anti/DECNET
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
3618c59d089c79ec779674b6b111cc21ad510214
DECNET/decnet
History
anti 3618c59d08 feat(mazenet): publish gateway service ports via docker 
Gateway deckies (forwards_l3=True) are the DMZ's ingress. Their
service containers share the base namespace via network_mode:service,
so any listener inside the gateway is reachable through the base
container's published ports. Emit 'ports: [<p>:<p>, ...]' on the
gateway base from svc.ports across the decky's service list.

This is the principled replacement for the broken network_mode: host
stub — with docker-proxy publishing, the DMZ works on any single-NIC
VPS (no MACVLAN, no promiscuous mode required).
2026-04-20 23:07:07 -04:00
..
agent
fix(agent-routes): added undocumented responses
2026-04-20 01:24:05 -04:00
cli
feat(mazenet): step 7 — topology_mutations queue + mutator reconciler
2026-04-20 18:02:37 -04:00
collector
feat(collector): parse real PROCID and extract IPs from logger kv pairs
2026-04-18 05:37:08 -04:00
correlation
refactor: strip DECNET tokens from container-visible surface
2026-04-17 22:57:53 -04:00
engine
feat(topology): add pre-deploy validator and wire into deploy_topology
2026-04-20 17:45:32 -04:00
logging
refactor: strip DECNET tokens from container-visible surface
2026-04-17 22:57:53 -04:00
mutator
feat(mazenet): step 7 — topology_mutations queue + mutator reconciler
2026-04-20 18:02:37 -04:00
prober
refactor: strip DECNET tokens from container-visible surface
2026-04-17 22:57:53 -04:00
profiler
chores: cleanup; added: viteconfig
2026-04-16 02:09:30 -04:00
services
fix(packaging): move templates/ into decnet/ package so they ship with pip install
2026-04-19 19:30:04 -04:00
sniffer
feat(sniffer): probe ipvlan host iface when macvlan is absent
2026-04-18 05:37:20 -04:00
swarm
feat(swarmctl): --tls with auto-issued or BYOC server cert
2026-04-19 21:46:32 -04:00
templates
fix(sniffer): mark JA3/JA3S MD5 hashing as non-security
2026-04-20 23:06:31 -04:00
topology
feat(mazenet): publish gateway service ports via docker
2026-04-20 23:07:07 -04:00
updater
feat(swarm): unbundle master-only code from agent tarball + sync systemd units on update
2026-04-19 19:19:17 -04:00
web
fix(mazenet): drop fictional host-mode on DMZ gateway stub
2026-04-20 23:06:54 -04:00
__init__.py
feat(env): run decnet.ini loader at package import; expose DECNET_MODE
2026-04-19 03:17:25 -04:00
archetypes.py
refactor(ssh): consolidate real_ssh into ssh, remove duplication
2026-04-11 19:51:41 -04:00
composer.py
feat: fleet-wide MACVLAN sniffer microservice
2026-04-14 15:02:34 -04:00
config_ini.py
feat(enroll): systemd units for agent/forwarder/engine + log-directory INI key
2026-04-19 05:46:08 -04:00
config.py
chores: fix linting
2026-04-18 06:46:10 -04:00
custom_service.py
Add per-service customization, stealth hardening, and BYOS support
2026-04-04 04:08:27 -03:00
distros.py
fix: stabilize tests with synchronous DB init and handle Bandit security findings
2026-04-09 01:33:15 -04:00
env.py
feat(swarm): ship host_uuid + swarmctl-port in agent enroll bundle
2026-04-19 21:44:23 -04:00
fleet.py
feat: fleet-wide MACVLAN sniffer microservice
2026-04-14 15:02:34 -04:00
ini_loader.py
fix: align tests with model validation and API error reporting
2026-04-13 01:43:52 -04:00
models.py
feat(swarm): DeckyConfig.host_uuid + fix agent log/status field refs
2026-04-18 19:10:25 -04:00
network.py
feat(topology): add compose generator and deployer integration
2026-04-20 16:54:40 -04:00
os_fingerprint.py
feat(os_fingerprint): Phase 2 — add icmp_ratelimit + icmp_ratemask sysctls
2026-04-10 16:41:23 -04:00
privdrop.py
fix: chown log files to sudo-invoking user so non-root API can append
2026-04-17 13:39:09 -04:00
telemetry.py
fix: resolve all ruff and bandit lint/security issues
2026-04-16 01:04:57 -04:00