Commit graph

3 commits

Author SHA1 Message Date
opencode
f4d42768a2 chore(rmi-backend,audit): delete ruff.toml — pyproject.toml [tool.ruff] is canonical
Phase 1 of AUDIT-2026-Q3.md item P1.8.

ruff.toml was overriding pyproject.toml [tool.ruff] silently:
  ruff.toml:    line-length 120, ignored SIM102/RUF006/B008
  pyproject.toml: line-length 100, security rules enabled (canonical)

Two configs contradicting each other silently is the worst-case
configuration — neither developer nor CI notice, and the strict
[tool.ruff] security rules (S) never run.

Deleted ruff.toml. Added defensive .gitignore entry. ruff now reads
only pyproject.toml. Verified with ruff check --show-settings:
  linter.line_length = 100
  linter.pycodestyle.max_line_length = 100

ruff.toml moved to /tmp/rmi-backend-archive-2026-07/ruff.toml.removed-2026-07-06.
2026-07-06 17:53:03 +02:00
opencode
e0d0ae3bfd chore(rmi-backend,audit): gitignore main.py.bak
Phase 1 of AUDIT-2026-Q3.md item P1.4.

main.py.bak was a 374KB legacy leftover from the old 220-file app/
monolith. Its removal from the working tree was completed in e404e90
(feat(rmi-backend,audit): add app/main.py entrypoint delegating to
factory) in this audit session — that commit deleted main.py.bak and
added app/main.py in a single change.

This commit adds the defensive .gitignore entry so any future
main.py.bak / similar leftover files do not get re-tracked.

main.py.bak archive kept at:
  /tmp/rmi-backend-archive-2026-07/main.py.bak.removed-2026-07-06

Note: historical commit bde2f3a still contains 4 mainnet token
addresses for gitleaks; full rewrite with git-filter-repo is scheduled
for Phase 1.11 of AUDIT-2026-Q3.md.
2026-07-06 17:52:51 +02:00
bde2f3a97d merge: chore/cleanup-remove-bloat-and-secrets into main 2026-07-02 01:24:22 +07:00