cs_betty/cartsnitch-fork-test

forked from cartsnitch/cartsnitch

T

cartsnitch-ceo[bot] c715c0e47a chore: promote uat to production (Grype image vulnerability scanning)

Merges Grype-based container image vulnerability scanning and Docker CVE remediation to production.

- CI workflow: build→scan→push pattern with only-fixed flag for all 4 Docker images
- Dockerfile hardening: apt-get/apk upgrade in all build and prod stages
- UAT: PASS (Deal Dottie), Security: PASS (Stockboy Steve)

Co-Authored-By: Paperclip <noreply@paperclip.ing>

2026-04-15 01:14:35 +00:00

.github/workflows

fix: add only-fixed flag to Grype scans to skip unfixable CVEs

2026-04-15 00:28:56 +00:00

fix: remediate high-severity CVEs in Docker images

2026-04-14 23:51:42 +00:00

fix: remediate high-severity CVEs in Docker images

2026-04-14 23:51:42 +00:00

cartsnitch @ a53daddb9a

fix: restore DB connectivity check to auth health endpoint

2026-04-14 16:35:24 +00:00

fix(api): escape percent signs in alembic database URL for configparser

2026-04-04 06:31:48 +00:00

content/marketing

Add shrinkflation consumer FAQ for April 1 series launch

2026-03-28 14:54:32 +00:00

docs: add UAT runbook v1

2026-03-30 20:20:07 +00:00

fix(e2e): correct smoke test heading assertion to match Login page

2026-03-31 18:15:07 +00:00

feat(ci): add Lighthouse CI performance checks (#85 )

2026-03-31 15:45:22 +00:00

fix: remediate high-severity CVEs in Docker images

2026-04-14 23:51:42 +00:00

feat(scripts): add dev environment seed script and K8s Job (#99 )

2026-04-01 19:51:45 +00:00

fix: move email-in-address endpoint from /auth to /api/v1 prefix

2026-04-03 11:44:31 +00:00

.dockerignore

feat: add multi-stage Dockerfile for PWA

2026-03-18 13:26:57 +00:00

.gitignore

feat: migrate authentication to Better-Auth (Phase 1)

2026-03-28 04:46:10 +00:00

cart608-auth-signin-fail.png

fix: restore DB connectivity check to auth health endpoint

2026-04-14 16:35:24 +00:00

CLAUDE.md

feat: migrate authentication to Better-Auth (Phase 1)

2026-03-28 04:46:10 +00:00

Dockerfile

fix: remediate high-severity CVEs in Docker images

2026-04-14 23:51:42 +00:00

eslint.config.js

feat: add core PWA screens (auth, dashboard, purchases, products, alerts, settings)

2026-03-17 12:24:31 +00:00

index.html

feat: add core PWA screens (auth, dashboard, purchases, products, alerts, settings)

2026-03-17 12:24:31 +00:00

lighthouserc.json

fix(ci): disable FullPageScreenshot gatherer to prevent Chrome crash

2026-03-31 21:58:30 +00:00

nginx.conf

fix: restrict CORS to explicit methods and add security headers

2026-04-14 11:49:02 +00:00

package-lock.json

fix: update vite to resolve high-severity audit vulnerability

2026-04-14 16:09:48 +00:00

package.json

fix(deps): resolve npm audit vulnerabilities (brace-expansion, lodash) (#108 )

2026-04-03 13:23:20 +00:00

playwright.config.ts

feat(e2e): add J1 and J8 journey tests

2026-03-31 16:49:36 +00:00

README.md

test

2026-03-30 00:50:51 +00:00

renovate.json

feat: add Renovate dependency update config

2026-03-18 18:21:31 +00:00

tsconfig.app.json

feat: add core PWA screens (auth, dashboard, purchases, products, alerts, settings)

2026-03-17 12:24:31 +00:00

tsconfig.json

feat: add core PWA screens (auth, dashboard, purchases, products, alerts, settings)

2026-03-17 12:24:31 +00:00

tsconfig.node.json

feat: add core PWA screens (auth, dashboard, purchases, products, alerts, settings)

2026-03-17 12:24:31 +00:00

vite.config.ts

feat: add core PWA screens (auth, dashboard, purchases, products, alerts, settings)

2026-03-17 12:24:31 +00:00

vitest.config.ts

fix(ci): exclude e2e tests from vitest

2026-03-30 19:49:23 +00:00

README.md

CartSnitch

Languages

Python 85.2%

TypeScript 13.5%

Shell 0.5%

Dockerfile 0.5%

Mako 0.1%