docker-claude

66 commits 2 branches 0 tags 238 KiB

Author	SHA1	Message	Date
docker-claude	a79aad9fc8	fix(security): remove MCP credentials from managed-settings.json; bump Trivy to 0.70.0 Some checks failed Build images / check-docker (push) Successful in 1s Details Build images / scan (push) Failing after 50s Details Build images / build-and-push (push) Has been skipped Details settings.json is COPY-ed into the image at build time. Putting MCP server config with credential env references there risks baking tokens into the image if placeholders are ever replaced with real values. Move MCP server config to ~/.claude/settings.json (runtime volume mount) instead. Managed settings now contains policy only: models, permissions, telemetry. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-04-20 16:00:37 +02:00
docker-claude	e19d4eb0a3	feat(mcp): add GitHub, GitLab, Jira, and Confluence MCP servers Install four MCP servers globally in the claude image: @modelcontextprotocol/server-github → mcp-server-github @yoda.digital/gitlab-mcp-server → gitlab-mcp-server @aashari/mcp-server-atlassian-jira → mcp-atlassian-jira @aashari/mcp-server-atlassian-confluence → mcp-atlassian-confluence Wire them in managed-settings.json via mcpServers with env var pass-through. Jira and Confluence share ATLASSIAN_* credentials. Add api.github.com, .gitlab.com, .atlassian.net to the squid allowlist. All credentials are optional — servers are skipped if the relevant env vars are unset.	2026-04-14 23:09:42 +02:00
docker-claude	c65ed15653	refactor(policy): rename managed-settings.json to settings.json	2026-04-14 22:59:25 +02:00

Author

SHA1

Message

Date

docker-claude

a79aad9fc8

fix(security): remove MCP credentials from managed-settings.json; bump Trivy to 0.70.0

Build images / check-docker (push) Successful in 1s

Details

Build images / scan (push) Failing after 50s

Details

Build images / build-and-push (push) Has been skipped

Details

settings.json is COPY-ed into the image at build time. Putting MCP server
config with credential env references there risks baking tokens into the
image if placeholders are ever replaced with real values. Move MCP server
config to ~/.claude/settings.json (runtime volume mount) instead.
Managed settings now contains policy only: models, permissions, telemetry.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-04-20 16:00:37 +02:00

docker-claude

e19d4eb0a3

feat(mcp): add GitHub, GitLab, Jira, and Confluence MCP servers

Install four MCP servers globally in the claude image:
  @modelcontextprotocol/server-github  → mcp-server-github
  @yoda.digital/gitlab-mcp-server      → gitlab-mcp-server
  @aashari/mcp-server-atlassian-jira   → mcp-atlassian-jira
  @aashari/mcp-server-atlassian-confluence → mcp-atlassian-confluence

Wire them in managed-settings.json via mcpServers with env var
pass-through. Jira and Confluence share ATLASSIAN_* credentials.
Add api.github.com, .gitlab.com, .atlassian.net to the squid
allowlist. All credentials are optional — servers are skipped
if the relevant env vars are unset.

2026-04-14 23:09:42 +02:00

docker-claude

c65ed15653

refactor(policy): rename managed-settings.json to settings.json

2026-04-14 22:59:25 +02:00

Renamed from claude/managed-settings.json (Browse further)

3 commits