didericis (claude) didericis-claude
0 Followers · 0 Following
  • Joined on 2026-05-27
Repositories Projects Packages Public Activity Starred Repositories
didericis-claude commented on pull request didericis/bot-bottle#266 2026-06-25 02:03:01 -04:00
Validate proposed egress config

load_routes is no longer used in any production code path — egress_apply.py, supervise_server.py, and egress_addon.py all call load_config now (this PR migrated the last few). It…

didericis-claude created pull request didericis/bot-bottle#264 2026-06-24 22:40:35 -04:00
PRD: LOG_FULL egress logging credential redaction
didericis-claude created pull request didericis/bot-bottle#263 2026-06-24 20:55:07 -04:00
PRD: Strengthen outbound exfiltration detection
didericis-claude created pull request didericis/bot-bottle#262 2026-06-24 16:13:21 -04:00
PRD 0062: Supervisor override for egress token blocks
didericis-claude created pull request didericis/bot-bottle#260 2026-06-24 15:38:20 -04:00
Add leveled severity and structured context to log wrappers
didericis-claude commented on issue didericis/bot-bottle#259 2026-06-24 09:32:41 -04:00
Strengthen outbound exfil detection: canaries, broadened known-value set, fragmentation-resistant matching

Empirical grounding for the ranking

A Jan 2026 large-scale study (Malicious Agent Skills in the Wild, arXiv:2602.06547) measured the real-world exfil…

didericis-claude opened issue didericis/bot-bottle#259 2026-06-24 09:21:39 -04:00
Strengthen outbound exfil detection: canaries, broadened known-value set, fragmentation-resistant matching
didericis-claude opened issue didericis/bot-bottle#258 2026-06-24 00:55:49 -04:00
Hand-rolled egress/gitconfig YAML emitters don't escape quotes/newlines
didericis-claude opened issue didericis/bot-bottle#256 2026-06-24 00:55:48 -04:00
Egress apply validates with load_routes but sidecar runs load_config (log: bypass)
didericis-claude opened issue didericis/bot-bottle#257 2026-06-24 00:55:48 -04:00
LOG_FULL egress logging captures injected Authorization and unredacted bodies
didericis-claude opened issue didericis/bot-bottle#255 2026-06-23 23:27:03 -04:00
Audit network/subprocess calls for missing timeouts
didericis-claude opened issue didericis/bot-bottle#254 2026-06-23 23:27:03 -04:00
Harden CGI status-line parsing in git_http_backend
didericis-claude opened issue didericis/bot-bottle#252 2026-06-23 23:27:02 -04:00
Structured, leveled logging in log.py
didericis-claude opened issue didericis/bot-bottle#253 2026-06-23 23:27:02 -04:00
Typed error taxonomy for supervise RPC dispatch
didericis-claude commented on pull request didericis/bot-bottle#248 2026-06-23 05:06:01 -04:00
Fix Codex supervise MCP registration

Done (5eb27cd): changed docker/compose.py and smolmachines/launch.py to bind-mount the egress directory (/etc/egress) instead of just the routes file, matching the fix applied to macos-contai…

didericis-claude commented on pull request didericis/bot-bottle#240 2026-06-23 03:42:10 -04:00
PRD: Commit bottle state to an image

Done in 8ab2472.

Added a Freezer ABC (backend/freeze.py) following the same pattern as BottleBackend:

  • Freezer.commit(agent: ActiveAgent, bottle: Bottle) — primary entry point for…
didericis-claude commented on pull request didericis/bot-bottle#240 2026-06-23 03:22:50 -04:00
PRD: Commit bottle state to an image

Fixed in 3cd4a7a.

container export requires the container to be stopped. The commit command now:

  1. Checks if the bottle is running (container list --quiet)
  2. Prompts "commit will stop it.…
didericis-claude commented on pull request didericis/bot-bottle#248 2026-06-23 01:57:29 -04:00
Fix Codex supervise MCP registration

Done (7a991e1):

didericis-claude commented on pull request didericis/bot-bottle#248 2026-06-23 01:49:03 -04:00
Fix Codex supervise MCP registration

Done — stripped the legacy fallback, _routes_path now just returns egress_state_dir(slug) / EGRESS_ROUTES_FILENAME. (5606797)

didericis-claude commented on pull request didericis/bot-bottle#240 2026-06-22 22:32:51 -04:00
PRD: Commit bottle state to an image

For smolmachines, the local registry machinery already exists in local_registry.py — the implementation path is: docker-commit the running container, push it to the ephemeral registry, and…