relicario

alee/relicario

Fork 0

Commit Graph

Author	SHA1	Message	Date
adlee-was-taken	aace6f132a	harden(server): explicit verify-commit success gate + non-member/genesis hook tests - verify_org_signer now rejects on a non-zero git verify-commit exit instead of relying on the stderr fingerprint regex alone (PM hardening note 1). - org_hook_signed: add commit_signed_by_non_member_is_rejected (exercises the signature rejection path) and genesis_bootstrap_with_sole_owner_is_accepted. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-20 12:36:04 -04:00
adlee-was-taken	ccb58d8bb5	feat(server): verify-org-commit — signature + path-scoped role/grant auth + owner-only elevation (parent-role authority) + schema monotonicity + generate-org-hook Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-20 10:21:15 -04:00

Author

SHA1

Message

Date

adlee-was-taken

aace6f132a

harden(server): explicit verify-commit success gate + non-member/genesis hook tests

- verify_org_signer now rejects on a non-zero git verify-commit exit instead of
  relying on the stderr fingerprint regex alone (PM hardening note 1).
- org_hook_signed: add commit_signed_by_non_member_is_rejected (exercises the
  signature rejection path) and genesis_bootstrap_with_sole_owner_is_accepted.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-20 12:36:04 -04:00

adlee-was-taken

ccb58d8bb5

feat(server): verify-org-commit — signature + path-scoped role/grant auth + owner-only elevation (parent-role authority) + schema monotonicity + generate-org-hook

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-20 10:21:15 -04:00

2 Commits