Skip to content

Feat/monorepo#3

Merged
fatalerrorist merged 3 commits into
mainfrom
feat/monorepo
Jul 2, 2026
Merged

Feat/monorepo#3
fatalerrorist merged 3 commits into
mainfrom
feat/monorepo

Conversation

@fatalerrorist

Copy link
Copy Markdown
Contributor

What & why

Changes

Checks

  • pnpm build passes (web + server)
  • pnpm --filter @solarch/server test:unit passes (if the server changed)
  • Conventional commit subject, no emojis
  • No secrets or .env files committed

fatalerrorist and others added 3 commits July 1, 2026 16:12
- K1 (critical): escape '$' -> '$$' for compose-interpolated .env values (Basic Auth bcrypt
  hash + Neo4j password) in install.sh/ps1, so Docker Compose no longer corrupts them
  (verified: the container receives a valid bcrypt hash). Fixes D4 too.
- O1: strip U+200B zero-width spaces (translation artifact) -> server lint green.
- O2: downgrade eslint-plugin-react-hooks v7 (React Compiler) advisories to warn -> web lint green.
- O3: web-entrypoint fails closed — a network-exposed instance without full Basic Auth won't start.
- O4: broaden the CI OSS grep gate to scan root config files (docker-compose, .env.example, installers).
- O5: install.ps1 restricts .env ACLs to the current user (chmod 600 parity).
- Docs/ops: whitelist count 32->40, development.md next->vite build, drop dead THROTTLE_* env vars,
  add WARN_COND_001 to the conditional-codes table, fix install.ps1 reset hint, and add a server
  healthcheck so web waits for real readiness.

Verified: pnpm build 2/2, pnpm lint exit 0, server test:unit 820/820, docker compose config +
container env deliver the bcrypt hash intact, OSS grep gate clean.
- Language: replace "OSS" with self-host/source-available wording; drop absolute
  claims (structurally impossible, provably correct, zero hallucinations); add
  license/MDA/AI-tooling FAQ and "what the rules engine does NOT guarantee".
- CI: remove the SaaS-scrub grep from the public workflow (kept as a local
  pre-push hook); add an English-only source gate with an ASCII-Turkish wordlist.
- i18n cleanup: translate remaining Turkish comments, test names, fixtures and
  runtime strings; fix YOK->NONE machine-translation artifacts and broken
  doc comments in main.ts / patterns.repository.ts.
- Fixes: install.ps1/start.ps1 hex ForegroundColor crash; bump deprecated model
  defaults (claude-sonnet-4-6, gemini-3.5-flash); replace hardcoded
  deepseek-v4-pro with the tier mechanism; readable model-unavailable error.
- Hygiene: rename logo asset, drop unused GIFs and zxcvbn deps, soften
  SECURITY.md secrets claim, fail-closed NEO4J_PASSWORD, fix systemd paths,
  hide Neo4j password input, gate vite allowedHosts; BaseChatModel refactor.

Co-authored-by: Cursor <cursoragent@cursor.com>
@fatalerrorist fatalerrorist merged commit af5cb68 into main Jul 2, 2026
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant