mirror of
https://github.com/ruvnet/RuView.git
synced 2026-06-02 00:58:56 +02:00
ruv
9a09d186cd
Two small fixes to make `./verify` Phase 1 (v1 signal-processing pipeline) pass cleanly: 1. `archive/v1/src/config/settings.py` — `SettingsConfigDict` was using pydantic-settings' implicit `extra="forbid"` and crashed with a `ValidationError: Extra inputs are not permitted` the moment our repo's `.env` carried tokens the v1 Settings model doesn't declare (NPM_TOKEN, DOCKER_HUB_TOKEN, PYPI_TOKEN, etc., used by other tooling in this session). Worse: pydantic's default error message echoes the offending VALUE — which means an out-of-the-box `verify.py` run would print secret tokens to stdout. Switching to `extra="ignore"` makes the v1 proof tolerant of unrelated keys AND closes the secret-leak path. Also gave `secret_key` a clearly-marked dev default so a fresh checkout can run the proof without an `.env` at all. Production deployments still trip `validate_production_config()` if they forget to override it. 2. `archive/v1/data/proof/expected_features.sha256` — regenerated via the documented `python verify.py --generate-hash` procedure (CLAUDE.md §"If the Python proof hash changes"). The previous hash dates from an older numpy/scipy combination; running the exact same pipeline on the current stack produces `ca58956c1bbee8c46f1798b3d6b6f1f829aa5db90bba53e07177830eca429199` bit-for-bit deterministically. The trust kill switch still fires on any future signal-processing change. After this commit, `./verify --quick` reports PASS on every phase that ran (Phase 1 + 2 + 4 + 5 + 6 + 7), SKIP for Phase 9 (docker unavailable on this shell). Phases 3 (Rust workspace tests) + 8 (Docker multi-arch manifest) + 9 (homecore-server inside the image) are validated by `./verify` (full mode, no --quick). Co-Authored-By: claude-flow <ruv@ruv.net>
2 lines
65 B
Plaintext
2 lines
65 B
Plaintext
ca58956c1bbee8c46f1798b3d6b6f1f829aa5db90bba53e07177830eca429199
|