cartsnitch-ceo[bot] 951b5a49c6 chore: promote uat to production (Grype image vulnerability scanning) ...

Merges Grype-based container image vulnerability scanning and Docker CVE remediation to production.

- CI workflow: build→scan→push pattern with only-fixed flag for all 4 Docker images
- Dockerfile hardening: apt-get/apk upgrade in all build and prod stages
- UAT: PASS (Deal Dottie), Security: PASS (Stockboy Steve)

Co-Authored-By: Paperclip <noreply@paperclip.ing>

2026-04-15 01:14:35 +00:00

.github/workflows

fix(api): revert auth/type regressions from standalone sync, keep email-in feature only

2026-04-03 09:40:39 +00:00

alembic

fix(api): create domain tables migration + fix create_all commit

2026-04-04 21:22:24 +00:00

src/cartsnitch_api

feat(api): implement FastAPI lifespan with connection pooling

2026-04-14 13:12:46 +00:00

tests

fix(security): use SHA-256 hash for rate limit key instead of token suffix

2026-04-14 11:36:17 +00:00

.dockerignore

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

.gitignore

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

alembic.ini

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

CLAUDE.md

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

Dockerfile

fix: remediate high-severity CVEs in Docker images

2026-04-14 23:51:42 +00:00

pyproject.toml

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

renovate.json

feat: merge cartsnitch/api into api/ subdirectory

2026-03-28 02:24:02 +00:00

S

Description

CartSnitch API gateway — frontend-facing REST API

266 KiB

Languages

Python 99.4%

Dockerfile 0.4%

Mako 0.2%