Skip to content

Propagate Development into Beta-Release#1016

Merged
Wikid82 merged 293 commits into
feature/beta-releasefrom
development
May 14, 2026
Merged

Propagate Development into Beta-Release#1016
Wikid82 merged 293 commits into
feature/beta-releasefrom
development

Conversation

@Wikid82
Copy link
Copy Markdown
Owner

@Wikid82 Wikid82 commented May 14, 2026

No description provided.

actions-user and others added 30 commits April 27, 2026 06:14
@actions-user
feat(muzzle): implement HTTP allowlist filter for Docker socket proxy…
103fd37 
… traffic
@actions-user
feat(leash): implement Leash package for reverse WebSocket tunnel and…
8b6d8fe 
… session management
@Wikid82
fix: update renovate configuration to remove feature branch pattern a…
e66146e 
…nd add golangci-lint tracking
@Wikid82
fix: remove downstream propagation logic for development branch in wo…
48df8c8 
…rkflow
@actions-user
chore: fix Renovate lookup failure for golang-jwt/jwt v5
453cf5f
@Wikid82
Merge branch 'main' into nightly
727a865
@actions-user
fix(logging): sanitize log output for UUIDs and HTTP methods in hecat…
f5cfe46 
…e and orthrus components
@actions-user
fix: update lefthook pre-commit commands to use staged files instead …
4c1e402 
…of all files
@actions-user
fix: enhance Renovate configuration for Go modules with updated sourc…
239d9d8 
…e URLs
@actions-user
fix(logging): sanitize target address in port forward error logs to p…
4a298a0 
…revent log injection

Co-authored-by: Copilot <copilot@github.com>
@Wikid82
Merge pull request #984 from Wikid82/nightly
dc96507 
Weekly: Promote nightly to main (2026-04-27)
@renovate
fix(deps): update non-major-updates
73398b1
@Wikid82
Merge pull request #985 from Wikid82/renovate/non-major-updates
c3b8327 
fix(deps): update non-major-updates
@Wikid82
Merge pull request #986 from Wikid82/main
a821c61 
Propagate changes from main into development
@actions-user
fix(logging): sanitize error message in Docker proxy stream logs to p…
8c4e97a 
…revent log injection

Co-authored-by: Copilot <copilot@github.com>
@actions-user
fix(deps): update bytedance/sonic and go-isatty versions; upgrade mod…
981fc5d 
…ernc.org/sqlite
@actions-user
fix(deps): update es-module-lexer to version 2.1.0 and postcss to ver…
23f2c73 
…sion 8.5.12
@Wikid82
Merge branch 'development' into feature/hecate
d2db0dc
@actions-user
fix(dependencies): add bytedance/sonic v1.15.1 to go.work.sum
7648d56
@actions-user
docs: archive implement remediation plan for Telegram notification pr…
454d166 
…ovider test failures
@actions-user
doc: add implementation spec for Hecate
6bcd4c6
@renovate
chore(deps): update non-major-updates
dc2f841
@actions-user
fix(handlers): handle not found errors for tunnel operations in Hecat…
950e82e 
…eHandler
@actions-user
feat(tailscale): add SetBaseURL method to TailscaleClient for test ov…
7f3a3b2 
…errides
@actions-user
feat(manager): add provider name to tunnel state in RegisterProvider …
bd99836 
…method
@actions-user
feat(tests): enhance Hecate service tests with mock providers and cov…
fdba108 
…erage cases
@Wikid82
Merge pull request #987 from Wikid82/renovate/non-major-updates
4fa043f 
chore(deps): update non-major-updates
@actions-user
fix(lint): update frontend linting commands to use local binaries
5650e7e
@actions-user
feat(hecate): implement tunnel management API including create, updat…
0a87fd2 
…e, delete, and status retrieval
@actions-user
feat(orthrus): add unit tests for agent management API including list…
711bbb4 
…, provision, get, delete, and revoke operations
Wikid82 and others added 22 commits May 12, 2026 21:03
@Wikid82
Merge pull request #1012 from Wikid82/renovate/non-major-updates
5e748c4 
fix(deps): update non-major-updates
@actions-user
fix(deps): remove unused dependencies and update electron-to-chromium…
b11784d 
… and node-releases versions
@actions-user
fix(deps): update @csstools/css-calc, @csstools/css-color-parser, and…
ec98a12 
… @csstools/css-syntax-patches-for-csstree to latest versions
@actions-user
fix: remove duplicate entries for @typescript-eslint packages in pack…
a1eedab 
…age.json
@actions-user
fix: add comment to clarify regex validation for zones in CredentialForm
ce4801f
@actions-user
fix: move isInUse and isDeletable functions to certificateUtils for b…
5a4f100 
…etter organization
@actions-user
fix: replace label elements with span for improved accessibility in A…
b3b49ab 
…ccessListForm, AccessListSelector, and CSPBuilder components
@actions-user
fix: mark skipped tests for onError and onClose callbacks in logs-web…
0d9aa5c 
…socket test
@actions-user
fix: add Close method to SecurityHandler for proper test cleanup
efa986f
@actions-user
fix: update katex version to 0.16.46 in package-lock.json
6b4c5d5
@actions-user
fix: resolve all blocking CI failures across frontend and backend
badad1a 
Frontend ESLint was blocked by three root causes: duplicate
TypeScript devDependency declarations in package.json, a
react-refresh violation from utility functions co-located with
components in CertificateList, and five form label associations
on non-labelable elements. Two disabled tests using .skip() were
also replaced with .todo() as required by the vitest/prefer-todo
rule.

Backend tests were failing due to two independent root causes.
First, parallel execution of the security handler test suite
caused SQLITE_BUSY errors because background audit goroutines
were not being cleaned up between tests. This was resolved by
adding an exported Close() method to SecurityHandler and
registering cleanup at all 14 call sites, combined with
switching the audit test database from a file-based WAL SQLite
to an in-memory instance. Second, the Cloudflare provider
TestStart_CapturesStdoutOutput test had a race condition where
the ring buffer was closed before scanner goroutines could write
output; this was fixed using a sync.WaitGroup to gate buffer
closure on scanner completion.

All CI jobs now pass locally: 0 ESLint errors, 0 TypeScript
errors, 481 frontend tests at 89.3% coverage, 7395 backend
tests at 88.5% coverage, and 5/5 race-detector passes on the
Cloudflare provider.
@actions-user
fix: update dependencies to latest versions in package-lock.json
aacfc59
@actions-user
fix: update vite version to 8.0.13 in package.json and package-lock.json
c474d44
@renovate
fix(deps): update non-major-updates
eb2582d
@Wikid82
fix: downgrade vite version to 8.0.12 in package.json and package-loc…
9e26a73 
…k.json
@Wikid82
Merge branch 'development' into renovate/non-major-updates
48c870e
@Wikid82
fix: update integrity hash for vite version 8.0.12 in package-lock.json
42fafe6
@Wikid82
Merge branch 'development' into renovate/non-major-updates
aae5e66
@Wikid82
Merge pull request #1013 from Wikid82/renovate/non-major-updates
e542025 
fix(deps): update non-major-updates
@renovate
fix(deps): update non-major-updates
721e45f
@Wikid82
Merge pull request #1014 from Wikid82/renovate/non-major-updates
b9f44c5 
fix(deps): update non-major-updates
@actions-user
fix: update @rolldown/pluginutils to version 1.0.1 in package-lock.json
8536dde
@Wikid82 Wikid82 marked this pull request as ready for review May 14, 2026 18:52
Copilot AI review requested due to automatic review settings May 14, 2026 18:52
Copilot AI reviewed May 14, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Copilot wasn't able to review this pull request because it exceeds the maximum number of lines (20,000). Try reducing the number of changed lines and requesting a review from Copilot again.

@github-advanced-security
Copy link
Copy Markdown
Contributor

github-advanced-security AI commented May 14, 2026

You are seeing this message because GitHub Code Scanning has recently been set up for this repository, or this pull request contains the workflow file for the Code Scanning tool.

What Enabling Code Scanning Means:

  • The 'Security' tab will display more code scanning analysis results (e.g., for the default branch).
  • Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results.
  • You will be able to see the analysis results for the pull request's branch on this overview once the scans have completed and the checks have passed.

For more information about GitHub Code Scanning, check out the documentation.

@actions-user
fix: add npm fetch retry flags to guard against transient registry er…
ba60a06 
…rors

The frontend builder stage failed in CI with ECONNRESET when fetching
the npm package from registry.npmjs.org. The apk upgrade completed
successfully; only the npm self-upgrade network call was affected.

Added --fetch-retries=5 and --fetch-retry-mintimeout=10000 to the
npm install -g command so transient registry connection resets are
retried automatically before the build aborts, eliminating the need
for manual CI re-runs on flaky network conditions.
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 14, 2026

✅ Supply Chain Verification Results

PASSED

📦 SBOM Summary

  • Components: 1487

🔍 Vulnerability Scan

Severity Count
🔴 Critical 0
🟠 High 0
🟡 Medium 4
🟢 Low 2
Total 6

📎 Artifacts

  • SBOM (CycloneDX JSON) and Grype results available in workflow artifacts

Generated by Supply Chain Verification workflow • View Details

@codecov
Copy link
Copy Markdown

codecov Bot commented May 14, 2026

Codecov Report

❌ Patch coverage is 86.85369% with 239 lines in your changes missing coverage. Please review.

Files with missing lines Patch % Lines
backend/internal/api/handlers/hecate_handler.go 84.46% 33 Missing and 6 partials ⚠️
backend/internal/hecate/manager.go 84.44% 28 Missing ⚠️
...d/internal/hecate/providers/cloudflare/provider.go 83.62% 13 Missing and 6 partials ⚠️
...d/internal/hecate/providers/zerotier/api_client.go 80.55% 7 Missing and 7 partials ⚠️
backend/internal/orthrus/ca.go 84.26% 7 Missing and 7 partials ⚠️
backend/internal/orthrus/session.go 78.68% 9 Missing and 4 partials ⚠️
...nd/internal/hecate/providers/netbird/api_client.go 87.01% 5 Missing and 5 partials ⚠️
.../internal/hecate/providers/tailscale/api_client.go 76.74% 6 Missing and 4 partials ⚠️
backend/internal/services/hecate_service.go 84.61% 5 Missing and 5 partials ⚠️
backend/internal/services/orthrus_service.go 93.19% 5 Missing and 5 partials ⚠️
... and 16 more

📢 Thoughts on this report? Let us know!

@Wikid82 Wikid82 merged commit bb4b439 into feature/beta-release May 14, 2026
42 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@Wikid82 @github-advanced-security @actions-user