blumeops

History

Erich Blume 2daf6291b7 Replace dead Prowler IaC mutelist with Trivy ignorefile shim Prowler's IaC provider hardcodes self._mutelist = None and delegates filtering to Trivy, but doesn't plumb --ignorefile through. The original attempt with --mutelist-file silently no-op'd. Add a wrapper around trivy in our image that injects --ignorefile $TRIVY_IGNOREFILE on `fs` subcommands; switch the IaC cronjob to mount a Trivy-format trivyignore.yaml and set the env var. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>		2026-04-28 09:50:31 -07:00
..
changelog.d	Replace dead Prowler IaC mutelist with Trivy ignorefile shim	2026-04-28 09:50:31 -07:00
explanation	Update docs for Caddy routing and direct WireGuard peering	2026-04-18 09:57:30 -07:00
how-to	C0: split gandi-operations docs; add dns-acme-cleanup mise task	2026-04-27 09:48:46 -07:00
reference	C0: split gandi-operations docs; add dns-acme-cleanup mise task	2026-04-27 09:48:46 -07:00
tutorials	Review contributing tutorial: add last-reviewed, .ai.md fragment type, prek provenance	2026-04-21 08:53:41 -07:00
index.md	Fix spider trap: disable SPA mode, remove index files, relax wiki-links (#290 )	2026-03-09 11:59:43 -07:00
quartz.config.ts	Fix spider trap: disable SPA mode, remove index files, relax wiki-links (#290 )	2026-03-09 11:59:43 -07:00
quartz.layout.ts	Expose Forgejo publicly at forge.eblu.me (#278 )	2026-03-03 08:40:41 -08:00