cronekorkn

0 followers · 0 following

• Joined on 2021-06-13

Repositories

22

Projects Packages Code Public activity Starred repositories

cronekorkn pushed to master at cronekorkn/left4me 2026-05-08 16:50:34 +02:00

ae443299c8 chore(deploy): drop bubblewrap apt dep + tighten left4me.db mode

4ee8f6af44 refactor(deploy): rewrite left4me-script-sandbox to systemd-only — drop bwrap

efaaf84cd9 docs(specs): script sandbox v2 — systemd-only design + plan

Compare 3 commits »

cronekorkn pushed to master at cronekorkn/left4me 2026-05-08 16:20:10 +02:00

a62f26ba4a fix(l4d2-web): normalize CRLF to LF in script overlay POST

cronekorkn pushed to master at cronekorkn/left4me 2026-05-08 16:18:01 +02:00

908bca3687 fix(l4d2-web): ScriptBuilder — chmod script tmpfile to 0644 for sandbox read

cronekorkn pushed to master at cronekorkn/left4me 2026-05-08 16:16:34 +02:00

cf865d4915 fix(deploy): one-shot cleanup of orphan overlay dirs after globals removal

cronekorkn pushed to master at cronekorkn/left4me 2026-05-08 16:12:47 +02:00

06ae84fbe4 fix(deploy): script-sandbox helper — UID drop via systemd-run, --unshare-user-try, /etc/alternatives

cronekorkn pushed to master at cronekorkn/left4me 2026-05-08 15:57:37 +02:00

1e62a44c16 docs(deploy): replace globals overlay description with script overlays

e51a4d58a4 chore(deploy): provision l4d2-sandbox + bubblewrap; drop globals refresh timer

75e703e1a4 feat(deploy): left4me-script-sandbox helper + sudoers fragment

d351bcbee5 feat(l4d2-web): script overlay UI

be22744d54 feat(l4d2-web): script overlay routes (script update / wipe / build)

Compare 10 commits »

cronekorkn pushed to master at cronekorkn/left4me 2026-05-08 13:34:00 +02:00

9985ecc56c chore(deploy): cleanup left4me-web hardening + docs for kernel overlayfs

172e574a00 chore(deploy): drop fuse-overlayfs apt dep + one-shot migrate upper/work

93a60befb6 refactor(l4d2-host): start/stop/delete go through OverlayMounter; drop fuse module

d5b321b557 feat(l4d2-host): KernelOverlayFSMounter + left4me-overlay helper

db120d77d3 docs(specs): kernel overlayfs migration design + plan

Compare 9 commits »

cronekorkn pushed to master at cronekorkn/left4me 2026-05-08 08:05:22 +02:00

92d6ebbe82 feat(l4d2-web): managed global map overlays with daily refresh

4f78574edd fix(l4d2-web): keep workshop refresh responsive

0e83ee07d7 fix(deploy): make test deployments safe to rerun

Compare 3 commits »

cronekorkn pushed to master at cronekorkn/left4me 2026-05-07 17:00:05 +02:00

b2a8d3d5e0 feat(deploy): workshop_cache provisioning

ac020d1e77 feat(l4d2-web): initialize-time guard for uncached workshop items

df1ccb4cca feat(l4d2-web): workshop overlay UI (routes + templates)

38a6fbbe1e feat(l4d2-web): worker support for build_overlay and refresh_workshop_items

700940d578 feat(l4d2-web): overlay builder registry with workshop builder

Compare 9 commits »

cronekorkn pushed to master at cronekorkn/left4me 2026-05-07 02:11:33 +02:00

d18b397330 fix(host): create ~/.steam/sdk32 and sdk64 symlinks during install

cronekorkn pushed to master at cronekorkn/left4me 2026-05-07 02:01:26 +02:00

1968684c03 fix(deploy): MountFlags=shared on web service for fuse mount propagation

cronekorkn pushed to master at cronekorkn/left4me 2026-05-07 01:57:45 +02:00

593611e194 fix(deploy): drop PrivateTmp on web service so fuse mounts propagate

cronekorkn pushed to master at cronekorkn/left4me 2026-05-07 01:51:46 +02:00

56b9523d88 fix(deploy): drop NoNewPrivileges on web service so FUSE mounts work

cronekorkn pushed to master at cronekorkn/left4me 2026-05-07 01:47:38 +02:00

d14ed9c117 feat(web): blueprint-prefilled create-server flow + empty-state CTA

cronekorkn pushed to master at cronekorkn/left4me 2026-05-07 01:30:41 +02:00

923a1840f4 feat(web): forms in modals, edit/delete on detail pages, port auto-assign

cronekorkn pushed to master at cronekorkn/left4me 2026-05-07 00:58:31 +02:00

7d9939c71d fix(deploy): exclude macOS AppleDouble files from deploy archive

cronekorkn pushed to master at cronekorkn/left4me 2026-05-07 00:56:50 +02:00

0210ecd301 config: allow SESSION_COOKIE_SECURE override and disable on test deploy

f81e839ba2 security: harden boundary inputs and production defaults

Compare 2 commits »

cronekorkn created branch harden-boundary-inputs in cronekorkn/left4me 2026-05-07 00:54:11 +02:00

cronekorkn pushed to harden-boundary-inputs at cronekorkn/left4me 2026-05-07 00:54:11 +02:00

f81e839ba2 security: harden boundary inputs and production defaults

cronekorkn pushed to master at cronekorkn/left4me 2026-05-06 21:01:39 +02:00

3809f85795 fix: load environment variables for alembic upgrade in deploy script to ensure database url is set properly