Nachfix: verifizierte Findings 2026-05-28 #7

Open

vr6syncro wants to merge 1 commit from fix/followup-2026-05-28 into main

pull from: fix/followup-2026-05-28

merge into: vr6syncro:main

vr6syncro:main

vr6syncro:fix/findings-2026-05-28

vr6syncro:analysis/findings-2026-05-28

Conversation 0 Commits 1 Files changed 3 +3 -3

vr6syncro commented 2026-05-29 21:03:21 +02:00

Owner

Copy link

Nachgereichte Fixes fuer in der ersten Welle uebersprungene, im Deep-Re-Verify als real UND sicher minimal-invasiv autofixbar bestaetigte Findings.

Fix

Issue #3 (high): TafForge-App vom beweglichen main-Branch geklont (mutable Supply-Chain-Ref)

TAFFORGE_REF_DEFAULT/TAFFORGE_REF zeigte auf den beweglichen main-Branch. Das Upstream-App-Repo github.com/vr6syncro/TeddyTafForge hat reale, immutable Release-Tags (v0.1.0 / v0.2.0 / v0.2.1 / v0.2.2, via git ls-remote bestaetigt). Default jetzt auf v0.2.2 gepinnt. Fresh-Installs brechen nicht (Tag existiert real), ENV-Override-Form ${VAR:-...} bleibt erhalten -> nicht-brechend.

Geaenderte Dateien (3 Default-Sites):

• misc/build.func (Zeile 24, TAFFORGE_REF_DEFAULT)
• install/teddytafforge-install.sh (Zeile 21, TAFFORGE_REF)
• scripts/dry-test/run.sh (Zeile 151, TAFFORGE_REF_DEFAULT)

Closes #3

---

Keine Builds/Installs/Tests ausgefuehrt (OAM-Schutz). bash -n Syntaxcheck aller drei Dateien gruen.

🤖 Generated with Claude Code

Nachgereichte Fixes fuer in der ersten Welle uebersprungene, im Deep-Re-Verify als real UND sicher minimal-invasiv autofixbar bestaetigte Findings. ## Fix ### Issue #3 (high): TafForge-App vom beweglichen main-Branch geklont (mutable Supply-Chain-Ref) `TAFFORGE_REF_DEFAULT`/`TAFFORGE_REF` zeigte auf den beweglichen `main`-Branch. Das Upstream-App-Repo `github.com/vr6syncro/TeddyTafForge` hat reale, immutable Release-Tags (v0.1.0 / v0.2.0 / v0.2.1 / v0.2.2, via `git ls-remote` bestaetigt). Default jetzt auf `v0.2.2` gepinnt. Fresh-Installs brechen nicht (Tag existiert real), ENV-Override-Form `${VAR:-...}` bleibt erhalten -> nicht-brechend. Geaenderte Dateien (3 Default-Sites): - `misc/build.func` (Zeile 24, `TAFFORGE_REF_DEFAULT`) - `install/teddytafforge-install.sh` (Zeile 21, `TAFFORGE_REF`) - `scripts/dry-test/run.sh` (Zeile 151, `TAFFORGE_REF_DEFAULT`) Closes #3 --- Keine Builds/Installs/Tests ausgefuehrt (OAM-Schutz). `bash -n` Syntaxcheck aller drei Dateien gruen. 🤖 Generated with [Claude Code](https://claude.com/claude-code)

vr6syncro added 1 commit 2026-05-29 21:03:21 +02:00

fix: nachgereichte verifizierte Findings (Analyse 2026-05-28) ... 5799d17906

- Issue #3: TAFFORGE_REF_DEFAULT von beweglichem 'main' auf immutablen Release-Tag v0.2.2 gepinnt (mutable Supply-Chain-Ref). Drei Default-Sites: misc/build.func, install/teddytafforge-install.sh, scripts/dry-test/run.sh. ENV-Override (${VAR:-...}) bleibt erhalten -> nicht-brechend.

Refs: #3

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

vr6syncro referenced this pull request 2026-06-04 01:45:10 +02:00

Deep Analysis 2026-06-04 — teddytafforge-proxmox #9

All checks were successful

Hide all checks

syntax-validate / dryrun (pull_request) Successful in 26s

Details

shellcheck / lint (pull_request) Successful in 50s

Details

This pull request can be merged automatically.

This branch is out-of-date with the base branch

You are not authorized to merge this pull request.

View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.

git fetch -u origin fix/followup-2026-05-28:fix/followup-2026-05-28

git switch fix/followup-2026-05-28

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git switch main

git merge --no-ff fix/followup-2026-05-28

git switch fix/followup-2026-05-28

git rebase main

git switch main

git merge --ff-only fix/followup-2026-05-28

git switch fix/followup-2026-05-28

git rebase main

git switch main

git merge --no-ff fix/followup-2026-05-28

git switch main

git merge --squash fix/followup-2026-05-28

git switch main

git merge --ff-only fix/followup-2026-05-28

git switch main

git merge fix/followup-2026-05-28

git push origin main

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

vr6syncro/teddytafforge-proxmox!7

No description provided.