BillTracker/.forgejo
null 787d3cf694 chore(ops): deploy checklist + standing dependency guards (Phase 8)
- docs/DEPLOY_CHECKLIST.md: the prod-config items that only lived in
  session notes are now in the repo — TOKEN_ENCRYPTION_KEY (v2:->e2:
  migration), WEBAUTHN_RP_ID/_ORIGIN, simplefin_debug_logging off,
  cdn.sheetjs.com egress, Node-version alignment, TS7 deferral
- renovate.json: weekly grouped non-majors, dashboard-approval majors,
  xlsx (CDN-pinned) excluded, typescript capped <7 until
  typescript-eslint supports it
- .forgejo/workflows/deps-audit.yml: weekly scheduled audit that FAILS
  on high+ prod vulns + prints npm outdated — the durable QA-B0-02 fix
  that works even before Renovate is enabled on the Forgejo instance

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
2026-07-10 22:24:42 -05:00
..
workflows chore(ops): deploy checklist + standing dependency guards (Phase 8) 2026-07-10 22:24:42 -05:00