)
 2026-04-10 15:17:21 -04:00
Jeremy 5bf25fdebc Merge pull request #924 from Wikid82/renovate/feature/beta-release-non-major-updates 
fix(deps): update non-major-updates (feature/beta-release)
 2026-04-10 15:17:05 -04:00
Jeremy 253d1ddd29 Merge branch 'feature/beta-release' into renovate/feature/beta-release-actions-github-script-9.x 2026-04-10 11:58:09 -04:00
Jeremy 5eab41b559 Merge branch 'feature/beta-release' into renovate/feature/beta-release-non-major-updates 2026-04-10 11:57:50 -04:00
GitHub Actions a076bb3265 chore(security): re-evaluate overdue CVE suppressions 2026-04-10 15:56:43 +00:00
Jeremy 9c85d9e737 Merge branch 'feature/beta-release' into renovate/feature/beta-release-actions-github-script-9.x 2026-04-10 11:41:55 -04:00
Jeremy 1de4ce6729 Merge branch 'feature/beta-release' into renovate/feature/beta-release-non-major-updates 2026-04-10 11:41:36 -04:00
GitHub Actions 8e0f88e8bd fix: add suppression for CVE-2026-32286 due to pgproto3/v2 buffer overflow vulnerability 2026-04-10 15:39:52 +00:00
GitHub Actions 36460a884e fix: enforce version constraints for pgx and go-jose modules to maintain compatibility 2026-04-10 15:26:36 +00:00
renovate[bot] 585ae9494d chore(deps): update actions/github-script action to v9 2026-04-10 15:11:56 +00:00
renovate[bot] ed9d6fe5d8 fix(deps): update non-major-updates 2026-04-10 15:11:47 +00:00
Jeremy f0147b1315 Merge pull request #921 from Wikid82/feature/beta-release 
fix: resolve 5 HIGH-severity CVEs blocking nightly container image scan
 2026-04-09 21:13:01 -04:00
GitHub Actions 615e5a95f5 fix: downgrade pgx/v4 to v4.18.3 to address buffer overflow vulnerability 2026-04-09 19:09:25 +00:00
Jeremy 5b85d18217 Merge pull request #923 from Wikid82/renovate/feature/beta-release-github.com-jackc-pgx-v4-5.x 
chore(deps): update module github.com/jackc/pgx/v4 to v5 (feature/beta-release)
 2026-04-09 14:31:42 -04:00
renovate[bot] f05c24dd66 chore(deps): update module github.com/jackc/pgx/v4 to v5 2026-04-09 18:24:32 +00:00
GitHub Actions fd11279aa3 fix: update security policy for CVE-2026-31790 and CVE-2026-2673 vulnerabilities 2026-04-09 17:59:56 +00:00
GitHub Actions 59282952b0 fix(ci): provide Go 1.26.2 toolchain for Renovate dependency lookups 2026-04-09 17:55:51 +00:00
GitHub Actions 8742c76d52 fix: add Grype ignore for unfixed Alpine OpenSSL CVE-2026-31790 
No upstream fix available for libcrypto3/libssl3 in Alpine 3.23.3.
Accepted risk documented in SECURITY.md. Monitoring Alpine security
advisories for patch availability.
 2026-04-09 17:52:04 +00:00
Jeremy 9c0193e812 Merge pull request #922 from Wikid82/renovate/feature/beta-release-non-major-updates 
fix(deps): update non-major-updates (feature/beta-release)
 2026-04-09 13:42:52 -04:00
renovate[bot] 64465e1cd9 fix(deps): update non-major-updates 2026-04-09 17:27:46 +00:00
GitHub Actions 580e20d573 fix: resolve 5 HIGH-severity CVEs blocking nightly container image scan 
Patch vulnerable transitive dependencies across all three compiled
binaries in the Docker image (backend, Caddy, CrowdSec):

- go-jose/v3 and v4: JOSE/JWT validation bypass (CVE-2026-34986)
- otel/sdk: resource leak in OpenTelemetry SDK (CVE-2026-39883)
- pgproto3/v2: buffer overflow via pgx/v4 bump (CVE-2026-32286)
- AWS SDK v2: event stream injection in CrowdSec deps (GHSA-xmrv-pmrh-hhx2)
- OTel HTTP exporters: request smuggling (CVE-2026-39882)
- gRPC: bumped to v1.80.0 for transitive go-jose/v4 resolution

All Dockerfile patches include Renovate annotations for automated
future tracking. Renovate config extended to cover Go version and
GitHub Action refs in skill example workflows, preventing version
drift in non-CI files. SECURITY.md updated with pre-existing Alpine
base image CVE (no upstream fix available).

Nightly Go stdlib CVEs (1.26.1) self-heal on next development sync;
example workflow pinned to 1.26.2 for correctness.
 2026-04-09 17:24:25 +00:00
GitHub Actions bb496daae3 fix(ci): improve health check for Charon container in nightly build 2026-04-09 14:08:19 +00:00
GitHub Actions 4cd568b0e5 fix(deps): update multiple dependencies in package-lock.json 2026-04-09 14:04:00 +00:00
GitHub Actions efd70cd651 fix(deps): update golang.org/x/text to v0.36.0 and other dependencies 2026-04-09 14:01:05 +00:00
GitHub Actions 3d4a63b515 fix(go): update Go version to 1.26.2 2026-04-09 13:58:24 +00:00
Jeremy 42cec9e8c3 Merge pull request #919 from Wikid82/renovate/feature/beta-release-non-major-updates 
fix(deps): update non-major-updates (feature/beta-release)
 2026-04-09 09:41:24 -04:00
renovate[bot] 73565e0e0d fix(deps): update non-major-updates 2026-04-09 09:20:57 +00:00
Jeremy 6dddc5db43 Merge pull request #918 from Wikid82/renovate/feature/beta-release-non-major-updates 
fix(deps): update non-major-updates (feature/beta-release)
 2026-04-06 20:30:42 -04:00
renovate[bot] ef90d1c0d7 fix(deps): update non-major-updates 2026-04-06 21:48:29 +00:00
Jeremy 2d923246a9 Merge pull request #916 from Wikid82/development 
Propagate changes from development into feature/beta-release
 2026-04-06 01:24:35 -04:00