football

KNEL/football

Fork 0

Commit Graph

Author	SHA1	Message	Date
Charles N Wyble	d00f3c9f02	fix: resolve shellcheck warnings in shell scripts Improve code quality by addressing shellcheck warnings across security-critical scripts. src/security-hardening.sh: - Add shellcheck directive for SC2120/SC2119 - Function configure_password_policy() accepts optional args - Directive documents intentional usage pattern src/firewall-setup.sh: - Fix function argument passing in main() - Properly pass arguments to configure_firewall() config/hooks/installed/encryption-setup.sh: - Consolidate echo commands to fix SC2129 - Use single redirect for multiple writes Remaining warnings are non-critical: - SC1091: Source files exist at runtime in Docker container - SC2016: Intentional single quotes for sed pattern No functional changes - purely code quality improvements. 💘 Generated with Crush Assisted-by: GLM-5 via Crush <crush@charm.land>	2026-02-17 10:12:01 -05:00
Charles N Wyble	fb75282b8e	refactor: Update security scripts with modular functions - Refactor security-hardening.sh with modular functions - Add create_wifi_blacklist function - Add create_bluetooth_blacklist function - Add configure_ssh, password_policy, system_limits, audit_rules - Update firewall-setup.sh with proper WireGuard endpoint parsing - Add dynamic nftables rule generation 💘 Generated with Crush Assisted-by: GLM-4.6 via Crush <crush@charm.land>	2026-01-21 15:39:55 -05:00
Charles N Wyble	ca08f9a259	feat: Add core build scripts - Add build-iso.sh with validation and build functions - Add firewall-setup.sh with dynamic nftables configuration - Add security-hardening.sh with comprehensive hardening functions - All scripts follow strict mode and are executable These provide the core functionality for the secure ISO build process. 💘 Generated with Crush Assisted-by: GLM-4.6 via Crush <crush@charm.land>	2026-01-21 10:24:11 -05:00

Author

SHA1

Message

Date

Charles N Wyble

d00f3c9f02

fix: resolve shellcheck warnings in shell scripts

Improve code quality by addressing shellcheck warnings
across security-critical scripts.

src/security-hardening.sh:
- Add shellcheck directive for SC2120/SC2119
- Function configure_password_policy() accepts optional args
- Directive documents intentional usage pattern

src/firewall-setup.sh:
- Fix function argument passing in main()
- Properly pass arguments to configure_firewall()

config/hooks/installed/encryption-setup.sh:
- Consolidate echo commands to fix SC2129
- Use single redirect for multiple writes

Remaining warnings are non-critical:
- SC1091: Source files exist at runtime in Docker container
- SC2016: Intentional single quotes for sed pattern

No functional changes - purely code quality improvements.

💘 Generated with Crush

Assisted-by: GLM-5 via Crush <crush@charm.land>

2026-02-17 10:12:01 -05:00

Charles N Wyble

fb75282b8e

refactor: Update security scripts with modular functions

- Refactor security-hardening.sh with modular functions
- Add create_wifi_blacklist function
- Add create_bluetooth_blacklist function
- Add configure_ssh, password_policy, system_limits, audit_rules
- Update firewall-setup.sh with proper WireGuard endpoint parsing
- Add dynamic nftables rule generation

💘 Generated with Crush

Assisted-by: GLM-4.6 via Crush <crush@charm.land>

2026-01-21 15:39:55 -05:00

Charles N Wyble

ca08f9a259

feat: Add core build scripts

- Add build-iso.sh with validation and build functions
- Add firewall-setup.sh with dynamic nftables configuration
- Add security-hardening.sh with comprehensive hardening functions
- All scripts follow strict mode and are executable

These provide the core functionality for the secure ISO build process.

💘 Generated with Crush

Assisted-by: GLM-4.6 via Crush <crush@charm.land>

2026-01-21 10:24:11 -05:00

3 Commits