Pulse

vrr/Pulse

mirror of https://github.com/rcourtman/Pulse.git synced 2026-05-20 09:23:27 +00:00

Author	SHA1	Message	Date
rcourtman	d91c2afedb	Fail closed dry-run action execution	2026-05-05 09:22:04 +01:00
rcourtman	53a928ee2d	Prevent contact-email principal takeover	2026-05-05 09:19:29 +01:00
rcourtman	fe30ecc81e	Fix TrueNAS CORE agent supervisor restart Refs #1457	2026-05-05 09:13:03 +01:00
rcourtman	235e7343b2	Align AI action audits with execution lifecycle	2026-05-04 23:35:39 +01:00
rcourtman	82a2494ffa	Add action execution safety contract	2026-05-04 23:19:58 +01:00
rcourtman	ea0b20cd19	Use strict org principals for runtime access	2026-05-04 23:16:15 +01:00
rcourtman	002d68cef7	Require stored principal for checkout magic links	2026-05-04 23:06:47 +01:00
rcourtman	2040285085	Add action decision API	2026-05-04 22:56:55 +01:00
rcourtman	adaad70077	Canonicalize legacy hosted signup principals	2026-05-04 22:52:00 +01:00
rcourtman	7af1276c3b	Fail closed on blank magic-link principals	2026-05-04 22:43:35 +01:00
rcourtman	2fa271bbe9	Fix storage primary issue impact handling Refs #423	2026-05-04 18:42:09 +01:00
rcourtman	0bfed25e45	docs: clarify agent privilege guidance Refs #1453	2026-05-04 18:04:04 +01:00
rcourtman	9cddb49dd5	Fail closed on hosted handoff identity	2026-05-04 09:47:54 +01:00
rcourtman	1a9fa936ee	Fix release key helper module path	2026-05-04 09:44:41 +01:00
rcourtman	fdb9ad17f6	Use stable hosted signup owner ids	2026-05-04 09:33:19 +01:00
rcourtman	9291ee2999	Persist action plans in audit trail	2026-05-04 09:30:57 +01:00
rcourtman	77ecba07b7	Fail closed on hosted owner email fallback	2026-05-04 09:20:52 +01:00
rcourtman	e3c1dad256	Hide public demo admin reads	2026-05-04 09:14:09 +01:00
rcourtman	c436e1a2a2	Add CLI fleet connection reads	2026-05-04 08:40:34 +01:00
rcourtman	3953554ae1	Bind owner identity across token minting	2026-05-04 00:50:14 +01:00
rcourtman	c874da9ab8	Reserve API token owner metadata	2026-05-04 00:30:09 +01:00
rcourtman	863f214c10	Add CLI action audit reads	2026-05-04 00:18:19 +01:00
rcourtman	2c96242487	Use stable SSO principals Derive OIDC and SAML browser-session principals from provider-scoped subjects instead of mutable username or email claims. Preserve compatibility by migrating legacy username/email RBAC assignments to the stable SSO principal when no authoritative group mapping is present, and pin the invariant in API/security contracts.	2026-05-04 00:16:31 +01:00
rcourtman	f0bf88a89d	Add CLI action capability discovery	2026-05-04 00:10:15 +01:00
rcourtman	5fbe723ad9	Add CLI action planning adapter	2026-05-04 00:05:21 +01:00
rcourtman	7829c3e6ed	Pin hosted identity invariants Resolve hosted magic-link verification through current organization membership so sessions bind to the stored stable user principal instead of token email. Add the v6 identity invariant contract and static guards covering hosted handoff, checkout, provisioning, and magic-link boundaries.	2026-05-03 23:58:08 +01:00
rcourtman	b11f57ed62	Add API-first action planning endpoint	2026-05-03 23:51:54 +01:00
rcourtman	3e497ecb70	Harden hosted tenant identity keys Use stable control-plane user IDs as hosted tenant organization principals while preserving email as contact metadata and legacy fallback. Cloud handoff sessions now bind to the signed subject instead of email, seeded tenant orgs store owner/member email separately from durable user IDs, and the subsystem contracts pin that boundary.	2026-05-03 23:28:26 +01:00
rcourtman	d994a7a60d	Resolve agent-ready operations target scope	2026-05-03 23:27:49 +01:00
rcourtman	4f75542e50	Record agent-ready operations proof gap	2026-05-03 23:23:10 +01:00
rcourtman	db97478566	Reduce metrics rollup write amplification Refs #1124	2026-05-03 21:43:20 +01:00
rcourtman	f1744d36d0	Refresh RC3 packet for metrics proof fix	2026-05-03 16:38:00 +01:00
rcourtman	f69e68d4a4	Refresh RC3 packet for stable installer fix	2026-05-03 16:18:56 +01:00
rcourtman	c27814d190	Fix stable installer prerelease selection Refs #1435	2026-05-03 15:20:18 +01:00
rcourtman	6459515c78	Refresh RC3 packet for SSO candidate commits	2026-05-03 15:09:42 +01:00
rcourtman	82c54cc39b	Make self-hosted SSO Community-tier Treat OIDC, SAML, and multi-provider SSO as included Community capabilities while retaining advanced_sso as a compatibility key. Remove SAML-specific paywalls and paid-upgrade copy from runtime, settings UI, entitlement snapshots, docs, journey proof, and subsystem contracts. Refs #1449	2026-05-03 12:48:01 +01:00
rcourtman	7e9a7a3fd4	Document RC3 commit coverage audit	2026-05-03 11:52:51 +01:00
rcourtman	9ba0c3fa96	Retry release asset uploads	2026-05-03 10:26:51 +01:00
rcourtman	694e746a3b	Fix storage summary responsiveness	2026-05-02 07:49:32 +01:00
rcourtman	54378a14e5	Fix release validation draft metadata preservation	2026-05-02 02:01:57 +01:00
rcourtman	011d288cb4	Fix release asset validation workflow gates	2026-05-02 00:36:54 +01:00
rcourtman	c8e24f06d7	Fix clean VCS metadata for release builds	2026-05-01 23:12:41 +01:00
rcourtman	7d7b83bf45	Fix header audit after Dashboard retirement	2026-05-01 20:40:36 +01:00
rcourtman	2c3ece3e51	Prepare v6.0.0-rc.3 release packet	2026-05-01 20:28:12 +01:00
rcourtman	df1a983540	Offset summary chart hover tooltips Refs #1452	2026-05-01 20:28:12 +01:00
rcourtman	fe597554c3	Fix backup orphan inventory readiness Refs #1352	2026-05-01 20:28:12 +01:00
rcourtman	61cd902ded	Fix Docker update alert disable cleanup Refs #1355	2026-05-01 20:28:12 +01:00
rcourtman	361f289485	Fix alert threshold metric coloring Refs #1358	2026-05-01 20:28:12 +01:00
rcourtman	67f2ce5dc2	Preserve PVE authorized_keys symlinks in setup scripts Refs #1297	2026-05-01 20:28:11 +01:00
rcourtman	e66fd1b976	Record v5.1.29 RC3 delta triage Document the continued RC3 issue/discussion sweep after v5.1.29 publication, including the current latest-release state, newest public threads, and confirmation that the remaining v5 maintenance fixes are already covered in v6.	2026-05-01 20:28:11 +01:00

1 2 3 4 5 ...

2147 commits