maxbirkin/gooseek
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
34 Commits 1 Branch 0 Tags
7a40ff629ea732fd304299a05310edac67f70365
Commit Graph

8 Commits

Author SHA1 Message Date
home
7a40ff629e feat: LLM routing by tier (free→Ollama, pro→Timeweb)
Some checks failed
Build and Deploy GooSeek / build-and-deploy (push) Failing after 8m25s
Details 
- Add tier-based provider routing in llm-svc
  - free tier → Ollama (local qwen3.5:9b)
  - pro/business → Timeweb Cloud AI
- Add /api/v1/embed endpoint for embeddings via Ollama
- Update Ollama client: qwen3.5:9b default, remove auth
- Add GenerateEmbedding() function for qwen3-embedding:0.6b
- Add Ollama K8s deployment with GPU support (RTX 4060 Ti)
- Add monitoring stack (Prometheus, Grafana, Alertmanager)
- Add Grafana dashboards for LLM and security metrics
- Update deploy.sh with monitoring and Ollama deployment

Made-with: Cursor
 2026-03-03 02:25:22 +03:00
home
e64567a224 fix: file-svc PVC use ReadWriteOnce, add k3s registries config
Some checks failed
Build and Deploy GooSeek / build-and-deploy (push) Has been cancelled
Details 
- Change file-svc PVC from ReadWriteMany to ReadWriteOnce (local-path compatible)
- Set file-svc replicas to 1 (RWO limitation)
- Add k3s-registries.yaml for insecure private registry config

Made-with: Cursor
 2026-03-02 22:31:04 +03:00
home
d2ef146474 security: upgrade Gitea to 1.25.4, add security headers
Some checks failed
Build and Deploy GooSeek / build-and-deploy (push) Has been cancelled
Details 
- Update Gitea from 1.22.6 to 1.25.4 (fixes CVE-2026-20736, CVE-2026-20912)
- Disable public registration
- Disable Swagger API
- Add nginx-ingress security headers:
  - X-Content-Type-Options: nosniff
  - X-XSS-Protection: 1; mode=block
  - Referrer-Policy: strict-origin-when-cross-origin
  - Permissions-Policy
- Enable HSTS preload
- Reorganize Gitea K8s manifests into gitea/ directory

Made-with: Cursor
 2026-03-02 22:01:51 +03:00
home
c3965a2c6a fix: resolve kustomize namespace conflict for gooseek-sandbox
Some checks failed
Build and Deploy GooSeek / build-and-deploy (push) Failing after 7m34s
Details 
- Extracted gooseek-sandbox Namespace to separate file
- Apply sandbox-namespace.yaml separately before kustomize
- Fixed deprecated commonLabels -> labels
- Prevents namespace transformation conflict

Made-with: Cursor
 2026-03-02 21:38:49 +03:00
home
23964881c9 ci: fix registry IP for host mode runner
Some checks failed
Build and Deploy GooSeek / build-backend (push) Failing after 2s
Details
Build and Deploy GooSeek / build-webui (push) Failing after 2s
Details
Build and Deploy GooSeek / deploy (push) Has been skipped
Details 
Made-with: Cursor
 2026-03-02 21:03:45 +03:00
home
ab48a0632b feat: CI/CD pipeline + Learning/Medicine/Travel services
Some checks failed
Build and Deploy GooSeek / build-backend (push) Failing after 1m4s
Details
Build and Deploy GooSeek / build-webui (push) Failing after 1m2s
Details
Build and Deploy GooSeek / deploy (push) Has been skipped
Details 
- Add Gitea Actions workflow for automated build & deploy
- Add K8s manifests: webui, travel-svc, medicine-svc, sandbox-svc
- Update kustomization for localhost:5000 registry
- Add ingress for gooseek.ru and api.gooseek.ru
- Learning cabinet with onboarding, courses, sandbox integration
- Medicine service with symptom analysis and doctor matching
- Travel service with itinerary planning
- Server setup scripts (NVIDIA/CUDA, K3s, Gitea runner)

Made-with: Cursor
 2026-03-02 20:25:44 +03:00
home
a0e3748dde feat: auth service + security audit fixes + cleanup legacy services 
Major changes:
- Add auth-svc: JWT auth, register/login/refresh, password reset
- Add auth UI: modals, pages (/login, /register, /forgot-password)
- Add usage tracking (usage_metrics table, daily limits)
- Add tiered rate limiting (free/pro/business)
- Add LLM usage limits per tier

Security fixes:
- All repos now require userID for Update/Delete operations
- JWT middleware in chat-svc, llm-svc, agent-svc, discover-svc
- ErrNotFound/ErrForbidden errors for proper access control

Cleanup:
- Remove legacy TypeScript services/ directory
- Remove computer-svc (to be reimplemented)
- Remove old deploy/docker configs

New files:
- backend/cmd/auth-svc/main.go
- backend/internal/auth/{types,repository}.go
- backend/internal/usage/{types,repository}.go
- backend/pkg/middleware/{llm_limits,ratelimit_tiered}.go
- backend/webui/src/components/auth/*
- backend/webui/src/app/(auth)/*

Made-with: Cursor
 2026-02-28 01:33:49 +03:00
home
06fe57c765 feat: Go backend, enhanced search, new widgets, Docker deploy 
Major changes:
- Add Go backend (backend/) with microservices architecture
- Enhanced master-agents-svc: reranker, content-classifier, stealth-crawler,
  proxy-manager, media-search, fastClassifier, language detection
- New web-svc widgets: KnowledgeCard, ProductCard, ProfileCard, VideoCard,
  UnifiedCard, CardGallery, InlineImageGallery, SourcesPanel, RelatedQuestions
- Improved discover-svc with discover-db integration
- Docker deployment improvements (Caddyfile, vendor.sh, BUILD.md)
- Library-svc: project_id schema migration
- Remove deprecated finance-svc and travel-svc
- Localization improvements across services

Made-with: Cursor
 2026-02-27 04:15:32 +03:00