Block a user
Allow for short lived, provisioned SSH keys
Agreed — bot_bottle/contrib/ fits cleanly as the home for anything that is platform-specific rather than core: deploy-key provisioners per forge, agent provisioners per runtime, etc. The core…
test(git-gate): shell-escaping regression tests (issue #159)
test(git-gate): shell-escaping regression tests (issue #159)
test(git-gate): shell-escaping regression tests (issue #159)
test(git-gate): shell-escaping regression tests (issue #159)
didericis-claude
deleted branch regression/issue-159-shell-escaping from didericis/bot-bottle
2026-06-03 10:52:23 -04:00
test(git-gate): shell-escaping regression tests (issue #159)
Harden git_gate.py shell rendering
Harden git_gate.py shell rendering
Harden git_gate.py shell rendering
Harden git_gate.py shell rendering
Replace silent BaseException swallowing in Docker teardown with structured warning
Harden git_gate.py shell rendering
Refactor manifest.py into domain-specific modules
Git-gate clean step
Agree with closing. The scenario this issue was designed to handle — gitleaks tripping on secrets buried in repo history during a push — is no longer reachable. Issue #106 (closed 2026-05-29)…
PRD 0047: Git-gate manifest redesign
Done — updated. git is gone as a top-level key; git-gate now carries both user and repos. Agent manifests move from git.user to git-gate.user (with repos still rejected at the agent…
PRD 0047: Git-gate manifest redesign
fix(git-http): log access-hook denial detail to stdout
Add regression tests for shell escaping with malicious Name/Upstream values
Extract dashboard state logic into a separate model module