| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
|
|
|
| |
Use pip-compile --generate-hashes in the Docker build stage so that
the runtime stage installs pinned dependencies with verified integrity,
ensuring fully reproducible container builds.
- Add Docker section to README
- Fix Python badge (3.7+ → 3.11+) and outdated docs links
- Upgrade pip, setuptools, and wheel in Dockerfile to fix grype findings
|
| |
|
|
|
|
|
|
| |
Multi-stage Dockerfile (non-root, Tor-ready), compose file, and
entrypoints. Forgejo CI builds linux/amd64+arm64, scans with
checksum-verified Grype, and pins all actions to commit SHA.
Makefile gains venv bootstrap and docker targets; server.py gains
a --bind flag.
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
- Add ensure-venv target that auto-creates venv and installs deps
on first run of dev/test/lint/i18n targets
- PYTHON/PIP now resolve to venv automatically when available
- clean: add release artefacts (yt-local/, python/, zips, get-pip.py, vc15)
- distclean: reserved for venv removal
- Fix $$ escaping for shell variables in Make recipes
- Sanitize LANG_CODE input against shell injection
- Fix test-cov (check python module, not command), info (shell vs Make expansion)
- lint/format use venv python instead of system command -v
- i18n-workflow uses native Make dependencies instead of recursive make
|
| |
|
