Commit Graph

Select branches

Hide Pull Requests

barcode-betty/car-964-full

barcode-betty/car-964-gitea-registry-v2

barcode-betty/ghcr-to-gitea-registry

barcode-betty/gitea-registry

betty/car-1009-ghcr-gitea-migration

betty/car-550-lifespan-connection-pooling

betty/car-724-ci-fix

betty/car-724-migration

betty/car-724-migration-v2

betty/car-876-gitea-actions-receiptwitness

betty/car-964-gitea-registry-v2

carl/car-900-move-workflows-to-gitea

dev

main

temp-base

uat

#1

#10

#11

#12

#13

#14

#15

#16

#17

#2

#3

#4

#5

#6

#7

#8

#9

Mono Color

• 33b920bf2c Add .mcp.json main Chris Farhood 2026-05-25 21:46:45 +00:00
• 2089395699 Merge pull request 'fix(ci): migrate Docker registry from GHCR to Gitea' (#14) from barcode-betty/ghcr-to-gitea-registry into dev dev Savannah Savings 2026-05-24 18:51:46 +00:00
• 6180930f5d Merge pull request 'chore: promote dev to uat (CAR-1009)' (#16) from dev into uat uat Savannah Savings 2026-05-24 18:48:50 +00:00
• a197ab0530 {{.PullRequestTitle}} Savannah Savings 2026-05-24 18:48:28 +00:00
• da9e1e9af1 ci: migrate GHCR → Gitea registry, use REGISTRY_TOKEN betty/car-1009-ghcr-gitea-migration Barcode Betty 2026-05-24 18:39:33 +00:00
• 1cf7f92b6b fix(ci): migrate Docker registry from GHCR to Gitea barcode-betty/ghcr-to-gitea-registry Barcode Betty 2026-05-24 18:25:39 +00:00
• 0bd6b87ffd Merge pull request 'fix(ci): push Docker images to git.farh.net registry (CAR-964)' (#13) from barcode-betty/car-964-gitea-registry-v2 into dev Savannah Savings 2026-05-24 18:08:54 +00:00
• 703a279f97 fix(ci): push Docker images to git.farh.net registry (CAR-964) Co-Authored-By: Paperclip <noreply@paperclip.ing> barcode-betty/car-964-gitea-registry-v2 Flea Flicker 2026-05-23 16:07:51 +00:00
• 191e7fc03f fix(ci): update kustomize image refs from ghcr.io to git.farh.net betty/car-964-gitea-registry-v2 Flea Flicker 2026-05-23 15:53:40 +00:00
• 0d7d462892 ci: push Docker images to Gitea registry (git.farh.net) barcode-betty/gitea-registry Flea Flicker 2026-05-23 15:37:04 +00:00
• f0ec8a4530 Merge pull request 'promote: receiptwitness workflows gitea migration (CAR-900) dev → uat' (#9) from dev into uat Savannah Savings 2026-05-21 19:03:37 +00:00
• ef5102aad9 Merge pull request 'chore: move workflows from .github to .gitea (CAR-900)' (#8) from carl/car-900-move-workflows-to-gitea into dev barcode-betty/car-964-full Coupon Carl 2026-05-21 18:56:01 +00:00
• f63f6c613d chore: move workflows from .github to .gitea carl/car-900-move-workflows-to-gitea Savannah Savings 2026-05-21 18:54:46 +00:00
• 0202e575f6 Merge pull request 'chore: promote Gitea Actions migration to uat' (#7) from dev into uat Savannah Savings 2026-05-21 11:56:20 +00:00
• 377f8428c5 Merge pull request 'ci: convert GitHub Actions to Gitea Actions (ubuntu-latest)' (#6) from betty/car-876-gitea-actions-receiptwitness into dev Savannah Savings 2026-05-21 11:55:48 +00:00
• 340b974532 ci: convert GitHub Actions to Gitea Actions (ubuntu-latest) betty/car-876-gitea-actions-receiptwitness Flea Flicker 2026-05-21 04:13:14 +00:00
• 2fd2cdca71 feat: migrate receiptwitness to standalone repo with inlined common cartsnitch-engineer[bot] 2026-05-04 21:01:21 +00:00
• 20ea9e590c style: auto-fix ruff I001 import sorting in stub models betty/car-724-migration-v2 Chris Farhood 2026-05-04 19:06:59 +00:00
• e119f4d0ce fix: add missing relationship stubs to resolve SQLAlchemy mapper errors Chris Farhood 2026-05-04 18:36:22 +00:00
• fe0a7fac3e fix: strip PostgreSQL server_default from email_inbound_token for SQLite tests Chris Farhood 2026-05-04 18:04:49 +00:00
• 5363ba2fbf fix: address ruff E501 line-length violations Chris Farhood 2026-05-04 17:50:07 +00:00
• b07ec18a31 feat(api): implement lifespan with DB and Redis connection pooling betty/car-550-lifespan-connection-pooling CartSnitch Engineer Bot 2026-04-14 12:58:16 +00:00
• 8128b3a76f chore: promote uat to main — receiptwitness migration CI fixes savannah-savings-cto[bot] 2026-04-19 14:02:18 +00:00
• f159d50f7c Merge pull request #4 from cartsnitch/dev cartsnitch-ceo[bot] 2026-04-19 13:25:40 +00:00
• c4880d3553 Merge pull request #3 from cartsnitch/betty/car-724-ci-fix cartsnitch-ceo[bot] 2026-04-19 13:25:16 +00:00
• 873f53b9fc fix: resolve CI failures — SQLite incompatibility and ruff lint errors betty/car-724-ci-fix Barcode Betty 2026-04-19 13:06:47 +00:00
• f47da487da feat: migrate receiptwitness to standalone repo with inlined common temp-base betty/car-724-migration Barcode Betty 2026-04-19 12:18:11 +00:00
• bf7cabc9d8 release: fix HIGH-severity CVEs in receiptwitness image (UAT+Security PASS) cartsnitch-ceo[bot] 2026-04-19 02:40:14 +00:00
• 78b3a71450 Merge pull request #227 from cartsnitch/fix/car-709-receiptwitness-grype-cves cartsnitch-cto[bot] 2026-04-19 02:17:54 +00:00
• 3216e6a1c2 fix: resolve HIGH-severity CVEs in receiptwitness image Test User 2026-04-19 00:48:02 +00:00
• 56b1ff9a36 Merge pull request #220 from cartsnitch/fix/car-656-deploy-commit-guard cartsnitch-cto[bot] 2026-04-19 00:03:32 +00:00
• b660336897 Merge pull request #215 from cartsnitch/fix/car-663-bcrypt-cost-factor cartsnitch-cto[bot] 2026-04-19 00:02:28 +00:00
• 93a94e9777 Merge pull request #214 from cartsnitch/fix/car-620-grype-ignore-and-cache-bust cartsnitch-cto[bot] 2026-04-18 03:55:06 +00:00
• 1bb669f3ca fix: add Grype CVE ignores and cache-bust Debian apt-get upgrade layers Barcode Betty 2026-04-15 03:47:13 +00:00
• 82978f072b fix(deploy): guard commit step against no-op changes Barcode Betty 2026-04-15 10:37:14 +00:00
• 9ba745b5a9 fix: increase bcrypt cost factor from 10 to 12 Barcode Betty 2026-04-15 03:55:05 +00:00
• c13e640864 fix: add Grype CVE ignores and cache-bust Debian apt-get upgrade layers Barcode Betty 2026-04-15 03:47:13 +00:00
• c7b7494151 fix: e2e route mocking and color contrast accessibility (#221) cartsnitch-engineer[bot] 2026-04-15 21:49:55 +00:00
• ffdc26cce5 Merge pull request #216 from cartsnitch/fix/car-665-eslint-unused-vars cartsnitch-cto[bot] 2026-04-15 03:59:45 +00:00
• 2e96e8f0a7 fix: remove unused navigate variable from Register.tsx Barcode Betty 2026-04-15 03:57:01 +00:00
• 66279716ba feat(auth): enable email verification with Resend (#173) cartsnitch-ceo[bot] 2026-04-15 03:32:23 +00:00
• 15ab4ed38c feat(api): implement Redis cache get/set/delete with TTL support (#195) cartsnitch-ceo[bot] 2026-04-15 03:32:11 +00:00
• fbd77a9434 fix: remove VITE_MOCK_AUTH bypass from production code (#193) cartsnitch-ceo[bot] 2026-04-15 03:32:02 +00:00
• fef5e86645 feat: Redis-backed rate limiting with stricter auth limits (#194) cartsnitch-ceo[bot] 2026-04-15 03:31:42 +00:00
• cf39ed1dcd fix: update vite to 6.4.2 to patch high-severity vulnerabilities (#191) cartsnitch-ceo[bot] 2026-04-15 03:31:34 +00:00
• 71e2978f52 Enable Better-Auth email verification with Resend Barcode Betty 2026-04-14 13:18:13 +00:00
• 4945ac71ae feat(auth): enable email verification with Resend Barcode Betty 2026-04-15 03:30:44 +00:00
• 5308923136 feat(api): add input validation on public endpoints (#171) cartsnitch-ceo[bot] 2026-04-15 03:26:38 +00:00
• bdaca519f6 feat: implement audit logging middleware for sensitive API operations (#183) cartsnitch-ceo[bot] 2026-04-15 03:23:37 +00:00
• 90e23ac592 fix: upgrade bcrypt and filter unfixed CVEs in Grype scans (#207) cartsnitch-cto[bot] 2026-04-15 03:18:13 +00:00
• c03e599ae3 feat: Redis-backed rate limiting with stricter auth limits Barcode Betty 2026-04-15 02:10:02 +00:00
• 908ebde4c6 fix: replace N+1 UPC query with SQL containment in normalization (#175) cartsnitch-cto[bot] 2026-04-15 02:00:04 +00:00
• a0eef27944 fix: upgrade bcrypt and filter unfixed CVEs in Grype scans Paperclip 2026-04-15 00:51:53 +00:00
• bb50ddc85d Merge pull request #206 from cartsnitch/fix/car-620-grype-only-fixed cartsnitch-cto[bot] 2026-04-15 00:46:10 +00:00
• bd2e8feff6 fix: add only-fixed flag to Grype scans to skip unfixable CVEs Hugh Hackman 2026-04-15 00:28:56 +00:00
• 1e8223caeb fix: remediate high-severity CVEs in Docker images (#204) cartsnitch-cto[bot] 2026-04-14 23:57:40 +00:00
• e1d77d7789 fix: remediate high-severity CVEs in Docker images Paperclip 2026-04-14 23:51:42 +00:00
• 8592701382 feat(ci): add Grype image vulnerability scanning to all Docker builds cartsnitch-cto[bot] 2026-04-14 23:25:17 +00:00
• 17447fb5e1 feat(ci): add Grype image vulnerability scanning to all Docker builds Paperclip 2026-04-14 23:13:47 +00:00
• b274fdff8e Merge pull request #198 from cartsnitch/fix/car-608-auth-health-check cartsnitch-cto[bot] 2026-04-14 16:39:18 +00:00
• a64dc7ab5e fix: restore DB connectivity check to auth health endpoint Paperclip 2026-04-14 16:35:24 +00:00
• 0fb99e6c16 Merge pull request #187 from cartsnitch/fix/auth-config-validation cartsnitch-cto[bot] 2026-04-14 16:19:13 +00:00
• a53daddb9a fix: update vite to resolve high-severity audit vulnerability Barcode Betty 2026-04-14 16:09:48 +00:00
• 3351d74058 fix: add startup validation to auth service config Paperclip 2026-04-14 16:03:37 +00:00
• 1ce5d738d1 feat(api): implement Redis cache get/set/delete with TTL support Paperclip 2026-04-14 16:00:35 +00:00
• e69b3c47be fix: update vite to resolve high-severity npm audit vulnerabilities Paperclip 2026-04-14 15:56:33 +00:00
• 4c217757c3 feat: Redis-backed rate limiting with stricter auth limits Paperclip 2026-04-14 15:46:52 +00:00
• 121dc5724e fix: remove VITE_MOCK_AUTH bypass from production code Paperclip 2026-04-14 15:37:24 +00:00
• ee45400c7c fix: update vite to 6.4.2 to patch high-severity vulnerabilities Paperclip 2026-04-14 14:43:46 +00:00
• 1aff898545 fix: update vite to 6.4.2 to patch audit vulnerabilities Paperclip 2026-04-14 14:31:02 +00:00
• adfa34f2c2 Merge pull request #186 from cartsnitch/fix/receiptwitness-config-validation cartsnitch-cto[bot] 2026-04-14 14:07:48 +00:00
• ade03fdd1c fix: add startup validation to ReceiptWitness config Paperclip 2026-04-14 13:52:24 +00:00
• 5825174f0d Merge pull request #179 from cartsnitch/feature/cart-550-api-lifespan-pooling cartsnitch-cto[bot] 2026-04-14 13:48:17 +00:00
• 6b75d4906f feat: implement audit logging middleware for sensitive API operations Barcode Betty 2026-04-14 13:41:55 +00:00
• 68e6be1985 feat(api): implement FastAPI lifespan with connection pooling Barcode Betty 2026-04-14 13:12:46 +00:00
• c2a0263ddd fix(security): use SHA-256 hash for rate limit key instead of token suffix (#169) cartsnitch-cto[bot] 2026-04-14 12:45:15 +00:00
• 24f0dd0e67 fix: replace N+1 UPC query with SQL containment in normalization CartSnitch Engineer Bot 2026-04-14 11:59:28 +00:00
• da96ec7dc4 Merge pull request #172 from cartsnitch/fix/cors-security-headers cartsnitch-cto[bot] 2026-04-14 11:57:52 +00:00
• 37798251be fix: restrict CORS to explicit methods and add security headers CartSnitch Engineer Bot 2026-04-14 11:49:02 +00:00
• cfea2586cb feat(api): add input validation on public endpoints CartSnitch Engineer Bot 2026-04-14 11:45:53 +00:00
• bc5e03e7a0 fix(security): use SHA-256 hash for rate limit key instead of token suffix CartSnitch Engineer Bot 2026-04-14 11:36:17 +00:00
• ee97f64db6 Merge pull request #156 from cartsnitch/fix/hardcoded-secrets cartsnitch-cto[bot] 2026-04-14 11:31:40 +00:00
• 538a5f4f4d fix: remove hardcoded default secrets from API config CartSnitch Engineer Bot 2026-04-14 11:11:23 +00:00
• 4485bf1d5e Merge pull request #148 from cartsnitch/betty/fix-alembic-create-all-commit cartsnitch-cto[bot] 2026-04-04 21:57:54 +00:00
• f7bf767da5 Merge pull request #147 from cartsnitch/betty/car-517-domain-tables-migration cartsnitch-cto[bot] 2026-04-04 21:36:48 +00:00
• 2f1833e90d fix(api): commit after create_all in alembic env.py Barcode Betty 2026-04-04 21:36:05 +00:00
• b2725fd512 fix(api): create domain tables migration + fix create_all commit cartsnitch-engineer[bot] 2026-04-04 21:22:24 +00:00
• 5532b43e38 Merge pull request #145 from cartsnitch/betty/fix-alembic-model-import cartsnitch-cto[bot] 2026-04-04 21:20:11 +00:00
• 0be7ccd4b4 fix(api): import Base from models package to register all ORM tables Barcode Betty 2026-04-04 21:12:13 +00:00
• 6d37cecdba Merge pull request #143 from cartsnitch/betty/fix-session-cookie-parsing cartsnitch-cto[bot] 2026-04-04 20:39:09 +00:00
• 3745f5be69 fix(auth): parse compound Better-Auth cookie/bearer token to extract token part Barcode Betty 2026-04-04 20:32:43 +00:00
• abec954320 Merge pull request #141 from cartsnitch/betty/fix-api-database-url-fallback cartsnitch-cto[bot] 2026-04-04 20:05:47 +00:00
• ec9deb515b fix(api): accept DATABASE_URL as fallback for shared DB with auth service Barcode Betty 2026-04-04 19:52:24 +00:00
• cfed9b0482 Merge pull request #139 from cartsnitch/betty/revert-sha256-session-hash cartsnitch-cto[bot] 2026-04-04 19:25:23 +00:00
• 25edd8d5e3 fix(api): revert SHA-256 session token hashing — better-auth stores raw tokens Barcode Betty 2026-04-04 19:21:26 +00:00
• bd3cb3b9ab fix(api): hash session token with SHA-256 before DB lookup (#136) cartsnitch-cto[bot] 2026-04-04 19:06:30 +00:00
• 3bedc651c6 Merge pull request #133 from cartsnitch/fix/alembic-version-table-width cartsnitch-cto[bot] 2026-04-04 19:01:09 +00:00
• 138033be9b fix(api): hash session token with SHA-256 before DB lookup Barcode Betty 2026-04-04 19:00:09 +00:00
• 8ddefe82e4 fix: read __Secure- prefixed session cookie in API auth (#134) cartsnitch-cto[bot] 2026-04-04 18:48:30 +00:00
• def921f115 fix(api): read __Secure- prefixed session cookie in auth Barcode Betty 2026-04-04 18:40:22 +00:00