b7620a2d1e
fix: update tool reference for editing feature documentation
2026-01-25 15:14:01 +00:00
3e3539ed6c
fix: remove duplicate entries in Supervisor agent tools list
2026-01-25 15:10:16 +00:00
9c32108ac7
fix: add resilience for CrowdSec Hub API unavailability
...
Add 404 status code to fallback conditions in hub_sync.go so the
integration gracefully falls back to GitHub mirror when primary
hub-data.crowdsec.net returns 404.
Add http.StatusNotFound to fetchIndexHTTPFromURL fallback
Add http.StatusNotFound to fetchWithLimitFromURL fallback
Update crowdsec_integration.sh to check hub availability
Skip hub preset tests gracefully when hub is unavailable
Fixes CI failure when CrowdSec Hub API is temporarily unavailable
2026-01-25 14:50:14 +00:00
2db1685b74
Merge pull request #561 from Wikid82/renovate/feature/beta-release-weekly-non-major-updates
...
fix(deps): update weekly-non-major-updates (feature/beta-release)
2026-01-25 09:43:47 -05:00
dfffa66e36
fix(deps): update weekly-non-major-updates
2026-01-25 14:42:45 +00:00
fb31f08979
Merge pull request #560 from Wikid82/renovate/feature/beta-release-pin-dependencies
...
chore(deps): pin dependencies (feature/beta-release)
2026-01-25 09:40:32 -05:00
2ce4334107
Merge branch 'feature/beta-release' into renovate/feature/beta-release-pin-dependencies
2026-01-25 09:40:20 -05:00
91ce338ac7
chore(deps): pin dependencies
2026-01-25 14:40:08 +00:00
55fe64b7ae
fix(ci): sanitize branch names in Docker image tags
...
Fix "invalid reference format" error in GitHub Actions workflows when
branch names contain forward slashes (e.g., feature/beta-release).
Add sanitization step to playwright.yml converting / to -
Update supply-chain-verify.yml with dynamic branch sanitization
Add sanitization step to supply-chain-pr.yml for artifact names
Branch feature/beta-release → tag feature-beta-release
Fixes Playwright E2E and supply chain security scan workflow failures
2026-01-25 14:39:40 +00:00
23082c8aae
Merge pull request #559 from Wikid82/renovate/feature/beta-release-actions-setup-go-6.x
...
chore(deps): update actions/setup-go action to v6 (feature/beta-release)
2026-01-25 09:39:05 -05:00
dc94499617
chore(deps): update actions/setup-go action to v6
2026-01-25 14:37:29 +00:00
8e354aeb47
Merge pull request #558 from Wikid82/renovate/feature/beta-release-actions-github-script-8.x
...
chore(deps): update actions/github-script action to v8 (feature/beta-release)
2026-01-25 09:35:41 -05:00
b144670c85
Merge pull request #557 from Wikid82/renovate/feature/beta-release-major-7-github-artifact-actions
...
chore(deps): update actions/download-artifact action to v7 (feature/beta-release)
2026-01-25 09:35:26 -05:00
92793df7f2
Merge pull request #556 from Wikid82/renovate/feature/beta-release-actions-checkout-6.x
...
chore(deps): update actions/checkout action to v6 (feature/beta-release)
2026-01-25 09:35:05 -05:00
39eab80d48
chore(deps): update actions/download-artifact action to v7
2026-01-25 14:35:01 +00:00
f80932b0d0
Merge pull request #555 from Wikid82/renovate/feature/beta-release-actions-cache-5.x
...
chore(deps): update actions/cache action to v5 (feature/beta-release)
2026-01-25 09:34:47 -05:00
64e199a290
Merge pull request #554 from Wikid82/renovate/feature/beta-release-paulhatch-semantic-version-6.x
...
chore(deps): update paulhatch/semantic-version action to v6 (feature/beta-release)
2026-01-25 09:34:22 -05:00
a434f84c3f
Merge pull request #553 from Wikid82/renovate/feature/beta-release-major-6-github-artifact-actions
...
chore(deps): update github artifact actions to v6 (feature/beta-release) (major)
2026-01-25 09:33:57 -05:00
7391784a92
chore(deps): update actions/github-script action to v8
2026-01-25 14:33:34 +00:00
96d8cd710e
Merge pull request #552 from Wikid82/renovate/feature/beta-release-actions-setup-node-6.x
...
chore(deps): update actions/setup-node action to v6 (feature/beta-release)
2026-01-25 09:33:29 -05:00
ae69f654a5
chore(deps): update actions/checkout action to v6
2026-01-25 14:33:25 +00:00
bec62cfd28
chore(deps): update actions/cache action to v5
2026-01-25 14:33:21 +00:00
13d39811fc
chore(deps): update paulhatch/semantic-version action to v6
2026-01-25 14:32:06 +00:00
ae969dd568
chore(deps): update github artifact actions to v6
2026-01-25 14:32:02 +00:00
94c3583917
chore(deps): update actions/setup-node action to v6
2026-01-25 14:31:56 +00:00
82296c2509
chore: move processed issue files to created/
2026-01-25 14:10:00 +00:00
103f0e0ae9
fix: resolve WAF integration failure and E2E ACL deadlock
...
Fix integration scripts using wget-style curl options after Alpine→Debian
migration (PR #550 ). Add Playwright security test helpers to prevent ACL
from blocking subsequent tests.
Fix curl syntax in 5 scripts: -q -O- → -sf
Create security-helpers.ts with state capture/restore
Add emergency ACL reset to global-setup.ts
Fix fixture reuse bug in security-dashboard.spec.ts
Add security-helpers.md usage guide
Resolves WAF workflow "httpbin backend failed to start" error
2026-01-25 14:09:38 +00:00
a41cfaae10
fix(integration): migrate wget-style curl syntax for Debian compatibility
...
After migrating base image from Alpine to Debian Trixie (PR #550 ),
integration test scripts were using wget-style options with curl
that don't work correctly on Debian.
Changed curl -q -O- (wget syntax) to curl -sf (proper curl):
waf_integration.sh
cerberus_integration.sh
rate_limit_integration.sh
crowdsec_startup_test.sh
install-go-1.25.5.sh
Also added future phase to plan for Playwright security test helpers
to prevent ACL deadlock issues during E2E testing.
Refs: #550
2026-01-25 09:17:50 +00:00
aa74d37a3a
fix(workflow): update QA Security workflow to include mandatory e2e image rebuild step
2026-01-25 07:58:16 +00:00
ac0746db31
fix(waf): correct invalid curl flags in coraza integration test
...
- Replace 'curl -q -O-' with 'curl -s' (valid silent mode flag)
- Remove redundant fallback since only one curl call is needed
- Fixes httpbin connectivity check failure in WAF tests
2026-01-25 06:39:52 +00:00
88ea0d567a
fix: resolve merge conflicts and simplify branch strategy
...
Abort broken rebase (193 commits), use merge instead
Remove feature/beta-release from Renovate baseBranches
Simplify propagate workflow: main → development → feature/*
Fix duplicate lines in codeql.yml from corrupted merge
Fix duplicate entries in package.json
Resolve Dockerfile conflict (keep node:24.13.0-slim for Trixie)
Add .hadolint.yaml to ignore DL3008/DL3059 for Debian images
Refs: #550
2026-01-25 06:29:01 +00:00
47bb0a995a
fix(workflow): enhance branch propagation by adding support for feature branches from development
2026-01-25 06:14:19 +00:00
80e37b4920
Merge branch 'development' into feature/beta-release
2026-01-25 06:11:29 +00:00
b606e5c1ff
fix(lint): update Hadolint configuration to enforce stricter error thresholds and add ignored rules
2026-01-25 05:46:14 +00:00
69da357613
fix(docker): switch frontend builder from node:24.13.0-alpine to node:24.13.0-slim for improved compatibility
2026-01-25 05:44:14 +00:00
cf52054393
chore(deps): update weekly-non-major-updates
2026-01-25 05:42:39 +00:00
07d3f8bab4
chore(deps): update weekly-non-major-updates
2026-01-25 05:41:32 +00:00
55e88a861c
fix(deps): update weekly-non-major-updates
2026-01-25 05:41:12 +00:00
e1e840bac1
fix(deps): update weekly-non-major-updates
2026-01-25 05:39:59 +00:00
4fcca5ed7d
fix(workflow): update base image in docker-build.yml from debian:bookworm-slim to debian:trixie-slim to resolve build inconsistency
2026-01-25 05:08:14 +00:00
6f670dd097
fix(dependencies): update @emnapi/core and @emnapi/runtime to version 1.8.1; update @napi-rs/wasm-runtime to version 1.1.1; add funding information
2026-01-25 04:22:21 +00:00
89ca4f258a
fix(agents): update model version to 'claude-opus-4-5-20250514' across multiple agent files
2026-01-25 04:07:19 +00:00
978f698570
fix(security): remove hardcoded encryption keys from docker compose files
...
Replace hardcoded CHARON_ENCRYPTION_KEY with environment variable
substitution using Docker Compose required variable syntax.
docker-compose.playwright.yml: use ${CHARON_ENCRYPTION_KEY:?...}
docker-compose.e2e.yml: use ${CHARON_ENCRYPTION_KEY:?...}
e2e-tests.yml: add ephemeral key generation per CI run
.env.test.example: document the requirement prominently
Security: The old key exists in git history and must never be used
in production. Each CI run now generates a unique ephemeral key.
Refs: OWASP A02:2021 - Cryptographic Failures
2026-01-25 03:50:12 +00:00
a657d38930
fix(agents): add mcp-servers configuration to multiple agent files for enhanced integration
2026-01-25 03:08:09 +00:00
a6f5ffccc5
Refactor Playwright Tester agent: Update name, description, tools, and workflow for enhanced clarity and functionality; improve accessibility and test design guidelines.
2026-01-25 02:52:43 +00:00
01625cec79
fix(docs): clarify guideline for feature description conciseness
2026-01-25 00:33:47 +00:00
fb3a17dc18
fix(agents): update agent configurations with model, target, and infer properties
2026-01-24 23:28:37 +00:00
5d91c3108d
fix(prompts): change agent: to mode: in frontmatter
...
Fixed 22 prompt files:
- Changed 'agent:' to 'mode:' (correct frontmatter key)
- Removed duplicate 'search' entries from tools arrays
This aligns with prompt authoring rules in prompt.instructions.md
2026-01-24 23:24:07 +00:00
56e3e70fa2
fix(ci): tighten minor_pattern regex in auto-versioning
...
The previous pattern '/(feat|feat\\()/)' was too broad and could
match any commit containing 'feat' substring (like 'defeat', 'feature').
Changed to '/^feat(\\(.+\\))?:/' which properly matches only
Conventional Commits format: 'feat:' or 'feat(scope):'
2026-01-24 23:19:59 +00:00
bef78c93d3
chore: remove backup workflow file from .github/workflows
...
Backup files in workflows/ add noise and confusion. The file can be
recovered from git history if needed.
2026-01-24 23:18:29 +00:00
GitHub Actions
Jeremy
renovate[bot]
github-actions[bot]