rcourtman
|
a885fb5472
|
Surface LXC interface IPs via PVE interfaces API (#596)
|
2025-10-23 08:07:32 +00:00 |
|
rcourtman
|
b95c01066e
|
Capture dynamic LXC IP metrics (#596)
|
2025-10-23 07:50:45 +00:00 |
|
rcourtman
|
be85459db2
|
Add LXC config metadata for guest drawers (#596)
|
2025-10-23 07:30:32 +00:00 |
|
rcourtman
|
c9543e8a7e
|
Add qemu guest agent version metadata
|
2025-10-22 15:24:07 +00:00 |
|
rcourtman
|
57429900a6
|
feat: add adaptive polling scheduler infrastructure (Phase 2 Tasks 1-3)
Implements adaptive scheduling foundation for Phase 2:
- Poll cycle metrics: duration, staleness, queue depth, in-flight counters
- Adaptive scheduler with pluggable staleness/interval/enqueue interfaces
- Config support: ADAPTIVE_POLLING_ENABLED flag + min/max/base intervals
- Feature flag defaults to disabled for safe rollout
- Scheduler wiring into Monitor with conditional instantiation
Tasks 1-3 of 10 complete. Ready for staleness tracker implementation.
|
2025-10-20 15:13:37 +00:00 |
|
rcourtman
|
524f42cc28
|
security: complete Phase 1 sensor proxy hardening
Implements comprehensive security hardening for pulse-sensor-proxy:
- Privilege drop from root to unprivileged user (UID 995)
- Hash-chained tamper-evident audit logging with remote forwarding
- Per-UID rate limiting (0.2 QPS, burst 2) with concurrency caps
- Enhanced command validation with 10+ attack pattern tests
- Fuzz testing (7M+ executions, 0 crashes)
- SSH hardening, AppArmor/seccomp profiles, operational runbooks
All 27 Phase 1 tasks complete. Ready for production deployment.
|
2025-10-20 15:13:37 +00:00 |
|