Commit graph

  • cc3337502f Add ADR-017 (service-UI acceptance verification, Level 4) sjat 2026-06-05 13:13:09 +02:00
  • be6a064f44 Add implementation plan for service-UI verification (Level 4) sjat 2026-06-05 13:11:43 +02:00
  • 2bd11b5aa9 Add design spec for service-UI verification (ADR-008 Level 4) sjat 2026-06-05 13:05:11 +02:00
  • 5322cce5c6 FRICTION: resolving a deferred decision needs a doc-wide grep sweep sjat 2026-06-05 12:20:20 +02:00
  • cd62c5e098 new-host runbook: mesh VPN resolved to NetBird (ADR-016) sjat 2026-06-05 11:52:22 +02:00
  • ed9fdcc10a CLAUDE.md: link ADR-016 (mesh VPN) sjat 2026-06-05 11:51:36 +02:00
  • 787aa3b8e1 STATUS: record NetBird mesh (coordinator + base enrollment) sjat 2026-06-05 11:50:53 +02:00
  • 841f666de9 CAPABILITIES: VPN decided — NetBird self-hosted (ADR-016) sjat 2026-06-05 11:50:04 +02:00
  • 08165ffb68 accepted-risks: R3 now the concrete NetBird coordinator risk sjat 2026-06-05 11:48:58 +02:00
  • 2ae5cf4535 ADR-015: resolve mesh-VPN deferral — NetBird on askari (ADR-016) sjat 2026-06-05 11:48:04 +02:00
  • 5a32dd46d3 ADR-007: retire VLAN-99 WireGuard for the NetBird mesh (ADR-016) sjat 2026-06-05 11:47:03 +02:00
  • ff796c64ca Add ADR-016 (mesh VPN — NetBird self-hosted on askari) sjat 2026-06-05 11:45:45 +02:00
  • 4b85b14f1f Add implementation plan for NetBird mesh VPN sjat 2026-06-05 11:44:05 +02:00
  • 99ace3eb48 Add design spec for mesh VPN (NetBird self-hosted on askari) sjat 2026-06-05 10:58:35 +02:00
  • a53941dffe CLAUDE.md: fix capabilities doc link after rename to CAPABILITIES.md sjat 2026-06-05 09:50:28 +02:00
  • 7a48a60f14 CLAUDE.md: fix project summary — control node is physical ubongo sjat 2026-06-05 09:49:23 +02:00
  • a30c1af3f0 CLAUDE.md: link ADR-015; note ubongo as physical control node sjat 2026-06-05 09:48:09 +02:00
  • 9653a34241 STATUS: record ubongo control host as designed, not built sjat 2026-06-05 09:47:24 +02:00
  • 55a3666d16 accepted-risks: reserve R3 mesh-VPN coordinator (pending choice) sjat 2026-06-05 09:46:40 +02:00
  • a2db8058e7 rotate-secrets: document offline vault break-glass for ubongo sjat 2026-06-05 09:45:27 +02:00
  • b89ca8835a new-host runbook: control node ubongo is bare-metal sjat 2026-06-05 09:44:31 +02:00
  • 3fb780c286 ADR-012/hardware: add ubongo as physical control node sjat 2026-06-05 09:43:09 +02:00
  • 66064be7b2 ADR-008: tests run on ubongo; stub Level 4 service-UI acceptance sjat 2026-06-05 09:42:01 +02:00
  • 07bc1c83f0 ADR-009: control-node exception is a physical box, not a VM sjat 2026-06-05 09:41:03 +02:00
  • 1064716d49 ADR-005: control node bootstrap is bare-metal Debian on ubongo sjat 2026-06-05 09:40:15 +02:00
  • 15779be086 ADR-001: control node is physical ubongo outside cluster sjat 2026-06-05 09:39:18 +02:00
  • 5aca796fa0 Add ADR-015 (control/AI-worker host ubongo) sjat 2026-06-05 09:37:56 +02:00
  • 4cf4aaa12e Renamed capabilities doc to capital letters to comform with other. chore/ubongo-control-host-docs sjat 2026-06-05 09:36:55 +02:00
  • d96cf9f846 FRICTION: default to subagent-driven execution, don't ask sjat 2026-06-05 09:35:13 +02:00
  • 0e9f179bfc Add implementation plan for ubongo control host sjat 2026-06-05 09:29:10 +02:00
  • c1b21c9b2b Add design spec for ubongo control/AI-worker host sjat 2026-06-05 09:19:02 +02:00
  • fc0d49f1c4 Link ADR-011 from CLAUDE.md Further reading sjat 2026-06-04 21:53:57 +02:00
  • abb5c7a12f Make the Claude Code toolchain reproducible (TODO 10.7) sjat 2026-06-04 21:41:54 +02:00
  • f22ff4b752 Add capabilities overview (docs/capabilities.md) sjat 2026-06-04 20:52:08 +02:00
  • 68a37d51f1 Add ADR-014 (sourcing technical knowledge) sjat 2026-06-04 20:07:18 +02:00
  • 2f4218814a Reconcile image pinning to a tiered tag@digest rule sjat 2026-06-04 19:21:36 +02:00
  • 0e4050fa59 Add ADR-013 (V4 heritage policy); track ADR-011 sjat 2026-06-04 19:07:48 +02:00
  • 3b029352b6 Add per-service SECURITY.md convention; one role per service sjat 2026-06-04 16:09:33 +02:00
  • 19dd89b875 Re-challenge accepted risks; adopt CIS hardening + IDS sjat 2026-06-04 15:15:39 +02:00
  • f338bccd46 Expand ADR-002 into a security baseline + strategy sjat 2026-06-04 14:39:51 +02:00
  • c57910eda8 Log Forgejo no-PR-workflow friction in FRICTION.md sjat 2026-06-01 11:22:26 +02:00
  • e12326148c Note latest.md report mirror in ADR-012 sjat 2026-06-01 10:40:16 +02:00
  • 4c535c908e Record ADR-012 + STATUS/CLAUDE/scripts docs for capacity tooling sjat 2026-06-01 10:34:38 +02:00
  • 1060a9c08a Add /capacity-review skill sjat 2026-06-01 10:32:07 +02:00
  • 05694f6ea4 Complete capacity-scan.py: usage stub, subprocess glue, main() sjat 2026-06-01 10:27:19 +02:00
  • 8ed00c9206 Add hostname parsers + find_drift() to capacity-scan.py sjat 2026-06-01 10:24:11 +02:00
  • b240fa8bfe Add compute_rollup() to capacity-scan.py sjat 2026-06-01 10:21:22 +02:00
  • 07ecbb2789 Add capacity-scan.py with parse_table() sjat 2026-06-01 10:16:50 +02:00
  • 3ea9109ba2 Add hardware reference doc skeleton + reviews dir sjat 2026-06-01 10:14:53 +02:00
  • 6ff5d55810 Add implementation plan for hardware capacity tooling sjat 2026-06-01 10:04:59 +02:00
  • 88210db09c Add hardware reference & capacity-evaluation design spec sjat 2026-06-01 09:59:16 +02:00
  • ed3eeb0199 Log the mid-session hook-activation gotcha in FRICTION.md sjat 2026-05-30 22:19:22 +02:00
  • 80bf9afea9 Add PreToolUse guard hooks: generated-file + rbw vault pre-flight sjat 2026-05-30 22:14:40 +02:00
  • 11af84938d Add kaizen friction log and schedule the kaizen-loop setup sjat 2026-05-30 22:05:40 +02:00
  • 778b581729 Record the Vaultwarden item name for the Forgejo token in ADR-010 sjat 2026-05-30 21:35:24 +02:00
  • 37cece9dbd Add ADR-010 (Forgejo integration) and rbw-unlocked pre-flight convention sjat 2026-05-30 21:34:07 +02:00
  • 905bc92b15 Use local Terraform state; drop unworkable Forgejo HTTP backend (R10b) sjat 2026-05-30 21:34:05 +02:00
  • 0513971f40 Fix Forgejo registry path to owner/image format (review R10a) sjat 2026-05-30 21:34:02 +02:00
  • bf9ce95e1e Fix make new-role: brace expansion fails under dash sjat 2026-05-30 19:35:11 +02:00
  • 1642d1786a Wire Terraform vlan_tag and fix scaffold placeholder (R9,R11) sjat 2026-05-30 19:34:02 +02:00
  • 93f2a847c7 Reconcile CI to trunk-based; mark base/docker_host not-built (R6-R8,R15-R16) sjat 2026-05-30 19:32:37 +02:00
  • bb2179a288 Apply review fixes R12-R14: printf scaffold, phantom control/ dir, Galaxy wording sjat 2026-05-30 19:19:47 +02:00
  • 45ab6ced01 Purge residual .vault_pass references (review R1-R5) sjat 2026-05-30 19:17:25 +02:00
  • 703f1716e5 review-repo: harden scanner, apply safe fixes, record first review sjat 2026-05-30 19:10:58 +02:00
  • de38d1c68b Rename backlog to docs/TODO.md and fix references sjat 2026-05-30 19:01:22 +02:00
  • b33130eea9 Add /review-repo command with deterministic pre-scan and reviews store sjat 2026-05-30 18:56:01 +02:00
  • 5c087b413b Tick off completed README items in backlog sjat 2026-05-30 18:30:02 +02:00
  • 9dc976facc Clarify README scope and Terraform role; explain the boma name sjat 2026-05-30 18:25:50 +02:00
  • 3988fec211 Track discussion backlog (docs/todo.md) sjat 2026-05-30 18:23:19 +02:00
  • 810e6d557b Correct Forgejo host to forgejo.nyumbani.baobab.band sjat 2026-05-30 18:16:38 +02:00
  • 4ee1b66e23 Source vault password from Vaultwarden via rbw; nest vault structure sjat 2026-05-30 18:16:35 +02:00
  • 2dfa8ca9d6 Harden lint setup and clean inventory placeholders sjat 2026-05-30 14:56:16 +02:00
  • 19d93d32dc Add project orientation and contributor docs sjat 2026-05-30 14:10:01 +02:00
  • 9a8181ef18 Add Terraform VM-provisioning skeleton sjat 2026-05-30 14:10:01 +02:00
  • fe4228fb38 Add architecture decision records and runbooks sjat 2026-05-30 14:10:01 +02:00
  • 3f1d7eb128 Add core Ansible scaffold, tooling, and pre-commit guards sjat 2026-05-30 14:10:01 +02:00