vikingowl/marktvogt.de
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
165 Commits 1 Branch 0 Tags
1ba8f856b45ebc7cb41cd3627ff8243ba5d2492d
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
vikingowl 1ba8f856b4 fix(helm): add restricted PodSecurity settings to discovery CronJob 
Previous deploys emitted 4 warnings on the discovery-tick Pod template
against the restricted:latest policy. Today they are warnings; if the
namespace enforcement tightens, admission will silently drop the Pod.

Pod-level: runAsNonRoot, runAsUser/runAsGroup 100 (curlimages/curl's
built-in non-root UID), seccompProfile RuntimeDefault.
Container-level: allowPrivilegeEscalation false, capabilities drop ALL.
2026-04-18 08:26:40 +02:00
app
feat: implement full Flutter MVP app
2026-02-21 07:10:30 +01:00
backend
fix(helm): add restricted PodSecurity settings to discovery CronJob
2026-04-18 08:26:40 +02:00
planning
feat: add ICS calendar subscription to Phase 2 roadmap
2026-02-22 19:45:46 +01:00
web
feat(web): admin discovery review queue with accept/reject
2026-04-18 07:54:18 +02:00
.gitignore
chore: convert to GitLab monorepo
2026-04-07 02:53:03 +02:00
.gitlab-ci.yml
ci(deploy): wire AI_AGENT_DISCOVERY and DISCOVERY_TOKEN into helm upgrade
2026-04-18 08:17:06 +02:00
.pre-commit-config.yaml
fix: svelte-check needs web/.env; only fail on errors not warnings
2026-04-07 03:09:01 +02:00
CLAUDE.md
chore: sync CLAUDE.md with GitLab migration; add SOURCE_DATE_EPOCH to builds
2026-04-18 04:16:13 +02:00
Justfile
fix: svelte-check needs web/.env; only fail on errors not warnings
2026-04-07 03:09:01 +02:00
Description
No description provided
1.7 MiB
Languages
Go 60.3%
Svelte 20.3%
Dart 11.1%
TypeScript 5%
PLpgSQL 1.1%
Other 2.1%