From bee933ce8ef6cae9217513fbe13b2126cc5ec0f2 Mon Sep 17 00:00:00 2001 From: Jeffrey Paul Date: Mon, 6 Jul 2026 21:36:27 +0200 Subject: [PATCH] TODO (#173) Reviewed-on: https://git.eeqj.de/sneak/upaas/pulls/173 --- TODO.md | 53 +++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 53 insertions(+) create mode 100644 TODO.md diff --git a/TODO.md b/TODO.md new file mode 100644 index 0000000..b5d970d --- /dev/null +++ b/TODO.md @@ -0,0 +1,53 @@ +# Workflow + +* branch (from `main`) +* do the work in Next Step +* move Next Step to the top of Completed Steps +* move the top item of Future Steps into Next Step +* commit (`TODO.md` changes in the same commit as the work) +* merge to `main` if the branch is not protected, otherwise open a PR +* push + +# Status + +1.0+. Tagged 1.0.0 on 2026-02-26; 8 commits on main since. Policy +violation: main currently fails make check (91 lint issues), so the tree +is out of compliance until fixed. + +# Next Step + +Fix the 47 noctx lint findings (HTTP requests without context) in one +commit and confirm the count drops under make check. This is the largest +of the three lint classes blocking a green main. + +# Completed Steps + +- 2026-03-11: Monolithic env var editing with bulk save (#158). +- 2026-03-10: Webhook event history UI page (#164); added missing + Makefile docker and hooks targets plus test timeout (#159); + notification settings passed from create form (#160). +- 2026-03-03: REPO_POLICIES compliance file set added (#155). +- 2026-03-01: Module path changed to sneak.berlin/go/upaas (#143); + Dockerfile split into lint and build stages with forced lint + execution (#152, #154). +- 2026-02-26: 1.0.0 tagged; dashboard CSRFField crash fixed (#146). +- 1.0 audit bug fixes (#120-#125): deferred rollback on commit error, + deployment log size cap, error path rendering, docker-compose bind + mount, domain type refactor. +- CI simplified to docker build only (#130). +- 2025-12-29 onward: core PaaS built out: deploys with real-time build + log streaming, container start/stop/restart and logs, TCP/UDP port + mapping, Alpine.js UI, Slack notifications, ULID app IDs, session + handling. + +# Future Steps + +- Get main green (compliance, ordered): + - Fix 47 noctx findings (Next Step). + - Fix 23 gosec findings. + - Fix 21 goconst findings. + - Run make check clean on main and keep it green; main must always + pass. +- Confirm .gitea/workflows/check.yml gates merges on make check so main + cannot regress. +- Resume feature work only after main is green.