Sascha Nesterovic

nessi closed issue nessi/NexaPG#12

2026-02-15 10:27:55 +00:00

[NX-202] Enforce Python dependency security gate (pip audit)

nessi commented on issue nessi/NexaPG#12

2026-02-15 10:27:53 +00:00

[NX-202] Enforce Python dependency security gate (pip audit)

NX-202 Completed

Implemented Python dependency vulnerability enforcement in CI with a documented, auditable exception flow.

Delivered Scope

Added dedicated CI workflow for…

nessi pushed to development at nessi/NexaPG

2026-02-15 09:44:37 +00:00

3932aa56f7 [NX-202 Issue] Add pip-audit CI enforcement for Python dependency security

9657bd7a36 Merge branch 'main' of https://git.nesterovic.cc/nessi/NexaPG into development

21a8023bf1 Merge pull request 'Fix CI stability: resolve Docker Scout write/auth issues and harden PG matrix checkout' (#35) from development into main

Compare 3 commits »

nessi pushed to main at nessi/NexaPG

2026-02-15 09:33:58 +00:00

9657bd7a36 Merge branch 'main' of https://git.nesterovic.cc/nessi/NexaPG into development

574e2eb9a5 Ensure valid Docker Hub namespace in release workflow

Compare 2 commits »

nessi pushed to development at nessi/NexaPG

2026-02-15 09:33:23 +00:00

574e2eb9a5 Ensure valid Docker Hub namespace in release workflow

nessi released NexaPG 0.2.3 - Security update at nessi/NexaPG

2026-02-14 22:23:02 +00:00

nessi closed issue nessi/NexaPG#11

2026-02-14 22:18:06 +00:00

[NX-201] Enforce container vulnerability scan gate in CI

nessi commented on issue nessi/NexaPG#11

2026-02-14 22:18:06 +00:00

[NX-201] Enforce container vulnerability scan gate in CI

NX-201 Completed

Implemented CI enforcement to prevent shipping releases with unresolved container risks.

What was delivered

Added container image security scanning for both: …

nessi released NexaPG 0.2.3 - Security update at nessi/NexaPG

2026-02-14 22:14:55 +00:00

nessi pushed tag 0.2.3 to nessi/NexaPG

2026-02-14 22:14:54 +00:00

nessi pushed to main at nessi/NexaPG

2026-02-14 22:12:30 +00:00

21a8023bf1 Merge pull request 'Fix CI stability: resolve Docker Scout write/auth issues and harden PG matrix checkout' (#35) from development into main

328f69ea5e Update GitHub Actions workflows for improved functionality

c0077e3dd8 Add -u root flag to container CVE scan workflow

af6ea11079 Refactor Docker Scout integration in CVE scan workflow

5a7f32541f Add Docker Scout login fallback and temporary caching.

Compare 7 commits »

nessi merged pull request nessi/NexaPG#35

2026-02-14 22:12:28 +00:00

Fix CI stability: resolve Docker Scout write/auth issues and harden PG matrix checkout

nessi created pull request nessi/NexaPG#35

2026-02-14 22:08:41 +00:00

Fix CI stability: resolve Docker Scout write/auth issues and harden PG matrix checkout

nessi pushed to development at nessi/NexaPG

2026-02-14 21:05:01 +00:00

328f69ea5e Update GitHub Actions workflows for improved functionality

nessi pushed to development at nessi/NexaPG

2026-02-14 18:47:37 +00:00

c0077e3dd8 Add -u root flag to container CVE scan workflow

nessi pushed to development at nessi/NexaPG

2026-02-14 18:32:54 +00:00

af6ea11079 Refactor Docker Scout integration in CVE scan workflow

nessi pushed to development at nessi/NexaPG

2026-02-14 18:03:34 +00:00

5a7f32541f Add Docker Scout login fallback and temporary caching.

nessi pushed to development at nessi/NexaPG

2026-02-14 17:55:57 +00:00

dd3f18bb06 Make Docker Scout scans non-blocking and update config paths.

nessi pushed to development at nessi/NexaPG

2026-02-14 17:50:50 +00:00

f4b18b6cf1 Update Docker Hub Scout config to use local login credentials

nessi pushed to main at nessi/NexaPG

2026-02-14 17:45:38 +00:00

a220e5de99 Add Docker Hub authentication for Scout scans

a5ffafaf9e Update CVE scanning workflow to use JSON format and new tools

d17752b611 Add CVE scan workflow for development branch

fe05c40426 Merge branch 'main' of https://git.nesterovic.cc/nessi/NexaPG into development

5a0478f47d harden(frontend): switch to nginx:alpine-slim with non-root runtime and nginx dir permission fixes

Compare 5 commits »