fix(roles): make member-role assignment idempotent
Some checks failed
Security Audit / Gitleaks (Secrets) (pull_request) Successful in 7s
Security Audit / PNPM Audit (JS SCA) (pull_request) Failing after 13s
Security Audit / Trivy (SCA & IaC) (pull_request) Failing after 16s
CI / Client — test & lint (pull_request) Successful in 44s
Security Audit / Semgrep (SAST) (pull_request) Failing after 1m3s
CI / Server — test & lint (pull_request) Successful in 2m52s
Security Audit / Cargo Audit (Rust SCA) (pull_request) Failing after 4m8s
area:core
type:bug
fix: domain-separate auth signatures, enable CSP, harden key export (#76)
Some checks failed
Security Audit / Gitleaks (Secrets) (pull_request) Successful in 7s
Security Audit / PNPM Audit (JS SCA) (pull_request) Failing after 16s
Security Audit / Trivy (SCA & IaC) (pull_request) Failing after 19s
CI / Client — test & lint (pull_request) Successful in 38s
Security Audit / Semgrep (SAST) (pull_request) Failing after 1m3s
CI / Server — test & lint (pull_request) Successful in 5m18s
Security Audit / Cargo Audit (Rust SCA) (pull_request) Failing after 6m51s
area:core
type:bug
fix(gateway): bound per-connection send queue to prevent memory DoS
Some checks failed
CI / Client — test & lint (pull_request) Successful in 1m4s
Security Audit / Trivy (SCA & IaC) (pull_request) Failing after 22s
Security Audit / PNPM Audit (JS SCA) (pull_request) Failing after 31s
Security Audit / Gitleaks (Secrets) (pull_request) Successful in 8s
Security Audit / Semgrep (SAST) (pull_request) Failing after 1m1s
CI / Server — test & lint (pull_request) Successful in 7m20s
Security Audit / Cargo Audit (Rust SCA) (pull_request) Failing after 9m26s
area:api
type:bug
fix(server): bound request body size to prevent upload memory DoS
Some checks failed
Security Audit / PNPM Audit (JS SCA) (pull_request) Failing after 27s
Security Audit / Trivy (SCA & IaC) (pull_request) Failing after 12s
Security Audit / Gitleaks (Secrets) (pull_request) Successful in 15s
CI / Client — test & lint (pull_request) Successful in 1m4s
Security Audit / Semgrep (SAST) (pull_request) Failing after 1m24s
CI / Server — test & lint (pull_request) Successful in 6m56s
Security Audit / Cargo Audit (Rust SCA) (pull_request) Failing after 9m1s
area:api
type:bug
fix(auth): make founding-admin bootstrap atomic
Some checks failed
Security Audit / Gitleaks (Secrets) (pull_request) Successful in 10s
Security Audit / PNPM Audit (JS SCA) (pull_request) Failing after 23s
Security Audit / Trivy (SCA & IaC) (pull_request) Failing after 25s
Security Audit / Semgrep (SAST) (pull_request) Failing after 57s
CI / Client — test & lint (pull_request) Successful in 1m12s
CI / Server — test & lint (pull_request) Successful in 4m53s
Security Audit / Cargo Audit (Rust SCA) (pull_request) Failing after 8m16s
area:api
type:bug
fix(sessions): hash tokens at rest and revoke on ban/kick
Some checks failed
Security Audit / Gitleaks (Secrets) (pull_request) Successful in 9s
CI / Client — test & lint (pull_request) Successful in 39s
Security Audit / PNPM Audit (JS SCA) (pull_request) Failing after 42s
Security Audit / Trivy (SCA & IaC) (pull_request) Failing after 48s
Security Audit / Semgrep (SAST) (pull_request) Failing after 1m31s
Security Audit / Cargo Audit (Rust SCA) (pull_request) Failing after 4m19s
CI / Server — test & lint (pull_request) Successful in 4m52s
area:api
type:bug
fix(auth): enforce read-only sessions on all write routes
Some checks failed
CI / Client — test & lint (pull_request) Failing after 3s
CI / Server — test & lint (pull_request) Failing after 5s
Security Audit / PNPM Audit (JS SCA) (pull_request) Failing after 5s
Security Audit / Cargo Audit (Rust SCA) (pull_request) Failing after 6s
Security Audit / Semgrep (SAST) (pull_request) Failing after 8s
Security Audit / Trivy (SCA & IaC) (pull_request) Failing after 12s
Security Audit / Gitleaks (Secrets) (pull_request) Failing after 12s
area:api
type:bug
fix(roles): prevent privilege escalation via role permissions
Some checks failed
Security Audit / Gitleaks (Secrets) (pull_request) Successful in 36s
Security Audit / Trivy (SCA & IaC) (pull_request) Failing after 1m1s
Security Audit / PNPM Audit (JS SCA) (pull_request) Failing after 1m6s
Security Audit / Cargo Audit (Rust SCA) (pull_request) Failing after 22m33s
Security Audit / Semgrep (SAST) (pull_request) Failing after 22m35s
CI / Client — test & lint (pull_request) Failing after 22m35s
CI / Server — test & lint (pull_request) Failing after 22m35s
area:api
type:bug