CalvinBackup/shannon
1
0
Fork 0
mirror of https://github.com/KeygraphHQ/shannon.git synced 2026-05-22 00:37:04 +02:00
Code Issues Packages Projects Releases Wiki Activity
225 Commits 7 Branches 3 Tags
955eae5d657bc155e9c4e0c35f2d2caea3a99193
Commit Graph

5 Commits

Author SHA1 Message Date
ezl-keygraph 955eae5d65 fix: remove duplicate environment gate from merge-docker job 
Move DOCKERHUB_USERNAME from vars to secrets so merge-docker can access
credentials without its own environment scope. This eliminates the
redundant double approval since build-docker already gates on
release-publish.
 2026-03-18 15:58:45 +05:30
ezl-keygraph 12ce802770 fix: use native ARM64 runners for Docker multi-platform builds 
Replace QEMU emulation with parallel native builds using a matrix
strategy (ubuntu-latest for amd64, ubuntu-24.04-arm for arm64).
Each platform pushes by digest, then a merge job creates the
multi-arch manifest list before signing with cosign.
 2026-03-18 15:58:45 +05:30
ezl-keygraph 96732306a8 feat: mark GitHub release as latest during rollback 2026-03-18 15:58:45 +05:30
ezl-keygraph 181f24cfcc refactor: migrate to Turborepo + pnpm + Biome monorepo 
Restructure into apps/worker, apps/cli, packages/mcp-server with
Turborepo task orchestration, pnpm workspaces, Biome linting/formatting,
and tsdown CLI bundling.

Key changes:
- src/ -> apps/worker/src/, cli/ -> apps/cli/, mcp-server/ -> packages/mcp-server/
- prompts/ and configs/ moved into apps/worker/
- npm replaced with pnpm, package-lock.json replaced with pnpm-lock.yaml
- Dockerfile updated for pnpm-based builds
- CLI logs command rewritten with chokidar for cross-platform reliability
- Router health checking added for auto-detected router mode
- Centralized path resolution via apps/worker/src/paths.ts
 2026-03-18 15:58:45 +05:30
ezl-keygraph 9b1abd9ec0 feat: integrate npx CLI, CI/CD, and ephemeral worker architecture 
Bring in changes from shannon-npx: npx-distributable CLI package (cli/),
semantic-release CI/CD workflows, ephemeral per-scan worker containers,
TOML config support, setup wizard, and workspace management.

Preserves all shannon-only changes: security hardening (localhost-bound
ports, MCP env allowlist, path traversal guard), updated benchmarks
(XBEN 19/31/35/44), README assets, and prompt injection disclaimer.

Applies security hardening to cli/infra/compose.yml as well.
 2026-03-18 15:57:57 +05:30