Samuel Aubertin
|
0e02b78545
|
Remove unused capabilities feature and cleanup
COMMIT SUMMARY
--------------
Removes the entire capabilities feature (apt-install, packet-capture) that
was unused and not actively maintained. This simplifies the codebase and
removes unnecessary complexity around capability trust, helper processes,
and pod-based capture infrastructure.
CHANGES
-------
sloptrap (main script):
- Removed SLOPTRAP_SUPPORTED_CAPABILITIES array
- Removed --trust-capabilities CLI flag
- Removed capability state path management functions
- Removed capability trust validation functions
- Removed packet capture helper infrastructure (pod creation, helperd)
- Removed capability-enabled container special handling
- Removed capability build stamp tracking
- Simplified prepare_container_runtime() - removed capability logic
- Simplified build_image/rebuild_image - removed capability trust checks
- Simplified run_runtime_container_cmd - removed helper process management
- Removed capability environment variables and flags
- Simplified dispatch_target - removed --trust-capabilities handling
Dockerfile.sloptrap (new):
- Added new embedded Dockerfile template
- Removed capability helper binaries from image
- Simplified entrypoint to just codex directly
- Removed sloptrap-entrypoint, sloptrap-helperd, slop-apt, slopcap
- Removed CAPABILITY_PACKAGES build argument
- Simplified RUN instructions
tests/run_tests.sh:
- Removed run_git_ignore_mask test (was testing capability trust)
- Updated runtime_context_prompt test (removed --trust-capabilities)
- Updated sh_reexec test (removed --trust-capabilities)
- Updated resume_omits_runtime_context test (removed --trust-capabilities)
tests/capability_repo/.sloptrap (deleted):
- Removed test manifest that required capabilities
tests/invalid_manifest_capabilities/.sloptrap (deleted):
- Removed test manifest for capability validation
REASON
------
The capabilities feature was identified as unused and unnecessary.
Maintaining it added complexity without providing value. Removing it:
- Reduces code complexity and maintenance burden
- Eliminates capability trust state management
- Removes helper process infrastructure
- Simplifies container build and runtime logic
- Removes pod-based capture infrastructure
VERIFICATION
------------
- All 14 regression tests pass
- shellcheck sloptrap passes with no warnings
- No regressions in core functionality (ignore mounts, session management,
network isolation, etc.)
BACKWARD COMPATIBILITY
----------------------
Breaking change: Any manifests with capabilities= entries will need to be
updated to remove the capabilities key. The --trust-capabilities flag is
no longer supported.
|
2026-04-12 15:29:25 +02:00 |
|
Samuel Aubertin
|
87d1577546
|
Cleanup capabilities
|
2026-03-10 16:51:17 +01:00 |
|
Samuel Aubertin
|
fb3aca0f7d
|
Remove nested-podman
|
2026-03-10 11:02:44 +01:00 |
|
Samuel Aubertin
|
3731094f60
|
debugging recursion
|
2026-03-10 00:42:19 +01:00 |
|
Samuel Aubertin
|
87a23e9772
|
Self contained sloptrap with helpers within
|
2026-03-09 19:23:21 +01:00 |
|
Samuel Aubertin
|
0ad137c6dc
|
Auto-enable trusted sloptrap capabilities and harden bash launcher
|
2026-03-09 19:06:36 +01:00 |
|
Samuel Aubertin
|
da001da48f
|
Add capabilities at build
|
2026-03-09 18:46:36 +01:00 |
|
Samuel Aubertin
|
47c3c979e5
|
Split /codex mount per project
|
2026-03-09 13:49:06 +01:00 |
|
Samuel Aubertin
|
046b56e3f6
|
Add a wizzard to configure .sloptrap files
|
2026-01-24 17:44:47 +01:00 |
|
Samuel Aubertin
|
7630e7edba
|
MacOS + Docker shenanigans
|
2025-11-27 16:12:46 +01:00 |
|
Samuel Aubertin
|
698ca67677
|
Add session resuming
|
2025-11-14 11:21:14 +01:00 |
|
Samuel Aubertin
|
67fd0cd9c9
|
Reword README
|
2025-11-08 12:01:19 +01:00 |
|
Samuel Aubertin
|
1ff834a1d1
|
Fix sloptrap name
|
2025-11-08 11:10:45 +01:00 |
|
Samuel Aubertin
|
636098a15b
|
alpha
|
2025-11-08 03:59:16 +01:00 |
|