veilor-org/veilor-os
1
0
Fork 0
Code Issues Pull requests Projects Releases 1 Packages Wiki Activity Actions

Commit graph

  • 505b5f0006 fix(bluebuild): rpm-ostree → containerfile RUN to dodge chmod bug v0.7-bluebuild-spike s8n-ru 2026-05-08 12:53:03 +0100
  • c0ea2b3911 perf(bluebuild): collapse modules to cut overlayfs commit cost s8n-ru 2026-05-08 04:27:44 +0100
  • 702702650a fix(bluebuild): move brand-leak check recipe RUN -> CI smoke-test s8n-ru 2026-05-08 00:52:09 +0100
  • c272050890 feat(installer): persist install logs to USB by default s8n-ru 2026-05-08 00:51:16 +0100
  • 865c9507af docs(changelog,roadmap): refresh state 2026-05-08 s8n-ru 2026-05-08 00:49:36 +0100
  • fa4db50680 ci(installer-iso): pivot livemedia-creator → bootc-image-builder claude-veilor-bot 2026-05-07 11:18:49 +0100
  • 800afaec2f ks(installer): add %packages for live boot env (dracut-live, anaconda) claude-veilor-bot 2026-05-07 08:16:01 +0100
  • 8ffd6fb48d ci(bluebuild): bump timeout 60 → 360 min (first-time pulls slow) claude-veilor-bot 2026-05-07 08:11:06 +0100
  • 58cd6c2d84 ci(installer-iso): move --logfile out of --resultdir claude-veilor-bot 2026-05-07 08:09:42 +0100
  • 2a95502898 ci(installer-iso): /tmp not /var for livemedia resultdir claude-veilor-bot 2026-05-07 08:03:25 +0100
  • ac69a8a351 ci(installer-iso): build into /var/lmc-out-PID, copy back to workspace claude-veilor-bot 2026-05-07 07:56:53 +0100
  • 7df9dc08f4 bluebuild(recipe): swap type:script + type:systemd → type:containerfile claude-veilor-bot 2026-05-07 04:54:09 +0100
  • 0e99a32084 fix(v0.7): bluebuild type:copy + livemedia-creator clean resultdir backup/pre-rename-2026-05-07/v0.7-bluebuild-spike obsidian-ai 2026-05-07 01:55:08 +0100
  • e71ccaf198 docs(ROADMAP): persist install logs to USB by default (debug mode) obsidian-ai 2026-05-07 01:52:31 +0100
  • cfd2eb69fd ci(installer-iso): drop --title (not supported by livemedia-creator) obsidian-ai 2026-05-06 23:58:56 +0100
  • a06f54dd79 ci(bluebuild): --security-opt label=disable + seccomp=unconfined for files module obsidian-ai 2026-05-06 21:08:59 +0100
  • e6aa2d14a8 ci(bluebuild): symlink cosign.{pub,key} to repo root for stage-keys COPY obsidian-ai 2026-05-06 18:12:29 +0100
  • 5910989f12 ci: smoke-test workflow for v0.7 OCI image obsidian-ai 2026-05-06 18:12:05 +0100
  • 9a087ae0da feat(ci): installer ISO workflow (v0.7 ostreecontainer path) obsidian-ai 2026-05-06 18:09:38 +0100
  • 266090ea0d ci(bluebuild): swap 'file' cmd for 'head' (file not in veilor-build:43) obsidian-ai 2026-05-06 18:06:58 +0100
  • 5c961eba88 Update docs/DOCS-DOCS.md main backup/pre-rename-2026-05-07/main s8n 2026-05-06 18:03:37 +0100
  • b4c0feb30d ci(bluebuild): -vv + diagnostic ls before bluebuild invocation obsidian-ai 2026-05-06 18:02:02 +0100
  • c152953089 ci(bluebuild): add cosign keypair signing infra obsidian-ai 2026-05-06 17:48:58 +0100
  • 4966a65e37 bluebuild(recipe): drop signing module for first green build claude-veilor-bot 2026-05-06 17:30:48 +0100
  • 2c197796e3 ci(bluebuild): locate podman auth.json + copy to stable bind path obsidian-ai 2026-05-06 17:21:21 +0100
  • 237968bfac bluebuild: switch base to ghcr.io/secureblue/kinoite-main-hardened obsidian-ai 2026-05-06 17:15:54 +0100
  • f50f427ff8 ci(bluebuild): login to GHCR with PAT, share auth.json into bluebuild obsidian-ai 2026-05-06 17:12:16 +0100
  • ded80c6e15 ci(bluebuild): pre-pull secureblue base + share podman storage obsidian-ai 2026-05-06 17:09:10 +0100
  • 48ccabe914 ci(bluebuild): bluebuild bin lives at /usr/bin not /usr/local/bin obsidian-ai 2026-05-06 17:06:33 +0100
  • 756b03aa5c ci(bluebuild): override CLI container entrypoint to bluebuild binary obsidian-ai 2026-05-06 17:03:53 +0100
  • 1e70cc5461 ci(bluebuild): use ghcr.io/blue-build/cli container instead of action obsidian-ai 2026-05-06 17:01:22 +0100
  • 9ee2cec20e ci(bluebuild): symlink podman -> docker (action needs docker CLI) obsidian-ai 2026-05-06 16:58:50 +0100
  • 8926894ceb ci(bluebuild): chown /etc/sudo* to root before sudo (userns=host fix) obsidian-ai 2026-05-06 16:56:36 +0100
  • 6d8164c199 ci(bluebuild): use blue-build/github-action composite (no CLI binary release) obsidian-ai 2026-05-06 16:54:04 +0100
  • bbdafbce94 ci(bluebuild): slim dnf list + install cosign from upstream binary obsidian-ai 2026-05-06 16:51:17 +0100
  • 6391b1104b bluebuild(recipe): reconcile kickstart %post into BlueBuild modules (A2) obsidian-ai 2026-05-06 16:50:02 +0100
  • 4d53d76442 docs: v0.7 user-facing docs (INSTALL-V07, STRATEGY pivot, README, CHANGELOG) obsidian-ai 2026-05-06 16:48:48 +0100
  • 606806f82f overlay: atomic CLI tools for v0.7+ (bootc upgrade, postinstall, doctor) obsidian-ai 2026-05-06 16:46:59 +0100
  • 61fec5e1a9 ci(bluebuild): port build to Forgejo runner (nullstone label) obsidian-ai 2026-05-06 16:44:52 +0100
  • 5e94a61ea0 docs(ROADMAP): pivot — v0.6 cancelled, v0.7 BlueBuild OCI is mainline obsidian-ai 2026-05-06 15:55:08 +0100
  • d48e59f05b docs: add PROOF-OF-WORK.md — receipts of work, tooling, and decisions obsidian-ai 2026-05-06 15:51:40 +0100
  • ecd374ab1a ci: gate cosign/sbom/attest steps to github only obsidian-ai 2026-05-06 15:41:00 +0100
  • e17c04007d docs(README): tone down secureblue credit (no code lifted yet) obsidian-ai 2026-05-06 15:38:35 +0100
  • 97939d76f8 docs(README): add secureblue column + upstream credit section obsidian-ai 2026-05-06 15:32:22 +0100
  • abaff9d3c3 ci: symlink /work -> GITHUB_WORKSPACE for ks %post SRC probe obsidian-ai 2026-05-06 14:58:24 +0100
  • 29a6677d54 ks: drop apparmor-* packages — not in Fedora 43 repos obsidian-ai 2026-05-06 14:48:06 +0100
  • b3572565e2 ci: run build directly in Fedora job container, drop addnab nest obsidian-ai 2026-05-06 14:35:44 +0100
  • 9bf063a178 ci: add /work diagnostic before sed-redirect to surface bind/perm issue obsidian-ai 2026-05-06 14:19:13 +0100
  • 3f138e7435 ci: repin fedora:43 build container to amd64 digest obsidian-ai 2026-05-06 14:10:25 +0100
  • 7d6054311b ci: add --userns=host to nested Fedora build container obsidian-ai 2026-05-06 14:07:22 +0100
  • 6b0828d692 ci: pin sbom/cosign/attest actions to node20-safe versions obsidian-ai 2026-05-06 13:57:49 +0100
  • a59f1f026a ci: gate softprops release steps + add Forgejo API equivalents s8n 2026-05-06 10:31:39 +0100
  • beef32a77c feat(installer): promote eject-media reminder to its own box veilor-org 2026-05-06 10:32:30 +0100
  • 0a70eea950 feat(installer): 10s reboot countdown with per-tick redraw veilor-org 2026-05-06 10:32:11 +0100
  • 877ad91096 feat(installer): confirm-twice for LUKS passphrase + admin password veilor-org 2026-05-06 10:31:21 +0100
  • a3b3d29b38 feat(installer): staged banner reveal at 40ms/line veilor-org 2026-05-06 10:31:02 +0100
  • 55221a6af2 fix(installer): swap gum input --password for bash read -srp veilor-org 2026-05-06 10:30:06 +0100
  • d76597c57a sec: AppArmor v0.6 stub — load profiles in complain mode s8n 2026-05-06 11:15:30 +0100
  • 631e7bd040 ci: TODO marker for SHA-pinning third-party actions veilor-org 2026-05-06 10:41:19 +0100
  • 9158532c9d ci: pin fedora:43 base image to digest veilor-org 2026-05-06 10:41:10 +0100
  • e93ef644e1 ci: add cosign keyless sigs, SBOM, and provenance attestation veilor-org 2026-05-06 10:40:56 +0100
  • 21f2b4da9a ci: pin actions to node20-safe tags + runner sock pass-through obsidian-ai 2026-05-06 10:50:15 +0100
  • 91d5d26473 sec: polish THREAT-MODEL.md for v0.7 public launch s8n 2026-05-06 11:14:34 +0100
  • c7c0a0bcc8 docs: test run report skeleton for v0.5.32 (Forgejo build) veilor-org 2026-05-06 10:34:06 +0100
  • 9011fd2dbf docs: README de-GH + Forgejo build status s8n 2026-05-06 13:45:33 +0100
  • 20b3541d38 docs: METHOD-CHANGELOG 2026-05-06 forgejo entry s8n 2026-05-06 13:45:29 +0100
  • 1fa45c3749 chore: gitignore auto-install-vm test artifacts veilor-org 2026-05-06 10:50:04 +0100
  • d9b206e46b docs: STRATEGY.md — primary git host moved to git.s8n.ru (Forgejo) veilor-org 2026-05-06 02:01:06 +0100
  • 89949dc8f2 v0.5.32: ship 7 blockers from 9-agent wave veilor-org 2026-05-05 15:36:24 +0100
  • 8c70030d80 docs(ROADMAP): pivot — v0.6 cancelled, v0.7 BlueBuild OCI is mainline v0.5.0 obsidian-ai 2026-05-06 15:55:08 +0100
  • 89c7df0ecc docs: add PROOF-OF-WORK.md — receipts of work, tooling, and decisions obsidian-ai 2026-05-06 15:51:40 +0100
  • c2b4df8ef9 ci: gate cosign/sbom/attest steps to github only obsidian-ai 2026-05-06 15:41:00 +0100
  • b9df392fbc docs(README): tone down secureblue credit (no code lifted yet) obsidian-ai 2026-05-06 15:38:35 +0100
  • 84fa325e46 docs(README): add secureblue column + upstream credit section obsidian-ai 2026-05-06 15:32:22 +0100
  • 1e4ca2b56b ci: symlink /work -> GITHUB_WORKSPACE for ks %post SRC probe obsidian-ai 2026-05-06 14:58:24 +0100
  • 446c602683 ks: drop apparmor-* packages — not in Fedora 43 repos obsidian-ai 2026-05-06 14:48:06 +0100
  • ac5c29df42 ci: run build directly in Fedora job container, drop addnab nest obsidian-ai 2026-05-06 14:35:44 +0100
  • 6f4842a75c ci: add /work diagnostic before sed-redirect to surface bind/perm issue obsidian-ai 2026-05-06 14:19:13 +0100
  • 4b90e7e00b ci: repin fedora:43 build container to amd64 digest obsidian-ai 2026-05-06 14:10:25 +0100
  • 7a0c665cf0 ci: add --userns=host to nested Fedora build container obsidian-ai 2026-05-06 14:07:22 +0100
  • d38fce4cb8 ci: pin sbom/cosign/attest actions to node20-safe versions obsidian-ai 2026-05-06 13:57:49 +0100
  • 0b568b016b Merge pull request 'ci(bluebuild): pin actions to node20-safe tags' (#9) from feat/runner-fix-node20-pinning into v0.7-bluebuild-spike s8n 2026-05-06 13:54:31 +0100
  • 04aa56a865 ci(bluebuild): pin actions to node20-safe tags claude-veilor-bot 2026-05-06 10:50:24 +0100
  • e50c9a3b43 ci(bluebuild): pin actions to node20-safe tags feat/runner-fix-node20-pinning backup/pre-rename-2026-05-07/feat/runner-fix-node20-pinning obsidian-ai 2026-05-06 10:50:24 +0100
  • 420bc08ecd Merge pull request 'ci(bluebuild): pin blue-build/github-action to commit SHA' (#6) from feat/a1-bluebuild-pin into v0.7-bluebuild-spike s8n-ru 2026-05-06 13:53:15 +0100
  • 9dc2846316 Merge pull request 'ci(bluebuild): pin blue-build/github-action to commit SHA' (#6) from feat/a1-bluebuild-pin into v0.7-bluebuild-spike s8n 2026-05-06 13:53:15 +0100
  • bc738c1c7b Merge pull request 'ci: gate softprops release steps + add Forgejo API equivalents' (#5) from feat/a1-forgejo-ci-adapt into main s8n 2026-05-06 13:53:02 +0100
  • f4ea27271d ci: gate softprops release steps + add Forgejo API equivalents s8n-ru 2026-05-06 10:31:39 +0100
  • a3f6c1a1a6 ci: gate softprops release steps + add Forgejo API equivalents feat/a1-forgejo-ci-adapt backup/pre-rename-2026-05-07/feat/a1-forgejo-ci-adapt s8n 2026-05-06 10:31:39 +0100
  • 8b1b49b5fc Merge pull request 'feat(installer): v0.6 ergonomics + polish — 5 quick wins' (#3) from feat/ux-installer-v06-polish into main s8n-ru 2026-05-06 13:47:35 +0100
  • 356013e1ca Merge pull request 'feat(installer): v0.6 ergonomics + polish — 5 quick wins' (#3) from feat/ux-installer-v06-polish into main s8n 2026-05-06 13:47:35 +0100
  • a125e46c5e Merge pull request 'sec: AppArmor v0.6 stub — load profiles in complain mode' (#11) from feat/sec-apparmor-v06-stubs into main s8n-ru 2026-05-06 13:47:31 +0100
  • 417acb5585 Merge pull request 'sec: AppArmor v0.6 stub — load profiles in complain mode' (#11) from feat/sec-apparmor-v06-stubs into main s8n 2026-05-06 13:47:31 +0100
  • 3d35196a2d Merge pull request 'ci: cosign keyless sigs, SBOM, provenance + fedora digest pin' (#7) from feat/sre-cosign-sbom-attestation into main s8n-ru 2026-05-06 13:47:27 +0100
  • df574e00f5 Merge pull request 'ci: cosign keyless sigs, SBOM, provenance + fedora digest pin' (#7) from feat/sre-cosign-sbom-attestation into main s8n 2026-05-06 13:47:27 +0100
  • 1db860c557 Merge pull request 'ci: pin actions to node20-safe tags + runner sock pass-through' (#8) from feat/runner-fix-docker-sock-and-node20 into main s8n-ru 2026-05-06 13:47:20 +0100
  • 3e660534a1 Merge pull request 'ci: pin actions to node20-safe tags + runner sock pass-through' (#8) from feat/runner-fix-docker-sock-and-node20 into main s8n 2026-05-06 13:47:20 +0100
  • d042552752 Merge pull request 'sec: polish THREAT-MODEL.md for v0.7 public launch' (#10) from feat/sec-threat-model-polish into main s8n-ru 2026-05-06 13:46:58 +0100
  • 749bcef5b4 Merge pull request 'sec: polish THREAT-MODEL.md for v0.7 public launch' (#10) from feat/sec-threat-model-polish into main s8n 2026-05-06 13:46:58 +0100
  • 8221228824 Merge pull request 'docs: test run report skeleton for v0.5.32 (Forgejo build)' (#4) from feat/docs-test-run-v0.5.32 into main s8n-ru 2026-05-06 13:46:12 +0100