shithub Public

Notifications Fork 0 Star 0

Commits

3c7723cc7642437bdf49f1a7cae5ab830690d333
Switch branches/tags
s50/cross-cutting scratch trunk default
All users
espadonne Matthew Forrester Wolffe mfwolffe
View commits for all users
All time
May 2026
Su Mo Tu We Th Fr Sa
26 27 28 29 30 1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30
31 1 2 3 4 5 6
Clear Today

Commits on May 10, 2026

  1. actions: sqlc config + generated CRUD types (S41a) 
    Adds the actions block to sqlc.yaml + the per-table .sql query files.
sqlc generate produces internal/actions/sqlc/ with one .sql.go file
per query file plus models.go (the Go structs mirroring the schema)
and querier.go (the Queries interface).

Just enough surface for S41b/c/d to read and write the rows. No
orchestration logic in this commit; the workflow package (next two
commits) layers on top.
    mfwolffe committed
    3c7723c
  2. migration 0049: actions_variables (S41a)
    mfwolffe committed
    e1d20b6
  3. migration 0048: workflow_artifacts (S41a)
    mfwolffe committed
    0d4a1fc
  4. migration 0047: workflow_step_log_chunks (S41a)
    mfwolffe committed
    8b1f27d
  5. migration 0046: workflow_runners + runner_tokens (S41a)
    mfwolffe committed
    4bc243b
  6. migration 0045: workflow_secrets (S41a)
    mfwolffe committed
    5955d17
  7. migration 0044: workflow_steps (S41a)
    mfwolffe committed
    ceff48e
  8. migration 0043: workflow_jobs (S41a)
    mfwolffe committed
    09401b4
  9. migration 0042: workflow_runs (S41a)
    mfwolffe committed
    ca6762b
  10. Merge pull request #61 from tenseleyFlow/worktree-repo-create-throttle-bump 
    repos: bump create cap to 20/hour and bypass for site admins
    Matthew Forrester Wolffe committed
    acac6fb
  11. web: forward IsSiteAdmin into repos.Params on create
    mfwolffe committed
    677b617
  12. repos: bump create cap to 20/hour and bypass throttle for site admins
    mfwolffe committed
    9c72313
  13. Merge pull request #60 from tenseleyFlow/navbar-scrollbar-cleanup 
    Hide nested tab scrollbars
    Matthew Forrester Wolffe committed
    83894ac
  14. Hide nested tab scrollbars
    mfwolffe committed
    8a0b858
  15. Merge pull request #50 from tenseleyFlow/org-teams-ui-parity 
    Align org team pages
    Matthew Forrester Wolffe committed
    c671109
  16. Merge pull request #59 from tenseleyFlow/offcanvas-remove-mcp 
    Remove MCP registry from offcanvas nav
    espadonne committed
    fd4450f
  17. Merge remote-tracking branch 'origin/trunk' into org-teams-ui-parity
    mfwolffe committed
    16eddf7
  18. Remove MCP registry from offcanvas nav
    mfwolffe committed
    6e88df5
  19. Restore trunk navbar files
    mfwolffe committed
    31691f6
  20. Merge remote-tracking branch 'origin/trunk' into org-teams-ui-parity
    mfwolffe committed
    53af555
  21. Merge pull request #58 from tenseleyFlow/offcanvas-ui-parity 
    Align offcanvas nav with GitHub
    espadonne committed
    ea7f43a
  22. Merge trunk into org teams UI
    mfwolffe committed
    3d20153
  23. Add GitHub-style offcanvas nav
    mfwolffe committed
    6742ad9
  24. Merge pull request #57 from tenseleyFlow/fix/systemd-restrict-suidsgid 
    systemd(shithubd-web): drop RestrictSUIDSGID=yes (blocks git --shared=group)
    Matthew Forrester Wolffe committed
    4fe0dc3
  25. systemd(shithubd-web): drop RestrictSUIDSGID=yes (blocks git --shared=group) 
    Pre-fix: shithubd-web's systemd unit set RestrictSUIDSGID=yes.
SR2 #287 made InitBare run 'git init --bare --shared=group' so
cross-user write paths (HTTPS path as user shithub, SSH path as
user git, both in shithub group) inherit shithub group on new
pack files. git's adjust_shared_perm calls chmod g+s on every
directory it creates. The kernel returned EPERM under the
restriction; git emitted:

  fatal: Could not make .../branches/ writable by group

so every fresh repo create on a new owner namespace failed with
the bland 'Could not create the repository' UI error after the
PR #48 deploy. Existing repos (created before #48) had been
post-init-repaired by 'shithubd storage repair-shared-perms'
running as root, so their setgid was already in place.

Fix: drop the directive. shithubd doesn't write executable files
to disk and isn't a setuid host, so the security loss is small.
The other hardening (NoNewPrivileges, ProtectSystem=strict,
ProtectHome, MemoryDenyWriteExecute, RestrictNamespaces, etc.)
all stay.

Alternative considered + rejected: keep RestrictSUIDSGID, drop
--shared=group, and chmod perms by hand post-init. That re-
introduces the SR2 #287 bug pattern (custom perms recipe drifts
from git's expected layout, future operators hit subtle perm bugs).

Operator must reload the unit on existing droplets:
  ssh root@shithub.sh 'systemctl daemon-reload && systemctl restart shithubd-web'
This was already applied to the live droplet at fix-time.
    mfwolffe committed
    9dab000
  26. Merge pull request #56 from tenseleyFlow/commits-ui-parity 
    Align commits page with GitHub
    espadonne committed
    6377dde
  27. Align commits page UI
    mfwolffe committed
    c92556a
  28. Build commits page view model
    mfwolffe committed
    98a7979
  29. Merge pull request #55 from tenseleyFlow/fix/repo-create-error-logging 
    repo: log underlying error when create fails (operator triage)
    Matthew Forrester Wolffe committed
    097a44b
  30. repo: log the underlying error when create fails 
    Pre-fix: friendlyCreateError collapses every non-typed cause into
'Could not create the repository. Try again.' for the user. The
handler swallowed the original err entirely, so the operator had
no signal in journalctl when a create failed for a reason outside
the typed-sentinel set.

User reports a repeatable failure creating a repo under a brand-
new org with no log line to triage. Add a WarnContext with the
error + push-event metadata so the next failure surfaces what
actually went wrong.

Cheap, no behavior change for the user, immediately useful when
diagnosing the next failed create.
    mfwolffe committed
    c2c831d