Snider cf63e0d2f7 Secure SSH, fix CI auto-merge, and resolve merge conflicts ... This commit addresses the OWASP security audit by enforcing strict host key verification and resolves persistent CI issues. Security Changes: - Replaced StrictHostKeyChecking=accept-new with yes in pkg/container and devops. - Removed insecure host key verification from pkg/ansible. - Implemented synchronous host key discovery using ssh-keyscan during VM boot. - Updated Boot lifecycle to wait for host key verification. - Handled missing known_hosts file in pkg/ansible. - Refactored hardcoded SSH port to DefaultSSHPort constant. CI and Maintenance: - Fixed auto-merge.yml by inlining the script and adding repository context to 'gh' command, resolving the "not a git repository" error in CI. - Resolved merge conflicts in .github/workflows/auto-merge.yml with dev branch. - Added pkg/ansible/ssh_test.go for SSH client verification. - Fixed formatting in pkg/io/local/client.go to pass QA checks.		2026-02-05 03:40:28 +00:00
..
linuxkit	feat(container): add LinuxKit YAML templates with variable substitution	2026-01-28 18:59:45 +00:00
plugin	refactor(plugin): rename plugin files and update command structure	2026-01-31 11:39:19 +00:00
task/issue/258	feat(test): Add smart test detection (issue #258) (#263)	2026-02-04 09:11:37 +00:00
build.yaml	feat: wire release command, add tar.xz support, unified installers (#277)	2026-02-04 00:49:57 +00:00
ci.yaml	feat(ci): add core setup ci and dogfood CLI in workflows	2026-02-01 11:36:59 +00:00
release.yaml	Secure SSH, fix CI auto-merge, and resolve merge conflicts	2026-02-05 03:40:28 +00:00