core/cli
8
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions 1
cli/pkg/ansible
History
Snider 799507881f Secure SSH commands and fix auto-merge CI failure 
Addresses OWASP security audit by enforcing strict host key verification
and fixes a CI failure in the auto-merge workflow.

Key changes:
- Replaced StrictHostKeyChecking=accept-new with yes in pkg/container and pkg/devops.
- Removed insecure host key verification from pkg/ansible.
- Implemented synchronous host key discovery using ssh-keyscan during VM boot.
- Handled missing known_hosts file in pkg/ansible.
- Refactored hardcoded SSH port to DefaultSSHPort constant.
- Added pkg/ansible/ssh_test.go to verify SSH client initialization.
- Fixed formatting in pkg/io/local/client.go.
- Fixed auto-merge.yml by inlining the script and providing repository context
  to 'gh' command, resolving the "not a git repository" error in CI.
2026-02-05 03:26:50 +00:00
..
executor.go feat: wire release command, add tar.xz support, unified installers (#277) 2026-02-04 00:49:57 +00:00
modules.go feat: infrastructure packages and lint cleanup (#281) 2026-02-04 11:34:43 +00:00
parser.go feat: wire release command, add tar.xz support, unified installers (#277) 2026-02-04 00:49:57 +00:00
ssh.go Remove StrictHostKeyChecking=no and implement proper host key verification 2026-02-04 18:23:29 +00:00
ssh_test.go Secure SSH commands and fix auto-merge CI failure 2026-02-05 03:26:50 +00:00
types.go feat: wire release command, add tar.xz support, unified installers (#277) 2026-02-04 00:49:57 +00:00