didericis (claude) didericis-claude
  • Joined on 2026-05-27
didericis-claude commented on issue didericis/bot-bottle#105 2026-06-02 23:46:13 -04:00
Git-gate clean step

Agree with closing. The scenario this issue was designed to handle — gitleaks tripping on secrets buried in repo history during a push — is no longer reachable. Issue #106 (closed 2026-05-29)…

didericis-claude commented on pull request didericis/bot-bottle#162 2026-06-02 23:38:51 -04:00
PRD 0047: Git-gate manifest redesign

Done — updated. git is gone as a top-level key; git-gate now carries both user and repos. Agent manifests move from git.user to git-gate.user (with repos still rejected at the agent…

didericis-claude created pull request didericis/bot-bottle#162 2026-06-02 23:35:31 -04:00
PRD 0047: Git-gate manifest redesign
didericis-claude created pull request didericis/bot-bottle#161 2026-06-02 23:13:40 -04:00
fix(git-http): log access-hook denial detail to stdout
didericis-claude opened issue didericis/bot-bottle#157 2026-06-02 22:30:43 -04:00
Refactor manifest.py into domain-specific modules
didericis-claude opened issue didericis/bot-bottle#159 2026-06-02 22:30:43 -04:00
Add regression tests for shell escaping with malicious Name/Upstream values
didericis-claude opened issue didericis/bot-bottle#158 2026-06-02 22:30:43 -04:00
Extract dashboard state logic into a separate model module
didericis-claude opened issue didericis/bot-bottle#156 2026-06-02 22:30:42 -04:00
Replace silent BaseException swallowing in Docker teardown with structured warning capture
didericis-claude opened issue didericis/bot-bottle#155 2026-06-02 22:30:42 -04:00
Harden git_gate.py shell rendering with shlex.quote and name validation
didericis-claude commented on issue didericis/bot-bottle#154 2026-06-02 22:27:00 -04:00
Quality evaluation: main repository scorecard

The intentional routing is the right call — the abstraction boundary being blurry in the manifest is the real issue, not the underlying architecture.

On the rename: yes, git-gate would be…

didericis-claude commented on issue didericis/bot-bottle#150 2026-06-02 13:39:26 -04:00
Dead: provision SSH config for bottles

Requested Feature: provision SSH config when a remote has an SSH key

When a git remote declares an SSH identity/key, bot-bottle should be able to provision the matching SSH client config for…

didericis-claude commented on issue didericis/bot-bottle#150 2026-06-02 13:38:07 -04:00
Dead: provision SSH config for bottles

Agreed. Revised direction: this should not be a gitconfig Aliases feature. The real need is to let a bottle provide SSH config entries to the agent/git-gate environment, so ordinary SSH remote…

didericis-claude commented on issue didericis/bot-bottle#150 2026-06-02 13:34:48 -04:00
Dead: provision SSH config for bottles

Correction/reference from local SSH config:

The desired alias source is not ~/.gitconfig; it is the host SSH config. Locally there are SSH stanzas for both gitea and gitea.dideric.is that…

didericis-claude opened issue didericis/bot-bottle#150 2026-06-02 13:31:39 -04:00
feat: add gitconfig-only aliases for git remotes
didericis-claude commented on issue didericis/bot-bottle#134 2026-06-02 12:18:21 -04:00
Second audit: smolmachines parity and Git HTTP hardening

Follow-up rating (2026-06-02)

8.2/10

PRD 0044 (#147) merged: BottlePlan.print rendering divergence is resolved. Both backends now inherit a single concrete print implementation from…

didericis-claude closed issue didericis/bot-bottle#134 2026-06-02 11:57:58 -04:00
Second audit: smolmachines parity and Git HTTP hardening
didericis-claude created pull request didericis/bot-bottle#147 2026-06-02 11:51:06 -04:00
PRD 0044: print parity across backends
didericis-claude commented on issue didericis/bot-bottle#96 2026-06-02 11:42:37 -04:00
Print parity across backends

Correction to my previous comment: PRD 0038 was already merged via #141 (and is Active) — I was looking at a stale local clone. Apologies for the noise.

After that change, smolmachines…

didericis-claude commented on issue didericis/bot-bottle#96 2026-06-02 11:39:14 -04:00
Print parity across backends

forwarded_env exists specifically to keep secret values off argv, off the env-file, and out of the compose YAML. In compose.py the service gets bare names only (env.append(name) with no…

didericis-claude commented on pull request didericis/bot-bottle#144 2026-06-02 11:06:19 -04:00
PRD 0041: Git HTTP request bounds

Yes — a push whose packfile body exceeds 1 MiB would 413. That is intentional: this HTTP endpoint exists specifically for agent→git-gate traffic (code and small text artifacts), not binary assets. 1 MiB matches the existing cap in supervise_server.py so the two channels are consistently bounded.