Jeremy
ec1b79c2b7
Merge branch 'development' into feature/beta-release
2026-03-16 08:30:45 -04:00
Jeremy
bab79f2349
Merge pull request #846 from Wikid82/renovate/feature/beta-release-non-major-updates
...
chore(deps): update non-major-updates (feature/beta-release)
2026-03-16 08:28:36 -04:00
renovate[bot]
edd7405313
chore(deps): update non-major-updates
2026-03-16 12:28:25 +00:00
GitHub Actions
79800871fa
fix: harden frontend-builder with npm upgrade to mitigate bundled CVEs
2026-03-16 12:26:55 +00:00
Jeremy
67dd87d3a9
Merge pull request #845 from Wikid82/main
...
Propagate changes from main into development
2026-03-16 08:24:38 -04:00
Jeremy
dfc2beb8f3
Merge pull request #844 from Wikid82/nightly
...
Weekly: Promote nightly to main (2026-03-16)
2026-03-16 08:16:42 -04:00
GitHub Actions
5e5eae7422
fix: ensure Semgrep hook triggers on Dockerfile-only commits
2026-03-16 11:44:27 +00:00
GitHub Actions
78f216eaef
fix: enhance payload handling in Slack provider creation to track token presence
2026-03-16 11:41:06 +00:00
Jeremy
34d5cca972
Merge branch 'main' into nightly
2026-03-16 07:35:56 -04:00
Jeremy
5d771381a1
Merge pull request #842 from Wikid82/bot/update-geolite2-checksum
...
chore(docker): update GeoLite2-Country.mmdb checksum
2026-03-16 07:35:38 -04:00
GitHub Actions
95a65069c0
fix: handle existing PR outputs in promotion job
2026-03-16 11:17:37 +00:00
Jeremy
1e4b2d1d03
Merge pull request #843 from Wikid82/renovate/feature/beta-release-non-major-updates
...
fix(deps): update non-major-updates (feature/beta-release)
2026-03-16 07:15:40 -04:00
renovate[bot]
81f1dce887
fix(deps): update non-major-updates
2026-03-16 11:06:23 +00:00
Wikid82
3570c05805
chore(docker): update GeoLite2-Country.mmdb checksum
...
Automated checksum update for GeoLite2-Country.mmdb database.
Old: b79afc28a0a52f89c15e8d92b05c173f314dd4f687719f96cf921012d900fcce
New: aa154fc6bcd712644de232a4abcdd07dac1f801308c0b6f93dbc2b375443da7b
Auto-generated by: .github/workflows/update-geolite2.yml
2026-03-16 02:58:27 +00:00
GitHub Actions
b66cc34e1c
fix: update Caddy security version to 1.1.48 in Dockerfile
2026-03-15 20:49:53 +00:00
GitHub Actions
5bafd92edf
fix: supply slack webhook token in handler create sub-tests
...
The slack sub-tests in TestDiscordOnly_CreateRejectsNonDiscord and
TestBlocker3_CreateProviderRejectsNonDiscordWithSecurityEvents were
omitting the required token field from their request payloads.
CreateProvider enforces that Slack providers must have a non-empty
token (the webhook URL) at creation time. Without it the service
returns "slack webhook URL is required", which the handler does not
classify as a 400 validation error, so it falls through to 500.
Add a token field to each test struct, populate it for the slack
case with a valid-format Slack webhook URL, and use
WithSlackURLValidator to bypass the real format check in unit tests —
matching the pattern used in all existing service-level Slack tests.
2026-03-15 15:17:23 +00:00
GitHub Actions
6e4294dce1
fix: validate Slack webhook URL at provider create/update time
2026-03-15 12:23:27 +00:00
GitHub Actions
82b1c85b7c
fix: clarify feature flag behavior for Slack notifications in documentation
2026-03-15 12:14:48 +00:00
GitHub Actions
41ecb7122f
fix: update baseline-browser-mapping and caniuse-lite to latest versions
2026-03-15 11:58:48 +00:00
GitHub Actions
2fa7608b9b
fix: guard routeBodyPromise against indefinite hang in security test
2026-03-15 11:51:16 +00:00
GitHub Actions
285ee2cdda
fix: expand Semgrep ruleset to cover TypeScript, Dockerfile, and shell security
2026-03-15 11:45:18 +00:00
GitHub Actions
72598ed2ce
fix: inject Slack URL validator via constructor option instead of field mutation
2026-03-15 11:27:51 +00:00
GitHub Actions
8670cdfd2b
fix: format notification services table for better readability
2026-03-15 11:17:34 +00:00
GitHub Actions
f8e8440388
fix: correct GeoIP CI detection to require truthy value
2026-03-15 11:15:56 +00:00
GitHub Actions
ab4dee5fcd
fix: make Slack webhook URL validator injectable on NotificationService
2026-03-15 11:15:10 +00:00
Jeremy
04e87e87d5
Merge pull request #841 from Wikid82/renovate/feature/beta-release-jsdom-29.x
...
chore(deps): update dependency jsdom to v29 (feature/beta-release)
2026-03-15 07:00:19 -04:00
Jeremy
cc96435db1
Merge pull request #840 from Wikid82/renovate/feature/beta-release-non-major-updates
...
chore(deps): update softprops/action-gh-release digest to b25b93d (feature/beta-release)
2026-03-15 06:59:51 -04:00
renovate[bot]
53af0a6866
chore(deps): update dependency jsdom to v29
2026-03-15 10:56:03 +00:00
renovate[bot]
3577ce6c56
chore(deps): update softprops/action-gh-release digest to b25b93d
2026-03-15 10:55:54 +00:00
Jeremy
0ce35f2d64
Merge branch 'development' into feature/beta-release
2026-03-14 23:47:43 -04:00
Jeremy
0e556433f7
Merge pull request #839 from Wikid82/hotfix/login
...
Hotfix: Login / Auth on Private IP
2026-03-14 23:45:41 -04:00
GitHub Actions
4b170b69e0
fix: update Caddy security version to 1.1.47 in Dockerfile
2026-03-15 03:25:41 +00:00
GitHub Actions
fd58f9d99a
fix(auth): update SameSite cookie policy description for clarity
2026-03-15 03:23:06 +00:00
GitHub Actions
f33ab83b7c
fix(auth): rename isLocalHost to isLocalOrPrivateHost and update related tests
2026-03-15 03:20:11 +00:00
GitHub Actions
6777f6e8ff
feat(auth): implement Bearer token fallback in fetchSessionUser for private network HTTP connections
...
- Expanded fetchSessionUser to include Bearer token from localStorage as a fallback for authentication when Secure cookies fail.
- Updated headers to conditionally include Authorization if a token is present.
- Ensured compatibility with the recent fix for the Secure cookie flag on private network connections.
2026-03-15 02:25:07 +00:00
GitHub Actions
1096b00b94
fix: set PORT environment variable for httpbin backend in integration scripts
2026-03-14 16:44:35 +00:00
GitHub Actions
6180d53a93
fix: update undici to version 7.24.2 in package-lock.json
2026-03-14 16:44:35 +00:00
Jeremy
fca1139c81
Merge pull request #838 from Wikid82/renovate/feature/beta-release-release-drafter-release-drafter-7.x
...
chore(deps): update release-drafter/release-drafter action to v7 (feature/beta-release)
2026-03-14 12:30:46 -04:00
Jeremy
847b10322a
Merge pull request #837 from Wikid82/renovate/feature/beta-release-non-major-updates
...
chore(deps): update non-major-updates (feature/beta-release)
2026-03-14 12:30:29 -04:00
Jeremy
59251c8f27
Merge branch 'feature/beta-release' into renovate/feature/beta-release-non-major-updates
2026-03-14 12:30:02 -04:00
GitHub Actions
58b087bc63
fix: replace curl with wget for backend readiness checks in integration scripts
2026-03-14 13:17:06 +00:00
renovate[bot]
8ab926dc8b
chore(deps): update release-drafter/release-drafter action to v7
2026-03-14 13:16:45 +00:00
renovate[bot]
85f258d9f6
chore(deps): update non-major-updates
2026-03-14 13:15:37 +00:00
GitHub Actions
042c5ec6e5
fix(ci): replace abandoned httpbin image with maintained Go alternative
2026-03-13 22:44:19 +00:00
GitHub Actions
05d19c0471
fix: update lru-cache and other dependencies to latest versions
2026-03-13 20:07:30 +00:00
GitHub Actions
48af524313
chore(security): expand Semgrep coverage to include frontend and secrets scanning
2026-03-13 20:07:30 +00:00
GitHub Actions
bad97102e1
fix: repair GeoIP CI detection and harden httpbin startup in integration tests
2026-03-13 20:07:30 +00:00
GitHub Actions
98a4efcd82
fix: handle errors gracefully when commenting on PRs in supply chain verification workflow
2026-03-13 20:07:30 +00:00
Jeremy
f631dfc628
Merge pull request #836 from Wikid82/renovate/feature/beta-release-non-major-updates
...
chore(deps): update non-major-updates (feature/beta-release)
2026-03-13 15:58:41 -04:00
renovate[bot]
eb5b74cbe3
chore(deps): update non-major-updates
2026-03-13 19:08:11 +00:00
