steve
bc8d4f9fe5
fix(github) bumped trivy to latest version
2026-03-28 23:29:00 -06:00
steve
aa7fefe497
ci: scan Docker image for CRITICAL/HIGH CVEs with Trivy
...
Runs aquasecurity/trivy-action after the build step and fails the
workflow if any CRITICAL or HIGH severity vulnerabilities are found,
blocking the push to Docker Hub.
2026-03-28 23:23:54 -06:00
steve
4c691ab31a
Merge pull request #24 from tmdinosaurcenter/dependabot/github_actions/docker/setup-buildx-action-4
...
Bump docker/setup-buildx-action from 2 to 4
2026-03-28 23:09:32 -06:00
steve
77c377ab51
Merge pull request #23 from tmdinosaurcenter/dependabot/github_actions/actions/checkout-6
...
Bump actions/checkout from 4 to 6
2026-03-28 23:09:24 -06:00
c1206a244c
Bump docker/setup-buildx-action from 2 to 4
...
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action ) from 2 to 4.
- [Release notes](https://github.com/docker/setup-buildx-action/releases )
- [Commits](https://github.com/docker/setup-buildx-action/compare/v2...v4 )
---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
dependency-version: '4'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-03-29 05:04:59 +00:00
8230ae1c1c
Bump actions/checkout from 4 to 6
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4 to 6.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v4...v6 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: '6'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-03-29 05:04:55 +00:00
c55037b37b
Bump docker/login-action from 2 to 4
...
Bumps [docker/login-action](https://github.com/docker/login-action ) from 2 to 4.
- [Release notes](https://github.com/docker/login-action/releases )
- [Commits](https://github.com/docker/login-action/compare/v2...v4 )
---
updated-dependencies:
- dependency-name: docker/login-action
dependency-version: '4'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2026-03-29 05:04:51 +00:00
steve
36f8a01999
ci: add Dependabot config and issue templates
...
Add weekly Dependabot updates for pip, Docker, and GitHub Actions.
Add issue templates for bug reports, feature requests, documentation,
and general feedback.
2026-03-28 23:04:13 -06:00
steve
c2b6c1b460
fix: add Bearer token authentication to ntfy notification
2026-03-09 23:47:01 -06:00
steve
e733e7b092
fix: enable verbose curl output for ntfy debugging
2026-03-09 23:41:46 -06:00
steve
a0e6042300
feat: add ntfy push notification on successful Docker Hub push
2026-03-09 23:16:54 -06:00
steve
1a0a1371bc
fix: correct marquee scroll speed and add code TODOs
...
- Fixed scrolling marquee to use a fixed px/s speed via JS instead of
a fixed duration, preventing it from speeding up as entries are added
- Added inline TODO comments throughout codebase to track known issues
(rate limiting, CSRF, unbounded queries, deprecated Flask decorator,
PII logging, schema versioning, Docker non-root user, etc.)
- Added todo-to-issue GitHub Action to auto-create Issues from TODOs on push to main
- Added .claude/ to .gitignore
2026-03-09 19:30:13 -06:00
2bbe30e1e0
ci: add Docker Hub push step to workflow
2025-04-04 14:07:11 -06:00
steve
5091518bd2
ci: update Docker image workflow
...
changed secrete to vars for DOCKER_USERNAME
2025-04-02 19:36:36 -06:00
steve
20dd611b70
ci: add Docker build GitHub Actions workflow
...
Added Docker secrets so hopefully it will run now.
2025-04-02 18:16:53 -06:00
cfcd301eb0
ci: remove Docker Hub push workflow
2025-04-02 09:44:59 -06:00
steve
dba4c21a5e
ci: add Docker image build workflow
2025-04-02 08:38:24 -06:00
steve
dependabot[bot]
Steve Dogiakos