Commit Graph - api

cartsnitch/api

Fork 1

Commit Graph

Select branches

Hide Pull Requests

barcode-betty/car-1004-fix-ruff-lint

barcode-betty/car-995-gitea-registry

barcode-betty/fix-car-1135-dispose-engine

barcode-betty/fix-ci-uat-trigger

barcode-betty/fix-dispose-engine-import

barcode-betty/fix-lint-f402

barcode-betty/gitea-registry

betty/car-1132-comprehensive-fix

betty/car-1330-buildpush-registry-token-dev

betty/car-1330-buildpush-registry-token-uat

betty/car-1330-dev-ci-fix

betty/car-1340-uat-ci-fix

betty/car-1362-cache-remove-uat

betty/car-1362-push-unknown-fix

betty/car-1362-remove-gha-cache-dev

betty/car-723-ci-workflow

betty/car-723-final-review

betty/car-869-gitea-actions-api

betty/car-932-dispose-import-v3

betty/car-932-fix-dispose-engine

betty/car-964-gitea-registry-v2

betty/car-995-gitea-registry

betty/fix-ci-test-failures

betty/fix-ci-test-failures-v2

betty/fix-email-inbound-token-tests

betty/fix-lint-errors

betty/fix-postgres-pool

betty/fix-sqlite-uuid-server-default

dev

feat/car-723-migrate-api-to-new-repo

fix-gitea-registry-migration

fix/cart-995-gitea-registry-migration

main

promote/car1077-dev-uat

remove-deploy-dev-uat-jobs

savannah/fix-ci-uat-trigger

uat

#1

#10

#11

#12

#13

#14

#15

#16

#17

#18

#19

#2

#20

#21

#22

#23

#24

#25

#26

#27

#28

#29

#3

#30

#31

#32

#33

#34

#35

#36

#37

#38

#39

#4

#40

#41

#42

#43

#44

#45

#46

#47

#48

#49

#5

#50

#51

#52

#53

#54

#6

#7

#8

#9

5c33b6ee38 Merge pull request 'Fix CI pipeline failures in cartsnitch/api' (#22) from cs_betty/api:barcode-betty/fix-ci-pipeline into dev Savannah Savings 2026-05-23 22:13:56 +00:00
ae2fc15a5b fix: resolve lint errors in test files [CAR-932] Barcode Betty 2026-05-23 22:09:33 +00:00
d527336da5 fix(ci): migrate from ghcr.io to Gitea built-in registry fix-gitea-registry-migration Flea Flicker 2026-05-23 22:03:04 +00:00
cf4b29b8d3 Fix CI pipeline failures: remove pip cache from setup-python, add missing env vars Flea Flicker 2026-05-23 21:57:04 +00:00
28ad343759 Merge pull request 'chore: promote dev to uat (dispose_engine fix, CAR-932)' (#20) from dev into uat Savannah Savings 2026-05-23 21:52:24 +00:00
23899f6c8d Merge pull request 'fix: remove dead dispose_engine import from API main.py [CAR-932]' (#16) from betty/car-932-fix-dispose-engine into dev Savannah Savings 2026-05-23 21:51:56 +00:00
61d4e18d7c ci: migrate from ghcr.io to Gitea built-in registry betty/car-995-gitea-registry Barcode Betty 2026-05-23 21:34:04 +00:00
c005c68230 fix: move dispose_engine import inside lifespan function betty/car-932-dispose-import-v3 Barcode Betty 2026-05-23 21:28:41 +00:00
499c1c4488 fix: migrate CI from ghcr.io to Gitea built-in registry barcode-betty/car-995-gitea-registry Barcode Betty 2026-05-23 21:24:44 +00:00
06c6dbed5c Merge pull request 'promote: dev → uat (CAR-992 cors_origins fix)' (#15) from dev into uat Savannah Savings 2026-05-23 20:56:06 +00:00
1805ff93cf Merge pull request 'fix: add UAT/dev domains to cors_origins' (#14) from cs_betty/api:car992-fix into dev Savannah Savings 2026-05-23 20:55:39 +00:00
ba88fad48b fix: remove dead dispose_engine import from API main.py betty/car-932-fix-dispose-engine Barcode Betty 2026-05-23 20:54:39 +00:00
0127c16d0b fix: add UAT/dev domains to cors_origins Barcode Betty 2026-05-23 20:45:56 +00:00
a58643a712 fix(ci): update kustomize image refs from ghcr.io to git.farh.net betty/car-964-gitea-registry-v2 Flea Flicker 2026-05-23 15:54:42 +00:00
599a9c4060 ci: push Docker images to Gitea registry (git.farh.net) barcode-betty/gitea-registry Flea Flicker 2026-05-23 15:37:02 +00:00
fbb7bf796a fix: remove dead dispose_engine import from API main.py barcode-betty/fix-dispose-engine-import Barcode Betty 2026-05-23 02:47:44 +00:00
228a83c355 Merge pull request 'promote: dev → uat (CI trigger fix)' (#10) from dev into uat Savannah Savings 2026-05-21 14:39:13 +00:00
7fd8e90b9c Merge pull request 'fix(ci): add uat branch to workflow triggers' (#9) from savannah/fix-ci-uat-trigger into dev Savannah Savings 2026-05-21 14:38:59 +00:00
e429786696 fix(ci): add uat branch to workflow triggers savannah/fix-ci-uat-trigger Savannah Savings 2026-05-21 14:37:47 +00:00
5d404ce0a8 fix(ci): add uat branch to workflow triggers barcode-betty/fix-ci-uat-trigger Barcode Betty 2026-05-21 14:17:20 +00:00
fbfedd4e8f Merge pull request 'chore: promote dev to uat (CAR-898 workflow move)' (#7) from dev into uat Savannah Savings 2026-05-21 13:05:23 +00:00
6b54a5ee7f Merge pull request 'chore: move workflows from .github to .gitea' (#6) from barcode-betty/move-workflows-to-gitea into dev Savannah Savings 2026-05-21 13:05:07 +00:00
4e38dd4a0e chore: move workflows from .github to .gitea Barcode Betty 2026-05-21 12:30:57 +00:00
6a8db71537 Merge pull request 'ci: promote Gitea Actions conversion to UAT' (#5) from dev into uat Coupon Carl 2026-05-21 04:55:13 +00:00
3a4bf6fb30 Merge pull request 'ci: convert GitHub Actions to Gitea Actions (ubuntu-latest)' (#4) from betty/car-869-gitea-actions-api into dev Coupon Carl 2026-05-21 04:54:50 +00:00
0c3c549a6a ci: convert GitHub Actions to Gitea Actions (ubuntu-latest) betty/car-869-gitea-actions-api Barcode Betty 2026-05-21 03:57:49 +00:00
cb180b511f release: promote API migration to production cartsnitch-ceo[bot] 2026-04-19 12:27:19 +00:00
556b43b424 Merge pull request #2 from cartsnitch/dev savannah-savings-cto[bot] 2026-04-19 12:11:48 +00:00
e4fb77407f Merge pull request #1 from cartsnitch/betty/car-723-final-review savannah-savings-cto[bot] 2026-04-19 12:11:30 +00:00
245d5e64a0 ci: trigger on dev branch push alongside main betty/car-723-final-review Barcode Betty 2026-04-19 11:51:24 +00:00
97be399c4d feat: CI workflow updates, Grype scan, and doc fixes Barcode Betty 2026-04-19 11:50:39 +00:00
7cc63abb96 feat: complete CAR-723 api migration betty/car-723-ci-workflow Barcode Betty 2026-04-19 11:58:11 +00:00
6d359b913c ci: trigger on dev branch push alongside main feat/car-723-migrate-api-to-new-repo Barcode Betty 2026-04-19 11:51:24 +00:00
3101b43079 feat: CI workflow updates, Grype scan, and doc fixes Barcode Betty 2026-04-19 11:50:39 +00:00
5e0e444cea release: bcrypt cost factor 10→12, Grype CVE ignores, Dockerfile cache-bust (UAT+Security PASS) cartsnitch-ceo[bot] 2026-04-19 00:24:10 +00:00
dc03a125e6 Merge pull request #225 from cartsnitch/dev cartsnitch-cto[bot] 2026-04-19 00:04:07 +00:00
06ca721926 Merge pull request #215 from cartsnitch/fix/car-663-bcrypt-cost-factor cartsnitch-cto[bot] 2026-04-19 00:02:28 +00:00
f2f38a37e0 chore: promote UAT to production (CAR-690, Grype CVE ignores + cache-bust) cartsnitch-ceo[bot] 2026-04-18 23:59:42 +00:00
c98f6fee78 Merge pull request #223 from cartsnitch/dev cartsnitch-cto[bot] 2026-04-18 03:55:23 +00:00
74c5b0a7fd Merge pull request #214 from cartsnitch/fix/car-620-grype-ignore-and-cache-bust cartsnitch-cto[bot] 2026-04-18 03:55:06 +00:00
750c01888a fix: add Grype CVE ignores and cache-bust Debian apt-get upgrade layers Barcode Betty 2026-04-15 03:47:13 +00:00
e17c330f57 fix: add Grype CVE ignores and cache-bust Debian apt-get upgrade layers Barcode Betty 2026-04-15 03:47:13 +00:00
8457c2fbbc chore: promote UAT to production (CAR-662, audit logging middleware) cartsnitch-ceo[bot] 2026-04-15 04:29:39 +00:00
30237784f8 Merge branch 'main' into uat cartsnitch-ceo[bot] 2026-04-15 04:17:24 +00:00
edbc9e2472 Merge pull request #213 from cartsnitch/dev cartsnitch-cto[bot] 2026-04-15 03:33:42 +00:00
0e47118270 feat(api): implement Redis cache get/set/delete with TTL support (#195) cartsnitch-ceo[bot] 2026-04-15 03:32:11 +00:00
854c451905 feat: Redis-backed rate limiting with stricter auth limits (#194) cartsnitch-ceo[bot] 2026-04-15 03:31:42 +00:00
cbc9e12394 Merge pull request #212 from cartsnitch/dev cartsnitch-cto[bot] 2026-04-15 03:30:04 +00:00
79de85393a feat(api): add input validation on public endpoints (#171) cartsnitch-ceo[bot] 2026-04-15 03:26:38 +00:00
9346eba8d4 feat: implement audit logging middleware for sensitive API operations (#183) cartsnitch-ceo[bot] 2026-04-15 03:23:37 +00:00
17bf6872bb chore: promote UAT to production (CAR-630) cartsnitch-ceo[bot] 2026-04-15 02:16:12 +00:00
8a4c194e39 feat: Redis-backed rate limiting with stricter auth limits Barcode Betty 2026-04-15 02:10:02 +00:00
f7e5855b22 chore: promote dev to UAT cartsnitch-cto[bot] 2026-04-15 02:00:15 +00:00
67fc389768 fix: replace N+1 UPC query with SQL containment in normalization (#175) cartsnitch-cto[bot] 2026-04-15 02:00:04 +00:00
951b5a49c6 chore: promote uat to production (Grype image vulnerability scanning) cartsnitch-ceo[bot] 2026-04-15 01:14:35 +00:00
61eccf1130 chore: promote dev to UAT (CAR-616 Docker CVE remediation) (#205) cartsnitch-cto[bot] 2026-04-14 23:57:52 +00:00
59e97153db fix: remediate high-severity CVEs in Docker images (#204) cartsnitch-cto[bot] 2026-04-14 23:57:40 +00:00
0d999c0de3 fix: remediate high-severity CVEs in Docker images Paperclip 2026-04-14 23:51:42 +00:00
22ef0fd68e feat(api): implement Redis cache get/set/delete with TTL support Paperclip 2026-04-14 16:00:35 +00:00
26f3415eab feat: Redis-backed rate limiting with stricter auth limits Paperclip 2026-04-14 15:46:52 +00:00
9396e12ae1 Production: API lifespan with connection pooling (CAR-550) cartsnitch-ceo[bot] 2026-04-14 14:00:08 +00:00
05aa139e49 Merge pull request #185 from cartsnitch/dev cartsnitch-cto[bot] 2026-04-14 13:48:37 +00:00
06c099594a Merge pull request #179 from cartsnitch/feature/cart-550-api-lifespan-pooling cartsnitch-cto[bot] 2026-04-14 13:48:17 +00:00
1867f0bb87 feat: implement audit logging middleware for sensitive API operations Barcode Betty 2026-04-14 13:41:55 +00:00
3ecdcbcd20 Release: rate limit key derivation fix + CORS security headers (#180) cartsnitch-ceo[bot] 2026-04-14 13:25:23 +00:00
2f2df5f0f0 Merge branch 'main' into uat cartsnitch-ceo[bot] 2026-04-14 13:18:38 +00:00
3300d67137 feat(api): implement FastAPI lifespan with connection pooling Barcode Betty 2026-04-14 13:12:46 +00:00
6b1213544f fix(security): use SHA-256 hash for rate limit key instead of token suffix (#169) cartsnitch-cto[bot] 2026-04-14 12:45:15 +00:00
cd58401411 fix: replace N+1 UPC query with SQL containment in normalization CartSnitch Engineer Bot 2026-04-14 11:59:28 +00:00
49f5d70291 Merge pull request #172 from cartsnitch/fix/cors-security-headers cartsnitch-cto[bot] 2026-04-14 11:57:52 +00:00
34e68cfac3 fix: restrict CORS to explicit methods and add security headers CartSnitch Engineer Bot 2026-04-14 11:49:02 +00:00
ef4d0cc13f feat(api): add input validation on public endpoints CartSnitch Engineer Bot 2026-04-14 11:45:53 +00:00
b5df9aba1e fix(security): use SHA-256 hash for rate limit key instead of token suffix CartSnitch Engineer Bot 2026-04-14 11:36:17 +00:00
39dfacff86 Merge pull request #156 from cartsnitch/fix/hardcoded-secrets cartsnitch-cto[bot] 2026-04-14 11:31:40 +00:00
aa9fddd084 fix: remove hardcoded default secrets from API config CartSnitch Engineer Bot 2026-04-14 11:11:23 +00:00
744a7c540f Release: domain tables migration + alembic fixes (UAT-verified) cartsnitch-ceo[bot] 2026-04-05 02:55:12 +00:00
3a2ff62efe Merge pull request #148 from cartsnitch/betty/fix-alembic-create-all-commit cartsnitch-cto[bot] 2026-04-04 21:57:54 +00:00
0fc93a63bc Merge pull request #147 from cartsnitch/betty/car-517-domain-tables-migration cartsnitch-cto[bot] 2026-04-04 21:36:48 +00:00
0d4420f083 fix(api): commit after create_all in alembic env.py Barcode Betty 2026-04-04 21:36:05 +00:00
f058ac0686 fix(api): create domain tables migration + fix create_all commit cartsnitch-engineer[bot] 2026-04-04 21:22:24 +00:00
38aa228c00 Merge pull request #145 from cartsnitch/betty/fix-alembic-model-import cartsnitch-cto[bot] 2026-04-04 21:20:11 +00:00
09c7937102 fix(api): import Base from models package to register all ORM tables Barcode Betty 2026-04-04 21:12:13 +00:00
a9d28a63fc Merge pull request #143 from cartsnitch/betty/fix-session-cookie-parsing cartsnitch-cto[bot] 2026-04-04 20:39:09 +00:00
b3af0833e8 fix(auth): parse compound Better-Auth cookie/bearer token to extract token part Barcode Betty 2026-04-04 20:32:43 +00:00
455ef14519 Merge pull request #141 from cartsnitch/betty/fix-api-database-url-fallback cartsnitch-cto[bot] 2026-04-04 20:05:47 +00:00
a73c26ab63 fix(api): accept DATABASE_URL as fallback for shared DB with auth service Barcode Betty 2026-04-04 19:52:24 +00:00
e497dacdf5 Merge pull request #139 from cartsnitch/betty/revert-sha256-session-hash cartsnitch-cto[bot] 2026-04-04 19:25:23 +00:00
30e4c69ff6 fix(api): revert SHA-256 session token hashing — better-auth stores raw tokens Barcode Betty 2026-04-04 19:21:26 +00:00
a6bc2330e5 fix(api): hash session token with SHA-256 before DB lookup (#136) cartsnitch-cto[bot] 2026-04-04 19:06:30 +00:00
94c36a0b65 Merge pull request #133 from cartsnitch/fix/alembic-version-table-width cartsnitch-cto[bot] 2026-04-04 19:01:09 +00:00
89293d1811 fix(api): hash session token with SHA-256 before DB lookup Barcode Betty 2026-04-04 19:00:09 +00:00
ffeae96d17 fix: read __Secure- prefixed session cookie in API auth (#134) cartsnitch-cto[bot] 2026-04-04 18:48:30 +00:00
a54a57fbc4 fix(api): read __Secure- prefixed session cookie in auth Barcode Betty 2026-04-04 18:40:22 +00:00
8e359e0aff fix(api): widen alembic version_table column to 128 chars Pawla Abdul 2026-04-04 18:32:36 +00:00
617c32f4f1 Merge pull request #131 from cartsnitch/betty/fix-uat-users-table-bootstrap cartsnitch-cto[bot] 2026-04-04 17:34:32 +00:00
6e6e141d26 fix(api): bootstrap users table in migration 007 + harden create_all Barcode Betty 2026-04-04 17:10:29 +00:00
c36571863c fix(api): make alembic migrations idempotent for fresh databases (#129) cartsnitch-cto[bot] 2026-04-04 16:41:02 +00:00
c127fe2b2e fix(api): add fresh-DB guards to migrations 002, 005, and 006 Pawla Abdul 2026-04-04 16:39:27 +00:00
5c8fe9a62b fix(api): make alembic migrations idempotent for fresh databases Pawla Abdul 2026-04-04 16:18:32 +00:00
44202d645a Merge pull request #127 from cartsnitch/betty/fix-libpq5-dockerfile cartsnitch-cto[bot] 2026-04-04 15:52:33 +00:00

1 2 3