singularity-forge

History

Mikael Hugo 66ff949c11 cherry-pick(security): harden project-controlled surfaces (PR #4755 partial) Cherry-pick of gsd-build/gsd-2 65ca5aa2e — applies the security hardening hunks that conflicted minimally: - mcp-server/env-writer: validate writes against a strict allowlist - web/api/files: enforce path containment via web/lib/secure-path - vscode-extension: read binaryPath/autoStart only from trusted global/default scopes (resolveTrustedSfStartupConfig), avoiding workspace-controlled override (renamed Gsd → Sf for sf naming) - New regression tests: mcp-client-security, vscode-startup-security, web-files-symlink Skipped hunks (drifted): mcp-server/server.ts, mcp-client/index.ts, mcp-server/README.md. Co-Authored-By: Jeremy <jeremy@fluxlabs.net> Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>		2026-04-28 05:37:07 +02:00
..
app	cherry-pick(security): harden project-controlled surfaces (PR #4755 partial)	2026-04-28 05:37:07 +02:00
components	fix: atomic writes, parse radix, lossy json, silent worker spawn	2026-04-21 02:13:10 +02:00
hooks	feat(web): browser-based web interface (#1717 )	2026-03-21 12:16:54 -06:00
lib	cherry-pick(security): harden project-controlled surfaces (PR #4755 partial)	2026-04-28 05:37:07 +02:00
public	feat(web): browser-based web interface (#1717 )	2026-03-21 12:16:54 -06:00
styles	feat(web): browser-based web interface (#1717 )	2026-03-21 12:16:54 -06:00
.gitignore	feat(web): browser-based web interface (#1717 )	2026-03-21 12:16:54 -06:00
components.json	feat(web): browser-based web interface (#1717 )	2026-03-21 12:16:54 -06:00
eslint.config.mjs	feat(web): browser-based web interface (#1717 )	2026-03-21 12:16:54 -06:00
middleware.ts	chore: sync workspace state after rebrand	2026-04-15 14:54:20 +02:00
next-env.d.ts	feat(web): browser-based web interface (#1717 )	2026-03-21 12:16:54 -06:00
next.config.mjs	Rename @sf-run/* → @singularity-forge/* package scope	2026-04-15 22:56:33 +02:00
package-lock.json	release: v2.75.0	2026-04-17 17:26:59 +00:00
package.json	refactor: update log prefixes and string values from gsd- to sf- namespace	2026-04-15 15:37:12 +02:00
postcss.config.mjs	feat(web): browser-based web interface (#1717 )	2026-03-21 12:16:54 -06:00
tsconfig.json	feat(web): browser-based web interface (#1717 )	2026-03-21 12:16:54 -06:00