Merge feature/m4-llm-integration into develop #362

Merged

jason.woltje merged 3 commits from feature/m4-llm-integration into develop

2026-02-09 20:17:45 +00:00

Author	SHA1	Message	Date
Jason Woltje	946d84442a	fix(deps): patch axios DoS and transitive prototype pollution/decompression vulns All checks were successful ci/woodpecker/push/woodpecker Pipeline was successful Details ci/woodpecker/pr/woodpecker Pipeline was successful Details Bump axios ^1.13.4→^1.13.5 (GHSA-43fc-jf86-j433). Add pnpm overrides for lodash/lodash-es >=4.17.23 and undici >=6.23.0 to resolve transitive vulnerabilities via chevrotain and discord.js. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-09 13:07:10 -06:00
Jason Woltje	64077b5169	feat(ci): add coordinator Docker build/push/link to pipeline Some checks failed ci/woodpecker/push/woodpecker Pipeline failed Details Add Kaniko-based Docker build step for the coordinator service, push to git.mosaicstack.dev/mosaic/stack-coordinator, and include it in the link-packages step. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-09 13:00:40 -06:00
Jason Woltje	e9392e719c	fix(ci): gate Docker builds on all quality checks and fix prod image names Some checks failed ci/woodpecker/push/woodpecker Pipeline failed Details Build step now depends on lint, typecheck, test, and security-audit so Docker images cannot be pushed when quality gates fail. Also corrects docker-compose.prod.yml image names to match pipeline (stack-api, stack-web, stack-postgres) and replaces hardcoded :latest with ${IMAGE_TAG:-latest}. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-09 12:36:38 -06:00

Author

SHA1

Message

Date

Jason Woltje

946d84442a

fix(deps): patch axios DoS and transitive prototype pollution/decompression vulns

ci/woodpecker/push/woodpecker Pipeline was successful

Details

ci/woodpecker/pr/woodpecker Pipeline was successful

Details

Bump axios ^1.13.4→^1.13.5 (GHSA-43fc-jf86-j433). Add pnpm overrides for
lodash/lodash-es >=4.17.23 and undici >=6.23.0 to resolve transitive
vulnerabilities via chevrotain and discord.js.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-09 13:07:10 -06:00

Jason Woltje

64077b5169

feat(ci): add coordinator Docker build/push/link to pipeline

ci/woodpecker/push/woodpecker Pipeline failed

Details

Add Kaniko-based Docker build step for the coordinator service,
push to git.mosaicstack.dev/mosaic/stack-coordinator, and include
it in the link-packages step.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-09 13:00:40 -06:00

Jason Woltje

e9392e719c

fix(ci): gate Docker builds on all quality checks and fix prod image names

ci/woodpecker/push/woodpecker Pipeline failed

Details

Build step now depends on lint, typecheck, test, and security-audit so
Docker images cannot be pushed when quality gates fail. Also corrects
docker-compose.prod.yml image names to match pipeline (stack-api, stack-web,
stack-postgres) and replaces hardcoded :latest with ${IMAGE_TAG:-latest}.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-09 12:36:38 -06:00

Merge feature/m4-llm-integration into develop #362

3 Commits