rcourtman
c9543e8a7e
Add qemu guest agent version metadata
2025-10-22 15:24:07 +00:00
rcourtman
f8b6aa6c97
Treat 501 responses as non-fatal in cluster failover ( #449 )
2025-10-22 14:23:13 +00:00
rcourtman
7d422d2909
feat: add professional logging with runtime configuration and performance optimization
...
Implements structured logging package with LOG_LEVEL/LOG_FORMAT env support, debug level guards for hot paths, enriched error messages with actionable context, and stack trace capture for production debugging. Improves observability and reduces log overhead in high-frequency polling loops.
2025-10-20 15:13:38 +00:00
rcourtman
524f42cc28
security: complete Phase 1 sensor proxy hardening
...
Implements comprehensive security hardening for pulse-sensor-proxy:
- Privilege drop from root to unprivileged user (UID 995)
- Hash-chained tamper-evident audit logging with remote forwarding
- Per-UID rate limiting (0.2 QPS, burst 2) with concurrency caps
- Enhanced command validation with 10+ attack pattern tests
- Fuzz testing (7M+ executions, 0 crashes)
- SSH hardening, AppArmor/seccomp profiles, operational runbooks
All 27 Phase 1 tasks complete. Ready for production deployment.
2025-10-20 15:13:37 +00:00
rcourtman
7e5fa9a147
fix: restore cache-aware node memory on PVE 8.4
2025-10-14 16:40:45 +00:00
rcourtman
f46ff1792b
Fix settings security tab navigation
2025-10-11 23:29:47 +00:00
