fix(iso): recover dropped manifest-porcelain + rc.conf polish #61

Merged

clawdie merged 3 commits from fix/manifest-porcelain-redo into main

2026-06-15 18:07:20 +02:00

Author	SHA1	Message	Date
Sam & Claude	0ac0675dea	fix(iso): harden colibri rc.conf host + service dir perms (Sam & Hermes/Claude) Two minor polish items from the rc.d/release-gate audit: - build.sh wrote `colibri_daemon_host="$(hostname)"` to rc.conf with a bare command; use `$(/bin/hostname)` to match the rc.d default and rc.conf.sample, avoiding a PATH-dependent lookup at early boot. - The colibri service dirs (/var/db, /var/run, /var/log/colibri) shipped at 0755; the rc.d prestart creates them 0750. Ship 0750 so the image doesn't start world-readable before first boot corrects it. Checks: sh -n build.sh. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-15 18:06:36 +02:00
Sam & Claude	cfd11d1356	fix(build): porcelain for the per-repo source manifest too (Sam & Claude) Completes the porcelain alignment: seed_live_ai_source_repo() still computed .clawdie-source.json's modified_at_build with `git diff` (tracked-only), so for the same repo it could disagree with build-manifest.json (now porcelain) on untracked files. Switched it to `git status --porcelain` as well — all four manifest/gate "modified" checks now share one semantics. Checks: sh -n build.sh; sh scripts/test-release-gate.sh PASS; git diff --check. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>	2026-06-15 18:06:36 +02:00
Sam & Claude	d71c8ee087	fix(build): write_build_manifest uses git status --porcelain and tracks clawdie-ai modified	2026-06-15 18:06:36 +02:00

Author

SHA1

Message

Date

Sam & Claude

0ac0675dea

fix(iso): harden colibri rc.conf host + service dir perms (Sam & Hermes/Claude)

Two minor polish items from the rc.d/release-gate audit:

- build.sh wrote `colibri_daemon_host="$(hostname)"` to rc.conf with a bare
  command; use `$(/bin/hostname)` to match the rc.d default and rc.conf.sample,
  avoiding a PATH-dependent lookup at early boot.
- The colibri service dirs (/var/db, /var/run, /var/log/colibri) shipped at
  0755; the rc.d prestart creates them 0750. Ship 0750 so the image doesn't
  start world-readable before first boot corrects it.

Checks: sh -n build.sh.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-15 18:06:36 +02:00

Sam & Claude

cfd11d1356

fix(build): porcelain for the per-repo source manifest too (Sam & Claude)

Completes the porcelain alignment: seed_live_ai_source_repo() still computed
.clawdie-source.json's modified_at_build with `git diff` (tracked-only), so for
the same repo it could disagree with build-manifest.json (now porcelain) on
untracked files. Switched it to `git status --porcelain` as well — all four
manifest/gate "modified" checks now share one semantics.

Checks: sh -n build.sh; sh scripts/test-release-gate.sh PASS; git diff --check.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>

2026-06-15 18:06:36 +02:00

Sam & Claude

d71c8ee087

fix(build): write_build_manifest uses git status --porcelain and tracks clawdie-ai modified

2026-06-15 18:06:36 +02:00