akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 14 Packages Projects Releases Wiki Activity
2,211 Commits 11 Branches 107 Tags
6d6cce5b8c35889d4f9b272b8ab85d388ecdbb4e
Commit Graph

621 Commits

Author SHA1 Message Date
Jeremy
da6682000e Merge branch 'feature/beta-release' into renovate/feature/beta-release-weekly-non-major-updates 2026-02-03 14:55:10 -05:00
GitHub Actions
b6a189c927 fix(security): add CrowdSec diagnostics script and E2E tests for console enrollment and diagnostics 
- Implemented `diagnose-crowdsec.sh` script for checking CrowdSec connectivity and configuration.
- Added E2E tests for CrowdSec console enrollment, including API checks for enrollment status, diagnostics connectivity, and configuration validation.
- Created E2E tests for CrowdSec diagnostics, covering configuration file validation, connectivity checks, and configuration export.
 2026-02-03 18:26:32 +00:00
renovate[bot]
6d746385c3 chore(deps): update actions/checkout digest to de0fac2 2026-02-03 17:20:33 +00:00
renovate[bot]
df80c49070 chore(deps): update github/codeql-action digest to 6bc82e0 2026-02-03 07:15:37 +00:00
GitHub Actions
4178910eac refactor: streamline supply chain workflows by removing Syft and Grype installations and utilizing official Anchore actions for SBOM generation and vulnerability scanning 2026-02-03 07:09:54 +00:00
GitHub Actions
de66689b79 fix: update SYFT and GRYPE versions to include SHA256 digests for improved security 2026-02-03 06:40:50 +00:00
GitHub Actions
07e8261ecb chore(e2e): update concurrency settings to prevent cancellation of in-progress E2E tests 2026-02-03 04:18:37 +00:00
GitHub Actions
3ecc4015a6 refactor(workflows): simplify E2E Tests workflow name by removing 'Split Browsers' suffix 2026-02-03 00:56:00 +00:00
GitHub Actions
19e74f2122 refactor(workflows): standardize workflow names by removing 'Tests' suffix 2026-02-03 00:51:06 +00:00
GitHub Actions
d6cbc407fd fix(e2e): update Docker build-push-action version in E2E tests workflow 2026-02-03 00:06:01 +00:00
GitHub Actions
641588367b chore(diagnostics): Add comprehensive diagnostic tools for E2E testing 
- Create phase1_diagnostics.md to document findings from test interruptions
- Introduce phase1_validation_checklist.md for pre-deployment validation
- Implement diagnostic-helpers.ts for enhanced logging and state capture
- Enable browser console logging, error tracking, and dialog lifecycle monitoring
- Establish performance monitoring for test execution times
- Document actionable recommendations for Phase 2 remediation
 2026-02-03 00:02:45 +00:00
Jeremy
3bb7098220 Merge branch 'feature/beta-release' into renovate/feature/beta-release-weekly-non-major-updates 2026-02-02 16:44:12 -05:00
GitHub Actions
3414576f60 fix(e2e): implement performance tracking for shard execution and API call metrics 2026-02-02 21:32:27 +00:00
renovate[bot]
22c2e10f64 chore(deps): update weekly-non-major-updates 2026-02-02 21:23:46 +00:00
Jeremy
44d425d51d Merge branch 'feature/beta-release' into renovate/feature/beta-release-peter-evans-create-pull-request-8.x 2026-02-02 09:55:06 -05:00
renovate[bot]
280e7b9c19 chore(deps): pin peter-evans/create-pull-request action to c5a7806 2026-02-02 14:53:28 +00:00
Jeremy
a92e49604f Merge branch 'feature/beta-release' into renovate/feature/beta-release-peter-evans-create-pull-request-8.x 2026-02-02 09:48:59 -05:00
Jeremy
15d27b0c37 Merge branch 'feature/beta-release' into renovate/feature/beta-release-actions-github-script-8.x 2026-02-02 09:48:35 -05:00
renovate[bot]
3785e83323 chore(deps): update peter-evans/create-pull-request action to v8 2026-02-02 14:46:39 +00:00
renovate[bot]
dccf75545a chore(deps): update actions/github-script action to v8 2026-02-02 14:46:34 +00:00
renovate[bot]
530450440e chore(deps): update actions/checkout action to v6 2026-02-02 14:46:29 +00:00
Jeremy
d0cc6c08cf Merge branch 'feature/beta-release' into development 2026-02-02 09:41:47 -05:00
Jeremy
28ce642f94 Merge branch 'development' into main 2026-02-02 09:37:27 -05:00
GitHub Actions
09dc2fc182 fix(ci): use valid BuildKit --check flag for Dockerfile syntax validation 
Replaced non-existent `docker build --dry-run` with BuildKit's
`--check` flag which validates Dockerfile syntax without building.

Fixes #601
 2026-02-02 14:18:08 +00:00
GitHub Actions
34f99535e8 fix(ci): add GeoLite2 checksum update workflow with error handling 2026-02-02 14:12:57 +00:00
GitHub Actions
a167ca9756 fix(ci): add workflow to update GeoLite2-Country.mmdb checksum automatically 2026-02-02 14:11:13 +00:00
renovate[bot]
4dd95f1b6b fix(deps): update weekly-non-major-updates 2026-02-02 14:03:20 +00:00
GitHub Actions
b27fb306f7 fix(ci): force push nightly branch to handle divergence from development 2026-02-02 13:47:36 +00:00
GitHub Actions
f3ed1614c2 fix(ci): improve nightly build sync process by fetching both branches and preventing non-fast-forward errors 2026-02-02 13:45:21 +00:00
GitHub Actions
3261f5d7a1 fix(ci): normalize branch name for Docker tag in security PR workflow 2026-02-02 13:42:49 +00:00
GitHub Actions
60c3336725 COMMIT_MESSAGE_START 
fix(docker): update GeoLite2-Country.mmdb checksum + automation

Fixes critical Docker build failure caused by upstream GeoLite2 database
update without corresponding Dockerfile checksum update.

**Root Cause:**
- GeoLite2-Country.mmdb file updated upstream
- Dockerfile still referenced old SHA256 checksum
- Build aborted at checksum verification (line 352)
- Cascade "blob not found" errors for all COPY commands

**Changes:**
- Update Dockerfile ARG GEOLITE2_COUNTRY_SHA256 to current value
- Add automated weekly checksum update workflow (.github/workflows/update-geolite2.yml)
- Implement error handling: retry logic, format validation, failure notifications
- Document rollback decision matrix with 10 failure scenarios
- Create comprehensive maintenance guide (docs/maintenance/geolite2-checksum-update.md)
- Update CHANGELOG.md and README.md with maintenance references

**Verification:**
- Checksum verified against current upstream file: 436135ee...
- Pre-commit hooks: PASSED (EOF/whitespace auto-fixed)
- Trivy security scan: PASSED (no critical/high issues)
- Dockerfile syntax: VALID
- GitHub Actions YAML: VALID
- No hardcoded secrets or injection vulnerabilities

**Automation Features:**
- Weekly scheduled checks (Monday 2 AM UTC)
- Auto-PR creation when checksum changes
- GitHub issue creation on workflow failure
- Comprehensive error handling and retry logic

**Impact:**
- Unblocks all CI/CD Docker image builds
- Enables publishing to GHCR/Docker Hub
- Prevents future checksum failures via automation
- Zero application code changes (no regression risk)

**Documentation:**
- Implementation plan: docs/plans/geolite2_checksum_fix_spec.md
- QA report: docs/reports/qa_geolite2_checksum_fix.md
- Maintenance guide: docs/maintenance/geolite2-checksum-update.md

**Supervisor Recommendations Implemented:**
- #1: Checksum freshness verification before update
- #3: Rollback decision criteria (10 scenarios)
- #4: Automated workflow error handling

Resolves: https://github.com/Wikid82/Charon/actions/runs/21584236523/job/62188372617
COMMIT_MESSAGE_END
 2026-02-02 13:31:56 +00:00
renovate[bot]
8794e8948c chore(deps): update github/codeql-action digest to f52cbc8 2026-02-02 11:57:38 +00:00
renovate[bot]
085fa9cb2c chore(deps): update weekly-non-major-updates 2026-02-02 11:57:31 +00:00
GitHub Actions
fcb9eb79a8 chore: Remove dupe Playwright E2E test workflow 2026-02-02 06:44:21 +00:00
renovate[bot]
08cc82ac19 chore(deps): update actions/upload-artifact digest to 47309c9 2026-02-02 05:40:03 +00:00
renovate[bot]
0ad65fcfb1 chore(deps): update renovatebot/github-action action to v46.0.1 2026-02-02 05:39:57 +00:00
GitHub Actions
1defb04fca fix(e2e): streamline Playwright browser installation by caching and removing redundant force install step 2026-01-31 19:32:15 +00:00
GitHub Actions
200cdac3f4 fix(e2e): reorder Playwright browser installation step to ensure proper caching 2026-01-31 19:18:43 +00:00
GitHub Actions
620f566992 fix(e2e): force reinstall Playwright browsers to ensure dependencies are up to date 2026-01-31 18:57:50 +00:00
GitHub Actions
5d118f5159 fix(e2e): avoid passing Chromium-only flags to WebKit during verification; retry without args 2026-01-31 15:13:43 +00:00
GitHub Actions
782b8f358a chore(e2e): verify Playwright browser install and force-reinstall when executables missing 
- Print cache contents and Playwright CLI version for diagnostics
- Search for expected browser executables and force reinstall with --force if absent
- Add headless-launch verification via Node to fail fast with clear logs
 2026-01-31 15:07:09 +00:00
GitHub Actions
becdb35216 fix(e2e): always clean Playwright browser cache before install 
- Add step to delete ~/.cache/ms-playwright before installing browsers
- Guarantees correct browser version for each run
- Prevents mismatched or missing browser binaries (chromium_headless_shell-1208, etc.)
- Should resolve browser not found errors for all browsers
 2026-01-31 14:52:18 +00:00
GitHub Actions
13c22fea9a fix(e2e): remove restore-keys to prevent stale browser cache 
- Removed restore-keys fallback from Playwright cache
- Only exact cache matches (same package-lock.json hash) are used
- This prevents restoring incompatible browser versions when Playwright updates
- Added cache-hit check to skip install when cache is valid
- Firefox and WebKit were failing because old cache was restored but browsers were incompatible
 2026-01-31 08:48:55 +00:00
GitHub Actions
61324bd2ff fix(e2e): include browser name in job titles for visibility 
Job names now show: 'E2E chromium (Shard 1/4)' instead of 'E2E Tests (Shard 1/4)'
Makes it easier to identify which browser/shard is passing or failing
 2026-01-31 08:33:09 +00:00
GitHub Actions
6e13669e9b fix(e2e): include browser in artifact names and improve install step 
- Artifact names now include browser: playwright-report-{browser}-shard-{N}
- Docker logs include browser: docker-logs-{browser}-shard-{N}
- Install step always runs (idempotent) to ensure version match
- Fixed artifact name conflicts when 3 browsers share same shard number
- Updated summary and PR comment to reflect new naming
 2026-01-31 08:28:09 +00:00
GitHub Actions
2ecc261960 fix: enhance useImport tests with improved structure and error handling 
- Introduced a new wrapper function for query client to facilitate testing.
- Added comprehensive tests for upload, commit, and cancel operations.
- Improved error handling in tests to capture and assert error states.
- Enhanced session management and state reset functionality in tests.
- Implemented polling behavior tests for import status and preview queries.
- Ensured that upload previews are prioritized over status query previews.
- Validated cache invalidation and state management after commit and cancel actions.
 2026-01-31 07:30:41 +00:00
renovate[bot]
81e6bdc052 chore(deps): update weekly-non-major-updates 2026-01-31 05:40:01 +00:00
GitHub Actions
a3fea2490d test: add patch coverage tests for Caddy import normalization 2026-01-31 03:08:05 +00:00
Jeremy
01a7c7ffdf fix: add VCS_REF and BUILD_DATE to nightly build workflow 2026-01-30 23:22:44 +00:00
Jeremy
a924b90caa fix(ci): remove failing GoReleaser job and fix propagation workflow 2026-01-30 22:32:25 +00:00