Actor
jz
Status
fix(dockerfile): purge npm cache in same layer as installs to prevent secret leakage
docker-build.yml #30 -Commit
94333e4d32
pushed by
jz
fix(dockerfile): bump MCP SDK 1.26.0, patch brace-expansion 5.0.5 (GHSA-345p-7cg4-v4c7, GHSA-f886-m6hf-6m8v)
docker-build.yml #29 -Commit
e8d134f5a9
pushed by
jz
ci(scan): add Grype scanning alongside Trivy; fix --vuln-type flag
docker-build.yml #28 -Commit
71494a59b3
pushed by
jz
fix(docker): patch picomatch 4.0.3 → 4.0.4 (CVE-2026-33671)
docker-build.yml #27 -Commit
12d75b0dc2
pushed by
jz
fix(security): remove MCP credentials from managed-settings.json; bump Trivy to 0.70.0
docker-build.yml #26 -Commit
a79aad9fc8
pushed by
jz
docs: update node:20-alpine references to node:24-alpine
docker-build.yml #22 -Commit
a566b463a9
pushed by
jz
revert(docker): switch back to node:20-alpine base image
docker-build.yml #21 -Commit
484e0fecb8
pushed by
jz
security: use dhi image for the proxy as well
docker-build.yml #20 -Commit
89a3d3dae5
pushed by
jz
chore(ci): pull trivy from registry mirror
docker-build.yml #18 -Commit
94dadbbe8e
pushed by
jz
feat(ci): generate SBOMs in scan job and attach attestations on push
docker-build.yml #17 -Commit
e6b46087b3
pushed by
jz
feat(ci): add Trivy container security scanning before push
docker-build.yml #16 -Commit
530def213b
pushed by
jz
docs(claude.md): sync with current project state
docker-build.yml #15 -Commit
cf50570733
pushed by
jz
fix(proxy): close port-6443 allowlist bypass in squid ACLs
docker-build.yml #14 -Commit
51e7ab2b08
pushed by
jz
fix: ash doesn't seem to work with the claude script
docker-build.yml #13 -Commit
698b06aafd
pushed by
jz
chore(docker): pin Claude Code install to stable release channel
docker-build.yml #10 -Commit
b76d1e5e2a
pushed by
jz
chore(hooks): fix executable bit on build.sh and hooks/pre-commit
docker-build.yml #7 -Commit
8b4f08e68c
pushed by
jz
ci: add Forgejo action to build and push Docker images to registry
docker-build.yml #1 -Commit
1dbbbc840d
pushed by
jz