bluejay/bluejay-infra
1
0
Fork 0
Code Issues Pull Requests 15 Actions Packages Projects Releases Wiki Activity
707 Commits 66 Branches 0 Tags
19e8d6be71f2c0c5358d9586557b8f74ada774e5
Commit Graph

707 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andrew Stoltz
19e8d6be71 Deploy IRC admin issuer fix image 2026-06-19 21:03:49 -05:00
Andrew Stoltz
56f73d68b9 Deploy IRC admin public auth route 2026-06-19 20:54:21 -05:00
Andrew Stoltz
4899ba9267 deploy(irc): enable readonly RPC log subscription 2026-06-19 19:48:10 -05:00
Andrew Stoltz
d0fe8bb3d1 deploy(irc): bump web for log subscription 2026-06-19 19:35:54 -05:00
Andrew Stoltz
737bbba433 fix(ttsreader): keep align model cache writable 2026-06-19 19:12:38 -05:00
Andrew Stoltz
c8c2cb81cf deploy(ttsreader): restore alignment sidecar 2026-06-19 19:09:32 -05:00
Andrew Stoltz
fcfa58d18e deploy(ttsreader): restore GX10 live TTS sidecars 2026-06-19 18:51:20 -05:00
Andrew Stoltz
77127d8ae0 deploy(irc): fc-irc-web -> v20260619-irc-r1rpc-d1616c4 (adds R1 mutating ops on top of read RPC; mutation gated server-side by flowercore-readonly rpc-class) 2026-06-19 18:48:21 -05:00
Robot
2627fb2cd0 deploy(devicemgmt): bump GX10 web to status readiness fix 2026-06-19 18:31:49 -05:00
Andrew Stoltz
251fc15143 deploy(irc): define FlowerCore readonly RPC class 2026-06-19 18:26:01 -05:00
Andrew Stoltz
ab41509f81 deploy(irc): inject hashed RPC password 2026-06-19 18:24:38 -05:00
Andrew Stoltz
416ff3e8a7 deploy(irc): use simple RPC username 2026-06-19 18:21:15 -05:00
Andrew Stoltz
fa49890b2b deploy(irc): allow internal RPC client range 2026-06-19 18:19:38 -05:00
Andrew Stoltz
6de33d5c20 deploy(irc): roll sanitized RPC credential 2026-06-19 18:17:03 -05:00
Andrew Stoltz
466bcaf720 deploy(irc): roll UnrealIRCd RPC config 2026-06-19 17:57:46 -05:00
Andrew Stoltz
6c11cbf21e deploy(irc): allow GX10 node RPC source 2026-06-19 17:56:44 -05:00
Andrew Stoltz
2cc0705e98 deploy(irc): roll web RPC TLS image 2026-06-19 17:55:33 -05:00
Andrew Stoltz
9ea463ba11 deploy(irc): enable readonly UnrealIRCd RPC on GX10 2026-06-19 17:42:34 -05:00
Andrew Stoltz
2dee33f21d deploy(chat): roll chat-web to v20260619-proofjay3b-bf2e147 (Proof Jay Phase 3b companion API) 
Companion session adapter + /api/companion (SSE, fail-closed). Chat master@641eb3d.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-19 16:11:16 -05:00
Andrew Stoltz
132c76807a deploy(chat): roll chat-web to v20260619-proofjay-78b1f5f (Proof Jay companion packs) 
proof-jay + proof-jay-helpdesk personalities (FlowerCore.Chat master@d48e668).
Image localhost/fc-chat-web:v20260619-proofjay-78b1f5f (arm64) imported to GX10 containerd.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-19 14:55:22 -05:00
Andrew Stoltz
991c3f0f15 deploy(irc): roll web trust-store image 2026-06-19 12:51:03 -05:00
Robot
5f923c3f9f docs(gx10): update DeviceManagement agent mTLS posture 2026-06-19 12:07:00 -05:00
Robot
e65f9826e9 deploy(gx10): roll DeviceManagement patch ledger fix 2026-06-19 11:34:20 -05:00
Andrew Stoltz
2671073f52 deploy(irc): add gx10 management web app 2026-06-19 11:17:01 -05:00
Andrew Stoltz
d70d68afa0 deploy(drift-refresh): signage-replay gx10-v1 -> current master (4da0983) 
signage-replay sidecar (was stale gx10-v1 while signage-web was current). Cross-RID arm64 publish (x86 protoc avoids the GB10 arm64 protoc SIGSEGV) + imported. Completes the drift sweep (9th refresh).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-19 09:16:41 -05:00
Andrew Stoltz
70ede651fb deploy(drift-refresh): aistation-web 37-behind -> current main (eb9d513) 
aistation-web a8a3e9d (06-16, 37 commits behind) -> main 88ef7ab + Dockerfile.deploy (cross-RID). Built arm64 + imported (RKE2 socket).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-19 09:01:48 -05:00
Andrew Stoltz
bfa1d011c1 deploy(drift-refresh): scoreboard gx10-v1 -> current master (981d4b5) 
scoreboard 981d4b5 (master 54546c9 + Dockerfile.deploy + NU1903 suppress). Built arm64 + imported (RKE2 socket).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-19 08:34:20 -05:00
Andrew Stoltz
f132d04e3f deploy(drift-refresh): library + retail gx10-v1 -> current master 
library 0e027cc (main 6526113 + Dockerfile.deploy + NU1903 suppress), retail faae9db (main 29f6b0f + Dockerfile.deploy + NU1903 suppress). NFS-free, built arm64 + imported (RKE2 socket).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-19 08:30:14 -05:00
Andrew Stoltz
bf30cf0503 deploy(drift-refresh): presentations + llm-bridge gx10-v1/v2 -> current master 
presentations a67ef22 (master d254737 + NU1903 suppress), llm-bridge 6ba5986 (master d354881 + NU1903 suppress + Shared.Chat 1.6.1 fix). Both NFS-free, built arm64 + imported (RKE2 socket).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-19 08:24:06 -05:00
Andrew Stoltz
5f3bf05258 deploy(drift-refresh): distribution + worldbuilder gx10-v1 -> current master 
Drift sweep: refresh stale migration-era gx10-v1 baselines to current master (distribution 592ad75, worldbuilder edd6efc). Both built clean from arm64; imported to RKE2 socket. Other stale services (presentations/llm-bridge/library) blocked by SQLitePCLRaw 2.1.11 transitive vuln (NU1903) — pending dep bump.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-19 07:52:32 -05:00
Andrew Stoltz
5725c9b36b deploy(updater): enable Kiosk share link on GX10 2026-06-19 07:48:12 -05:00
Andrew Stoltz
b8fc8ba208 deploy(updater): add Kiosk public share link 2026-06-19 07:44:05 -05:00
Andrew Stoltz
5e7d9338b5 deploy(dms): current main (Phase 5->13) -> v20260619-dms-b203a71 
Replaces stale generic gx10-v1 image (missing /openapi etc.) with current DMS main (b203a71). Auth gate-off default (no lockout). Image built+imported (RKE2 socket).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-19 07:31:58 -05:00
Robot
e543d4053a Verify DeviceManagement agent client certificates 2026-06-19 07:22:01 -05:00
Robot
5ce4f0d1e7 deploy(gx10): add DeviceManagement enrollment CA runtime 2026-06-19 06:45:09 -05:00
Andrew Stoltz
4c369cc7ec deploy(kiosk): bump GX10 web image for KI admin 2026-06-19 05:15:43 -05:00
Robot
299ce5aeed deploy(gx10): accept DER agent client cert headers 2026-06-19 01:58:12 -05:00
Robot
57a1afe159 deploy(gx10): bump DeviceManagement enrollment fix 2026-06-19 01:21:47 -05:00
Robot
0d71a789c2 deploy(gx10): add DeviceManagement agent mTLS route 2026-06-19 00:51:01 -05:00
Robot
14d89ba49d deploy(gx10): restore DeviceManagement agent heartbeat auth 2026-06-19 00:22:31 -05:00
Robot
0eda4362ce deploy(gx10): restore DeviceManagement agent cert auth 2026-06-19 00:05:00 -05:00
Andrew Stoltz
6f12ace02d deploy(knowledge): SEC-3 Search/Editions authorize + rebuild_index gate -> v20260619-sec3-6370c95 
Removes [AllowAnonymous] bypass on Search/Editions + role-gates rebuild_index (PR #14, 6370c95). Image built+imported (RKE2 socket). Fail-open while auth off (inert until SEC-1); image now carries the hardening.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-18 23:58:30 -05:00
Andrew Stoltz
0c03e53df9 deploy(chat): SEC-3 /api/memory + MCP write-tool auth -> v20260619-sec3-5a8859b 
Closes the live anon /api/memory GET leak (PR #25, 5a8859b). Image built+imported (RKE2 socket). 0 anon consumers verified; UI reads via DI. Fail-closed 401, scheme reg'd unconditionally.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-18 23:53:42 -05:00
Robot
62a3e75ddc deploy(gx10): roll DeviceManagement REST auth hardening 2026-06-18 23:53:18 -05:00
Andrew Stoltz
4bbd157c8f deploy(php): enable generated route WAF 2026-06-18 23:47:04 -05:00
Andrew Stoltz
1969285e4f deploy(gateway): SEC-3 /api/gateway auth -> v20260619-sec3-429e6cf 
Closes the live anon /api/gateway/* REST bypass (PR #2, 429e6cf). Image built+imported to GX10 containerd. No consumers of the REST group; agent-zero uses /mcp (keyed).

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
 2026-06-18 23:44:25 -05:00
Andrew Stoltz
68a5f1ac5d deploy(php): allow manager DELETE through WAF 2026-06-18 20:37:47 -05:00
Andrew Stoltz
f0b122bac7 deploy(php): bump HM-4 Drupal ready image 2026-06-18 20:33:18 -05:00
Andrew Stoltz
c9538eeeef deploy(php): bump HM-4 probe fix image 2026-06-18 20:13:49 -05:00
Andrew Stoltz
c968e1c4d9 deploy(gx10): roll php web scoped templates 2026-06-18 19:11:14 -05:00