mosaic/stack
1
0
Fork 0
Code Issues 10 Pull Requests Actions Packages Projects Releases 2 Wiki Activity

fix(#411): complete auth/frontend remediation and review hardening #421

Merged
jason.woltje merged 8 commits from fix/auth-frontend-remediation into develop 2026-02-17 21:24:14 +00:00
Conversation 0 Commits 8 Files Changed 45 +949 -1229

8 Commits

Author SHA1 Message Date
Jason Woltje
758b2a839b fix(web-tests): stabilize async auth and usage page assertions
All checks were successful
ci/woodpecker/push/web Pipeline was successful
Details
2026-02-17 15:15:54 -06:00
jason.woltje
af113707d9 Merge branch 'develop' into fix/auth-frontend-remediation
Some checks failed
ci/woodpecker/push/infra Pipeline was successful
Details
ci/woodpecker/push/orchestrator Pipeline was successful
Details
ci/woodpecker/push/coordinator Pipeline was successful
Details
ci/woodpecker/push/web Pipeline failed
Details
ci/woodpecker/push/api Pipeline was successful
Details
2026-02-17 20:35:59 +00:00
Jason Woltje
57d0f5d2a3 fix(#411): resolve CI lint crash from ajv override
All checks were successful
ci/woodpecker/push/orchestrator Pipeline was successful
Details
ci/woodpecker/push/web Pipeline was successful
Details
ci/woodpecker/push/api Pipeline was successful
Details 
Drop the global ajv override that forced ESLint onto an incompatible major, then move @mosaic/config lint tooling deps to devDependencies so production audit stays clean without impacting runtime deps.
 2026-02-17 14:28:55 -06:00
Jason Woltje
ad428598a9 docs(#411): normalize AGENTS standards paths
Some checks failed
ci/woodpecker/push/orchestrator Pipeline failed
Details
ci/woodpecker/push/api Pipeline failed
Details
ci/woodpecker/push/web Pipeline failed
Details
2026-02-17 14:21:19 -06:00
Jason Woltje
cab8d690ab fix(#411): complete 2026-02-17 remediation sweep 
Apply RLS context at task service boundaries, harden orchestrator/web integration and session startup behavior, re-enable targeted frontend tests, and lock vulnerable transitive dependencies so QA and security gates pass cleanly.
 2026-02-17 14:19:15 -06:00
Jason Woltje
254f85369b add repo lifecycle hooks for mosaic-stack sessions 2026-02-17 12:45:39 -06:00
Jason Woltje
ddf6851bfd bootstrap repo to mosaic standards layer 2026-02-17 12:43:14 -06:00
Jason Woltje
8961f5b18c chore: upgrade Node.js runtime to v24 across codebase
All checks were successful
ci/woodpecker/push/orchestrator Pipeline was successful
Details
ci/woodpecker/push/api Pipeline was successful
Details
ci/woodpecker/push/web Pipeline was successful
Details 
- Update .woodpecker/codex-review.yml: node:22-slim → node:24-slim
- Update packages/cli-tools engines: >=18 → >=24.0.0
- Update README.md, CONTRIBUTING.md, prerequisites docs to reference Node 24+
- Rename eslint.config.js → eslint.config.mjs to eliminate Node 24
  MODULE_TYPELESS_PACKAGE_JSON warnings (ESM detection overhead)
- Add .nvmrc targeting Node 24
- Fix pre-existing no-unsafe-return lint error in matrix-room.service.ts
- Add Campsite Rule to CLAUDE.md
- Regenerate Prisma client for Node 24 compatibility

All Dockerfiles and main CI pipelines already used node:24. This commit
aligns the remaining stragglers (codex-review CI, cli-tools engines,
documentation) and resolves Node 24 ESM module detection warnings.

Quality gates: lint  typecheck  tests  (6 pre-existing API failures)

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-02-16 17:33:26 -06:00