codewhale

dgf1988/codewhale

Fork 0

Commit Graph

Author	SHA1	Message	Date
Ziang Xie	6e2b854fdb	fix(docker): remove misleading ENV, add explicit UID/GID, add .dockerignore (#827 ) * fix(docker): remove misleading ENV, add explicit UID/GID, add .dockerignore - Removed `ENV DEEPSEEK_API_KEY=""` and `ENV DEEPSEEK_NO_COLOR=""`: API keys should never be baked into image layers, even as empty strings. Added comments documenting runtime secret passing patterns. - Added explicit UID/GID (1000:1000) for the `deepseek` user: Makes filesystem ownership unambiguous when mounting volumes and avoids the default auto-assigned UID shifting between hosts. - Added `.dockerignore`: Prevents accidental inclusion of .env files, local runtime state, documentation, dev configs, and build artifacts into the build context, keeping the image smaller and avoiding secret leaks. * fix(docker): keep nested build inputs in context --------- Co-authored-by: Hunter Bown <hmbown@gmail.com>	2026-05-06 04:21:34 -05:00
zxyasfas	0fded51824	docs: align Rust MSRV references with workspace (#739 )	2026-05-05 22:39:50 -05:00
Hunter Bown	6ff4db5ba0	feat(v0.8.9): address all issues labeled v0.8.9 #551 — sidebar filters prior-session agents (from_prior_session) #552 — status messages prioritise ↑ affordance over /queue #553 — oversized paste consolidation to @mention file (+uuid suffix) #523 — release.yml: add if: guard so release job doesn't skip on dispatch #526 — verify cost_status side-channel is fully wired (already in place) #554 — mouse/trackpad scroll now sets user_scrolled_during_stream #522 — set RELEASE_TAG_PAT secret for auto-tag → release trigger #504 — session-context panel (SidebarFocus::Context, config toggle, default off) #501 — multi-arch Dockerfile (+BUILDPLATFORM pin) + devcontainer + release CI #484 — docs/RUNTIME_API.md rewritten against actual runtime_api.rs endpoints #482 — close v0.8.8 planning tracker Fixes from review: - RUNTIME_API.md: corrected endpoints (/v1/...), port (7878), doctor JSON schema (flat) - Dockerfile: added --platform=$BUILDPLATFORM for native multi-arch builds - docs/DOCKER.md: removed Docker Hub references (GHCR only) - sidebar.rs: dropped unused _theme variable - settings.rs: context_panel default changed to false - app.rs: paste filename now includes 8-char uuid suffix to avoid collision	2026-05-04 00:33:08 -05:00

Author

SHA1

Message

Date

Ziang Xie

6e2b854fdb

fix(docker): remove misleading ENV, add explicit UID/GID, add .dockerignore (#827 )

* fix(docker): remove misleading ENV, add explicit UID/GID, add .dockerignore

- Removed `ENV DEEPSEEK_API_KEY=""` and `ENV DEEPSEEK_NO_COLOR=""`:
  API keys should never be baked into image layers, even as empty strings.
  Added comments documenting runtime secret passing patterns.

- Added explicit UID/GID (1000:1000) for the `deepseek` user:
  Makes filesystem ownership unambiguous when mounting volumes and
  avoids the default auto-assigned UID shifting between hosts.

- Added `.dockerignore`:
  Prevents accidental inclusion of .env files, local runtime state,
  documentation, dev configs, and build artifacts into the build
  context, keeping the image smaller and avoiding secret leaks.

* fix(docker): keep nested build inputs in context

---------

Co-authored-by: Hunter Bown <hmbown@gmail.com>

2026-05-06 04:21:34 -05:00

zxyasfas

0fded51824

docs: align Rust MSRV references with workspace (#739 )

2026-05-05 22:39:50 -05:00

Hunter Bown

6ff4db5ba0

feat(v0.8.9): address all issues labeled v0.8.9

#551 — sidebar filters prior-session agents (from_prior_session)
#552 — status messages prioritise ↑ affordance over /queue
#553 — oversized paste consolidation to @mention file (+uuid suffix)
#523 — release.yml: add if: guard so release job doesn't skip on dispatch
#526 — verify cost_status side-channel is fully wired (already in place)
#554 — mouse/trackpad scroll now sets user_scrolled_during_stream
#522 — set RELEASE_TAG_PAT secret for auto-tag → release trigger
#504 — session-context panel (SidebarFocus::Context, config toggle, default off)
#501 — multi-arch Dockerfile (+BUILDPLATFORM pin) + devcontainer + release CI
#484 — docs/RUNTIME_API.md rewritten against actual runtime_api.rs endpoints
#482 — close v0.8.8 planning tracker

Fixes from review:
- RUNTIME_API.md: corrected endpoints (/v1/...), port (7878), doctor JSON schema (flat)
- Dockerfile: added --platform=$BUILDPLATFORM for native multi-arch builds
- docs/DOCKER.md: removed Docker Hub references (GHCR only)
- sidebar.rs: dropped unused _theme variable
- settings.rs: context_panel default changed to false
- app.rs: paste filename now includes 8-char uuid suffix to avoid collision

2026-05-04 00:33:08 -05:00

3 Commits