core/go
8
0
Fork 0
generated from lthn/LEM
Code Issues 2 Pull requests 1 Projects Releases Packages Wiki Activity Actions
go/.github
History
Snider 4ef698cbe3 Secure SSH, fix CI auto-merge, and resolve merge conflicts 
This commit addresses the OWASP security audit by enforcing strict host key
verification and resolves persistent CI issues.

Security Changes:
- Replaced StrictHostKeyChecking=accept-new with yes in pkg/container and devops.
- Removed insecure host key verification from pkg/ansible.
- Implemented synchronous host key discovery using ssh-keyscan during VM boot.
- Updated Boot lifecycle to wait for host key verification.
- Handled missing known_hosts file in pkg/ansible.
- Refactored hardcoded SSH port to DefaultSSHPort constant.

CI and Maintenance:
- Fixed auto-merge.yml by inlining the script and adding repository context
  to 'gh' command, resolving the "not a git repository" error in CI.
- Resolved merge conflicts in .github/workflows/auto-merge.yml with dev branch.
- Added pkg/ansible/ssh_test.go for SSH client verification.
- Fixed formatting in pkg/io/local/client.go to pass QA checks.
2026-02-05 03:40:28 +00:00
..
ISSUE_TEMPLATE feat(php): add --json and --sarif flags to QA commands (#69) 2026-02-01 06:32:35 +00:00
workflows Secure SSH, fix CI auto-merge, and resolve merge conflicts 2026-02-05 03:40:28 +00:00
dependabot.yml ci: add dependabot configuration 2026-01-31 20:03:46 +00:00