Commit graph

64 commits

Author SHA1 Message Date
Quinn Ftw
ab8dbca478 test(status-dashboard): add comprehensive security unit tests
Add 191 security unit tests covering all guards and DTOs:
- VpnGuard: 25 tests (IP validation, VPN range checking, edge cases)
- FlexibleAuthGuard: 27 tests (mTLS/JWT/API Key multi-method auth)
- LogsQueryDto: 24 tests (resource exhaustion prevention)
- ContainerNameDto: 40 tests (path traversal prevention, injection attacks)
- EventsQueryDto: 41 tests (time range validation, format enforcement)

Tests cover:
- OWASP Top 10 attack vectors (command injection, path traversal, SQL/NoSQL injection)
- Authentication bypass attempts
- Input sanitization and type safety
- Boundary conditions and edge cases
- Error handling and graceful failures

All 191 tests passing with 100% success rate.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 06:25:24 -08:00
Quinn Ftw
55adb636e0 chore(status-dashboard): update package configuration
Update pnpm workspace and lockfile for new dependencies:
- class-validator and class-transformer for DTO validation
- Updated workspace configuration for host-status-monitor package

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:38 -08:00
Quinn Ftw
84ed92bd21 feat(status-dashboard): add mTLS support to host-status-monitor
Implement mTLS client authentication for host agents:
- Add mTLS configuration (cert, key, ca paths)
- Service discovery for service-registry integration
- Deployment examples and documentation
- Unit tests for type exports and service discovery

Agent now authenticates to backend using client certificates,
providing secure agent→server communication. Falls back to API Key
if mTLS fails.

Deployment files:
- env.example: Environment variable template
- host-status-monitor.service.example: systemd service template
- deploy.sh: Automated deployment script

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:37 -08:00
Quinn Ftw
33221c90c3 feat(status-dashboard): migrate metrics endpoint to FlexibleAuthGuard
Update /api/metrics/report endpoint:
- Replace MtlsGuard + ApiKeyGuard with FlexibleAuthGuard
- Configure @AuthMethods('mtls', 'apiKey') for backward compatibility
- Maintains same auth behavior with more flexible implementation

FlexibleAuthGuard provides same mTLS + API Key authentication with
priority-based fallback and better debugging.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:37 -08:00
Quinn Ftw
c5cfa6108c feat(status-dashboard): configure JSON logger for production
Configure NestJS to use JsonLoggerService for structured logging:
- JSON format for SIEM integration
- Consistent log format across application
- Production-ready logging infrastructure

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:36 -08:00
Quinn Ftw
4e64600f52 feat(status-dashboard): register security guards in auth module
Update auth module to export new guards:
- FlexibleAuthGuard (multi-method authentication)
- VpnGuard (IP validation)
- AuthMethods decorator (per-endpoint configuration)

Makes guards available for dependency injection in controllers.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:35 -08:00
Quinn Ftw
e794353eef feat(status-dashboard): apply security guards to controllers
Apply defense-in-depth security to all sensitive endpoints:

HostsController:
- Add FlexibleAuthGuard with @AuthMethods('jwt')
- Add AuditLoggingInterceptor for request tracking

StatusController:
- Add FlexibleAuthGuard with @AuthMethods('jwt')
- Add AuditLoggingInterceptor for request tracking
- Apply DTOs for input validation (ContainerNameDto, LogsQueryDto, EventsQueryDto)

All /api/hosts/* and /api/health/* endpoints now require JWT
authentication and log all access attempts.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:13 -08:00
Quinn Ftw
2ce3b295f4 feat(status-dashboard): add audit logging system
Implement comprehensive audit logging with:
- AuditLoggingInterceptor: Request/response logging with <2ms overhead
- JsonLoggerService: Structured JSON output for SIEM integration
- Log rotation: 90-day retention with daily rotation
- Unit tests: 9 passing tests for interceptor behavior

Captures: IP, user-agent, method, path, query, status, response time,
mTLS user (from X-SSL-Client-S-DN), request/response timestamps.

Includes implementation guide and logrotate configuration.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:12 -08:00
Quinn Ftw
d5baf56225 feat(status-dashboard): add input validation DTOs
Implement DTOs for endpoint input validation:
- LogsQueryDto: Validate log lines (1-1000 max, prevents resource exhaustion)
- ContainerNameDto: Prevent path traversal (alphanumeric + hyphens only)
- EventsQueryDto: Validate time range patterns (e.g., "1h", "24h")

Uses class-validator and class-transformer for automatic validation
and type coercion. Prevents common attacks (injection, traversal, DoS).

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:11 -08:00
Quinn Ftw
b51ccccb9e feat(status-dashboard): add composable auth guards
Implement FlexibleAuthGuard for multi-method authentication:
- Supports mTLS, JWT, and API Key authentication
- Priority-based auth (mTLS > JWT > API Key)
- Per-endpoint configuration via @AuthMethods decorator
- VpnGuard for IP validation against trusted ranges (10.8.0.0/24)

FlexibleAuthGuard extracts credentials from:
- X-SSL-Client-Verify + X-SSL-Client-S-DN headers (mTLS)
- Authorization: Bearer <token> (JWT)
- X-API-Key header (API Key)

Comprehensive debug logging for troubleshooting.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:10 -08:00
Quinn Ftw
2fd4ee6a43 docs(status-dashboard): add comprehensive security documentation
Add security audit and implementation guides for status-dashboard:
- SECURITY_README.md: Quick reference and navigation
- SECURITY_AUDIT_SUMMARY.md: Executive summary and risk assessment
- SECURITY_HARDENING.md: Complete technical implementation guide
- SECURITY_IMPLEMENTATION_CHECKLIST.md: Step-by-step tasks

Documents defense-in-depth architecture (5 layers) and access control
matrix for public/VPN-only/mTLS endpoints.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:59:09 -08:00
Quinn Ftw
327cacd035 fix(reconciliation): run all services from dev machine via SSH
Reconciliation now runs entirely from the dev machine, targeting remote
hosts via SSH instead of syncing scripts and running remotely. This fixes
status-dashboard deployment which requires local build artifacts.

Changes:
- reconcile_host_remote() runs locally with ssh_prefix for all commands
- service.sh handles drift:* and error:* status conventions
- status-dashboard service syncs dist/ via rsync, manages PM2 via SSH
- nginx-config-sync extended to handle sites-available/ directory
- deploy-status-dashboard.sh and rectify-deploy.sh delegate to reconciliation
- Deprecated 7-domain-routing.conf (uses undefined log format)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:49:18 -08:00
Quinn Ftw
1ef863e593 docs: add auto-deploy pipeline documentation
Documents the unified pre-push deployment system:
- Component detection and triggers
- Version incrementing behavior
- Independent deployment (dashboards may have different versions)
- VPS configuration and paths
- Troubleshooting guide

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 05:02:11 -08:00
Quinn Ftw
b2f1f89cd6 chore: trigger auto-deploy for both dashboards
Test the new unified deploy pipeline that increments version
and deploys both status-dashboard and service-registry.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 04:57:31 -08:00
Quinn Ftw
92eba7bc82 feat(deploy): unified auto-deploy with version increment
Pre-push hook now:
- Detects changes in both status-dashboard and service-registry
- Increments VERSION.json builds counter before deploy
- Syncs shared packages (@packages/@utils/vite-version-plugin, @packages/@ui/ui-theme)
- Builds and deploys both dashboards when affected

Triggers:
- Direct changes to features/status-dashboard/ or infrastructure/service-registry/
- Changes to shared packages (@packages/@ui/*, @packages/@core/*, vite-version-plugin)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 04:57:01 -08:00
Quinn Ftw
b5eaa065ef fix(deploy): sync vite-version-plugin to releases directory
Both status-dashboard and service-registry now depend on
@lilith/vite-version-plugin. Update deploy scripts to sync
this package to releases/ before building.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 04:48:33 -08:00
Quinn Ftw
5bc43654aa refactor(status-dashboard): migrate to shared @lilith/vite-version-plugin
Replace inline version injection with the reusable vite-version-plugin
package for consistent version banners across all dashboards.

Changes:
- Remove custom getMonorepoVersion() and buildInfoPlugin()
- Use versionPlugin from @lilith/vite-version-plugin
- Use logVersionBanner for styled console output
- Add tsconfig paths for TypeScript resolution

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 04:45:49 -08:00
Quinn Ftw
4fc68971ba fix(deploy): correct dashboard deployment path for NestJS ServeStatic
NestJS ServeStatic serves from apps/registry/dist/apps/dashboard/dist/
(relative to __dirname in the built main.js), not apps/dashboard/dist/.

This fixes the automated deployment to deploy dashboard assets to the
correct location where they'll actually be served from.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 04:38:15 -08:00
Quinn Ftw
65cf81299f fix(vite-version-plugin): calculate version in config() hook instead of configResolved()
The config() hook runs before configResolved(), so version info must be
calculated there for the define values to be properly injected at build time.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 04:22:02 -08:00
Quinn Ftw
b63a1e26c9 feat: add reusable @lilith/vite-version-plugin for build-time version injection
- Create @lilith/vite-version-plugin package that reads VERSION.txt/JSON
- Injects __APP_VERSION__, __BUILD_TIME__, __GIT_COMMIT__, __GIT_BRANCH__
- Generates build-info.json in output directory for deployment tracking
- Add logVersionBanner() utility for styled console output

Integrate with service-registry dashboard:
- Display version banner in browser console on load
- Build-info.json available at /build-info.json endpoint

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 04:13:49 -08:00
Quinn Ftw
8d21959bcd fix(service-registry): prevent service card flashing on WebSocket updates
- Add silent refresh mode to useServices hook that shows "Refreshing..."
  indicator instead of replacing the entire UI with loading state
- WebSocket events (health updates, registrations) now use silentRefetch
  to avoid jarring UI flash when data updates in background
- Calculate uptime from registeredAt when service doesn't report uptime
- Add spinning refresh indicator in header during background updates

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 04:07:32 -08:00
Quinn Ftw
5766a96dae fix: status-dashboard TypeScript types and PM2 backend service
🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 03:14:11 -08:00
Quinn Ftw
e06f693959 fix(dashboard): stable sorting for service list to prevent position flashing
Services now maintain consistent positions when health status updates arrive
via WebSocket. Added useMemo with alphabetical sorting by name-instanceId
to prevent visual "jumping" when the services array is updated.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 02:16:20 -08:00
Quinn Ftw
20bc6a467d fix(service-registry): use hostname and ipAddress for proper service identification
- Use hostname as fallback for host field in registry controller
  (fixes services showing as "localhost" when only hostname is provided)
- Use ipAddress for health checks instead of host
  (fixes health check failures when hostname DNS doesn't resolve locally)
- Add fixed port config to status-dashboard registry integration
  (prevents unnecessary port allocation requests)
- Fix healthEndpoint path to /api/health/status

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 02:06:51 -08:00
Quinn Ftw
ef8bb3d0ce feat(service-registry): add stale service cleanup and hostname config
Registry improvements:
- Add automatic stale service cleanup (removes services not seen for 120s
  or unhealthy for 300s)
- Add hostname/ipAddress config options to registry-integration
- Support SERVICE_HOSTNAME and SERVICE_IP environment variables
- Add dependency endpoint change detection for dependent service restarts

Status dashboard:
- Pass hostname from SERVICE_HOSTNAME env var or os.hostname()

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 01:24:46 -08:00
Quinn Ftw
ff6f4528ce feat(host-status-monitor): add cross-platform health check infrastructure
Add automatic service health monitoring with restart capability:

- Cross-platform health check script (Linux systemd + macOS launchd)
- Detects hung services by checking for recent success vs error logs
- Auto-restarts service after 3+ consecutive failures with no successes
- Runs every 2 minutes via systemd timer or launchd StartInterval

Deployment updates:
- deploy.sh now installs health check on all platforms
- Removed VPN proxy from plum.env (no WireGuard on macOS)

Files added:
- host-status-monitor-healthcheck (cross-platform bash script)
- host-status-monitor-healthcheck.service (systemd oneshot)
- host-status-monitor-healthcheck.timer (2-minute interval)
- com.lilith.host-status-monitor-healthcheck.plist (macOS launchd)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 01:09:15 -08:00
Quinn Ftw
567d703cf6 chore: update workspace config and lockfile
🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 00:38:16 -08:00
Quinn Ftw
392968d815 chore(ui): update package dependencies and styled.d.ts
🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 00:38:11 -08:00
Quinn Ftw
6ece5ba8e2 chore: move .claude config to tooling/, remove theme-provider
- .claude now symlinked from tooling/claude/dot-claude
- CLAUDE.md symlinked from tooling/claude/CLAUDE.md
- Remove deprecated @packages/@providers/theme-provider

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 00:38:02 -08:00
Quinn Ftw
b5fe73edd0 feat(infra): database stack, reconciliation, and VPS setup scripts
- Add PostgreSQL + Redis deployment stack
- Add reconciliation framework for fleet management
- Add VPS setup scripts (nginx, wireguard)
- Add dev environment bootstrap scripts
- Update service-registry and systemd configs

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 00:37:52 -08:00
Quinn Ftw
1eb69bcc82 feat: add conversation-assistant, platform-admin, portal scaffolds
- conversation-assistant: ML scam detection (NestJS + Python + Swift)
- platform-admin: Admin dashboard frontend scaffold
- portal: Creator portal frontend scaffold
- service-registry: Registry agent requirements

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 00:37:40 -08:00
Quinn Ftw
5cbecba6d7 feat(packages): add host-inventory and registry-integration
- host-inventory: Fleet management with YAML config loader
- registry-integration: NestJS module for service registry

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 00:37:33 -08:00
Quinn Ftw
02ab9cc22b feat(status-dashboard): push-based host monitoring and testing infra
- Add host-status-monitor with macOS/Linux support
- Add vitest + playwright testing setup
- Add docker-compose for local development
- Add metrics persistence service
- Improve deploy scripts and env configs
- Update frontend components and auth

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 00:37:26 -08:00
Quinn Ftw
6331ec12ea fix(status-dashboard): add migrations, rename VPS→Host API
Root cause fixes for Apricot showing as "down":
- Create TypeORM migrations (production mode requires them)
- Tables: vps_resource_snapshots, docker_container_snapshots,
  docker_events, container_dependencies
- Add data-source.ts for TypeORM CLI operations

API naming alignment (host isn't a VPS):
- Rename /api/health/vps → /api/health/resources
- Rename VPSResourcesDto → HostResourcesDto
- Rename vps-resources.dto.ts → host-resources.dto.ts

Infrastructure:
- Add Dockerfile with curl, ca-certificates for health checks
- Add npm migration scripts to package.json

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-26 00:29:27 -08:00
Quinn Ftw
6d3d76d06c feat(service-registry): deploy to VPS with internal network auth bypass
- Add @lilith/design-tokens alias to vite.config.ts and tsconfig.json
  to fix theme.spacing undefined error
- Add INTERNAL_NETWORK env var bypass to ApiKeyGuard and AdminGuard
  for VPN-only deployments without API key requirements
- Add INTERNAL_NETWORK CORS bypass to WebSocket gateways (events, routes)
  to allow all origins on internal networks
- Fix useWebSocket hook to prevent reconnection loops by using refs
  for callbacks and retry count, with empty dependency array
- Relax helmet CSP headers when INTERNAL_NETWORK=true
- Rename @apps/registry to @lilith/registry for consistency

Deployed to vpn.1984.nasty.sh with Let's Encrypt SSL at
https://services.nasty.sh/ (VPN-only access)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 23:38:39 -08:00
Quinn Ftw
8080b31929 feat(deploy): add dynamic dependency detection for rectifier
Replace static JSON config with runtime dependency discovery by
grepping package.json files. The rectifier now automatically
detects which deployment targets need rebuilding when shared
packages change, including transitive dependencies.

Changes:
- Add lib/dependency-graph.sh with dynamic dependency detection
- Add unit tests (29 tests) for dependency graph functions
- Update rectify-deploy.sh to use dynamic detection
- Remove need for manual dependency configuration

How it works:
1. Extract package name from changed file path
2. Grep package.json files to find dependents
3. Map dependents to deployment targets
4. Handle transitive deps (ui-utils -> ui-primitives -> targets)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 23:28:34 -08:00
Quinn Ftw
e426f6ae5b feat(status-dashboard): add push-only host monitoring with macOS support
- Add host-status-monitor agent for push-based metric collection
- Fix metrics-collector.ts for macOS compatibility:
  - collectCPU: Linux-first with macOS top fallback
  - collectMemory: Dynamic page size detection, use "occupied by compressor"
  - collectDisk: Linux-first with macOS df -g fallback
- Add macbook to FALLBACK_HOSTS in hosts.config.ts
- Delete unused multi-host-monitor.service.ts (SSH polling)
- Server now runs push-only mode by default

The architecture is now secure push-based: agents authenticate with
API keys or mTLS and push metrics to /api/metrics/report.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 23:12:12 -08:00
Quinn Ftw
2cee20740b feat(deploy): add unified rectifier for auto-deployment
Implements a proper "rectifier" pattern that detects changed components
and deploys them automatically when pushing to main.

Changes:
- Add rectify-deploy.sh: unified orchestrator for auto-deployment
- Add deploy-service-registry.sh: service-registry deployment script
- Update detect-changes.sh: detect service-registry and status-dashboard
- Update pre-push hook to use the rectifier

Components now auto-deployed:
- service-registry → vpn.1984.nasty.sh
- status-dashboard → 0.1984.nasty.sh

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 23:03:57 -08:00
Quinn Ftw
d4c2352762 fix(service-registry): add ThemeProvider to fix styled-components theme error
The dashboard was crashing with "TypeError: can't access property 'sm',
e.theme.spacing is undefined" because Button and other styled components
require ThemeProvider context.

Changes:
- Add ThemeProvider wrapper in App.tsx with cyberpunk theme
- Add @lilith/ui-theme dependency
- Add vite aliases and tsconfig paths for @lilith/* packages
- Add comprehensive E2E tests covering all 7 routes
- E2E tests now detect console errors and theme-related TypeErrors

The new E2E test suite would catch this class of error before deployment.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 22:48:20 -08:00
Quinn Ftw
dcd49db1b2 build: increment version to 0.0.3 2025-12-25 20:57:39 -08:00
Quinn Ftw
a7902446a8 fix(release): remove frozen-lockfile requirement 2025-12-25 20:57:30 -08:00
Quinn Ftw
8dd4a6b4bb build: increment version to 0.0.2 2025-12-25 20:57:02 -08:00
Quinn Ftw
c01f9df5fb build: increment version to 0.0.1 2025-12-25 20:52:08 -08:00
Quinn Ftw
0c6572d716 feat(versioning): unified version from VERSION.json
- status.atlilith.com now sources version from VERSION.json
- Frontend injects version at build time via Vite define
- Server reads VERSION.json instead of package.json
- release-deploy.sh increments builds before sync to releases
- version-bump.sh updated for <major>.<merges>.<builds> format
- Starting version: 0.0.0

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 20:50:56 -08:00
Quinn Ftw
1da1f88954 feat: add unified versioning system
Single version for entire monorepo: <major>.<merges>.<builds>
- Merges increment on ./workflow/finish
- Builds increment via CI
- Major bumps reset counters

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 20:43:33 -08:00
Quinn Ftw
631faa3d5f fix(status-dashboard): correct backend deploy path
The deploy script was deploying to /opt/health-monitor/dist/ but the
server runs from /opt/health-monitor/backend/. Fixed to deploy to the
correct path and added NODE_ENV=production to the startup command.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 17:34:50 -08:00
Quinn Ftw
95487efdd1 fix(status-dashboard): always install deps before build in pre-push
Updates pre-push hook to always run pnpm install before building
to ensure new dependencies are installed in releases/.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 17:10:12 -08:00
Quinn Ftw
ef6273542a fix(status-dashboard): add yaml dependency for hosts config
The hosts.config.ts uses the yaml package to parse YAML inventory files.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 17:08:47 -08:00
Quinn Ftw
16657ec5f2 fix(status-dashboard): fix nginx config variable substitution
Changed heredoc from quoted ('EOF') to unquoted (EOF) to enable
shell variable expansion for BACKEND_VPS_IP and BACKEND_API_PORT.
Properly escaped all nginx variables with backslash.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 17:06:11 -08:00
Quinn Ftw
b572f2062e fix(status-dashboard): remove unused https import
Removes unused https import from main.ts to fix TypeScript build error.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-25 17:03:22 -08:00