core/cli
8
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions 1
cli/.github
History
Snider 799507881f Secure SSH commands and fix auto-merge CI failure 
Addresses OWASP security audit by enforcing strict host key verification
and fixes a CI failure in the auto-merge workflow.

Key changes:
- Replaced StrictHostKeyChecking=accept-new with yes in pkg/container and pkg/devops.
- Removed insecure host key verification from pkg/ansible.
- Implemented synchronous host key discovery using ssh-keyscan during VM boot.
- Handled missing known_hosts file in pkg/ansible.
- Refactored hardcoded SSH port to DefaultSSHPort constant.
- Added pkg/ansible/ssh_test.go to verify SSH client initialization.
- Fixed formatting in pkg/io/local/client.go.
- Fixed auto-merge.yml by inlining the script and providing repository context
  to 'gh' command, resolving the "not a git repository" error in CI.
2026-02-05 03:26:50 +00:00
..
ISSUE_TEMPLATE feat(php): add --json and --sarif flags to QA commands (#69) 2026-02-01 06:32:35 +00:00
workflows Secure SSH commands and fix auto-merge CI failure 2026-02-05 03:26:50 +00:00
dependabot.yml ci: add dependabot configuration 2026-01-31 20:03:46 +00:00