mosaic/stack
1
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases 2 Wiki Activity

fix(SEC-REVIEW-4-7): Address remaining MEDIUM security review findings
All checks were successful
ci/woodpecker/push/woodpecker Pipeline was successful
Details

Browse Source 
- Graceful container shutdown: detect "not running" containers and skip
  force-remove escalation, only SIGKILL for genuine stop failures
- data: URI stripping: add security audit logging via NestJS Logger
  when data: URIs are blocked in markdown links and images
- Orchestrator bootstrap: replace void bootstrap() with .catch() handler
  for clear startup failure logging and clean process.exit(1)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
Jason Woltje
2026-02-06 14:51:22 -06:00
parent 2bb1dffe97
commit 92c310333c
4 changed files with 32 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
apps/orchestrator/src/main.ts
View File

@@ -17,4 +17,7 @@ async function bootstrap() {
logger.log(`🚀 Orchestrator running on http://${host}:${String(port)}`);
}
void bootstrap();
bootstrap().catch((err: unknown) => {
logger.error("Failed to start orchestrator", err instanceof Error ? err.stack : String(err));
process.exit(1);
});