lfg2025/archy
1
0
Fork 0
Code Issues 7 Pull Requests Actions Packages Projects Releases 33 Wiki Activity
Files
11cee9dc70cfbc70802dc7f76efaecbcaa3fd9fa
archy/scripts/deploy-to-target.sh
Dorian 0bc7251e22 feat: add container security hardening and Fedimint setup wizard 
Add --cap-drop=ALL, --security-opt=no-new-privileges:true to all
non-privileged containers. Per-app capability grants for apps needing
CHOWN/SETUID/SETGID. Read-only root filesystem with tmpfs for
compatible apps (searxng, grafana, uptime-kuma, filebrowser,
photoprism, vaultwarden). Add Fedimint "Create a Community" goal
with 4-step wizard. Fix deploy script cp -rf for audio directory.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-03-05 08:24:56 +00:00

31 KiB
Executable File
Raw Blame History

View Raw
Reference in New Issue View Git Blame Copy Permalink