Allow external access to local dev server

- Bind orchard-server port to 0.0.0.0 for LAN testing - Add KICS exception for unbound port (local dev only)
Fix local docker-compose security settings for stock images
2026-01-15 15:46:43 +00:00 · 2026-01-15 15:46:43 +00:00 · 2026-01-15 15:46:43 +00:00 · 2026-01-15 15:46:43 +00:00 · 2026-01-15 15:46:43 +00:00 · 2026-01-15 09:44:07 -06:00
11 changed files with 300 additions and 200 deletions
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -16,6 +16,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 - Added internal proxy configuration for npm, pip, helm, and apt (#51)

 ### Changed
+- Adjusted dark mode color palette to use lighter background tones for better readability and reduced eye strain (#52)
+- Replaced project card grid with sortable data table on Home page for better handling of large project lists
+- Replaced package card grid with sortable data table on Project page for consistency
+- Replaced SortDropdown with table header sorting on Package page for consistency
 - Improved pod naming: Orchard pods now named `orchard-{env}-server-*` for clarity (#51)

 ### Fixed
--- a/docker-compose.local.yml
+++ b/docker-compose.local.yml
@@ -6,7 +6,7 @@ services:
      context: .
      dockerfile: Dockerfile.local
    ports:
-      - "127.0.0.1:8080:8080"
+      - "0.0.0.0:8080:8080"
    environment:
      - ORCHARD_SERVER_HOST=0.0.0.0
      - ORCHARD_SERVER_PORT=8080
@@ -71,10 +71,6 @@ services:
    networks:
      - orchard-network
    restart: unless-stopped
-    security_opt:
-      - no-new-privileges:true
-    cap_drop:
-      - ALL
    deploy:
      resources:
        limits:
@@ -100,10 +96,6 @@ services:
    networks:
      - orchard-network
    restart: unless-stopped
-    security_opt:
-      - no-new-privileges:true
-    cap_drop:
-      - ALL
    deploy:
      resources:
        limits:
@@ -124,10 +116,6 @@ services:
      "
    networks:
      - orchard-network
-    security_opt:
-      - no-new-privileges:true
-    cap_drop:
-      - ALL
    deploy:
      resources:
        limits:
@@ -149,10 +137,6 @@ services:
    networks:
      - orchard-network
    restart: unless-stopped
-    security_opt:
-      - no-new-privileges:true
-    cap_drop:
-      - ALL
    deploy:
      resources:
        limits:
--- a/frontend/src/components/DataTable.css
+++ b/frontend/src/components/DataTable.css
@@ -98,3 +98,58 @@
  text-overflow: ellipsis;
  white-space: nowrap;
 }
+
+/* Clickable rows */
+.data-table__row--clickable {
+  cursor: pointer;
+}
+
+.data-table__row--clickable:hover {
+  background: var(--bg-hover);
+}
+
+/* Responsive table wrapper */
+.data-table--responsive {
+  overflow-x: auto;
+  -webkit-overflow-scrolling: touch;
+}
+
+.data-table--responsive table {
+  min-width: 800px;
+}
+
+/* Cell with name and icon */
+.data-table .cell-name {
+  display: flex;
+  align-items: center;
+  gap: 8px;
+  font-weight: 500;
+  color: var(--text-primary);
+}
+
+.data-table .cell-name:hover {
+  color: var(--accent-primary);
+}
+
+/* Date cells */
+.data-table .cell-date {
+  color: var(--text-tertiary);
+  font-size: 0.8125rem;
+  white-space: nowrap;
+}
+
+/* Description cell */
+.data-table .cell-description {
+  max-width: 300px;
+  overflow: hidden;
+  text-overflow: ellipsis;
+  white-space: nowrap;
+  color: var(--text-secondary);
+  font-size: 0.875rem;
+}
+
+/* Owner cell */
+.data-table .cell-owner {
+  color: var(--text-secondary);
+  font-size: 0.875rem;
+}
--- a/frontend/src/components/DataTable.tsx
+++ b/frontend/src/components/DataTable.tsx
@@ -18,6 +18,7 @@ interface DataTableProps<T> {
  onSort?: (key: string) => void;
  sortKey?: string;
  sortOrder?: 'asc' | 'desc';
+  onRowClick?: (item: T) => void;
 }

 export function DataTable<T>({
@@ -29,6 +30,7 @@ export function DataTable<T>({
  onSort,
  sortKey,
  sortOrder,
+  onRowClick,
 }: DataTableProps<T>) {
  if (data.length === 0) {
    return (
@@ -71,7 +73,11 @@ export function DataTable<T>({
        </thead>
        <tbody>
          {data.map((item) => (
-            <tr key={keyExtractor(item)}>
+            <tr
+              key={keyExtractor(item)}
+              onClick={() => onRowClick?.(item)}
+              className={onRowClick ? 'data-table__row--clickable' : ''}
+            >
              {columns.map((column) => (
                <td key={column.key} className={column.className}>
                  {column.render(item)}
--- a/frontend/src/components/Layout.css
+++ b/frontend/src/components/Layout.css
@@ -14,7 +14,7 @@
  top: 0;
  z-index: 100;
  backdrop-filter: blur(12px);
-  background: rgba(17, 17, 19, 0.85);
+  background: rgba(37, 37, 41, 0.85);
 }

 .header-content {
--- a/frontend/src/index.css
+++ b/frontend/src/index.css
@@ -5,12 +5,12 @@
 }

 :root {
-  /* Dark mode color palette */
-  --bg-primary: #0a0a0b;
-  --bg-secondary: #111113;
-  --bg-tertiary: #1a1a1d;
-  --bg-elevated: #222225;
-  --bg-hover: #2a2a2e;
+  /* Dark mode color palette - lighter tones for better readability */
+  --bg-primary: #1e1e22;
+  --bg-secondary: #252529;
+  --bg-tertiary: #2d2d32;
+  --bg-elevated: #35353a;
+  --bg-hover: #3d3d42;

  /* Accent colors - Green/Emerald theme */
  --accent-primary: #10b981;
@@ -24,9 +24,9 @@
  --text-tertiary: #9ca3af;
  --text-muted: #6b7280;

-  /* Border colors */
-  --border-primary: #27272a;
-  --border-secondary: #3f3f46;
+  /* Border colors - slightly more visible */
+  --border-primary: #37373d;
+  --border-secondary: #48484e;
  --border-accent: #10b981;

  /* Status colors */
--- a/frontend/src/pages/Home.css
+++ b/frontend/src/pages/Home.css
@@ -1,6 +1,6 @@
 /* Page Layout */
 .home {
-  max-width: 1000px;
+  max-width: 1200px;
  margin: 0 auto;
 }

--- a/frontend/src/pages/Home.tsx
+++ b/frontend/src/pages/Home.tsx
@@ -1,9 +1,9 @@
 import { useState, useEffect, useCallback } from 'react';
-import { Link, useSearchParams } from 'react-router-dom';
+import { Link, useSearchParams, useNavigate } from 'react-router-dom';
 import { Project, PaginatedResponse } from '../types';
 import { listProjects, createProject } from '../api';
 import { Badge } from '../components/Badge';
-import { SortDropdown, SortOption } from '../components/SortDropdown';
+import { DataTable } from '../components/DataTable';
 import { FilterDropdown, FilterOption } from '../components/FilterDropdown';
 import { FilterChip, FilterChipGroup } from '../components/FilterChip';
 import { Pagination } from '../components/Pagination';
@@ -20,12 +20,6 @@ function LockIcon() {
  );
 }

-const SORT_OPTIONS: SortOption[] = [
-  { value: 'name', label: 'Name' },
-  { value: 'created_at', label: 'Created' },
-  { value: 'updated_at', label: 'Updated' },
-];
-
 const VISIBILITY_OPTIONS: FilterOption[] = [
  { value: '', label: 'All Projects' },
  { value: 'public', label: 'Public Only' },
@@ -34,6 +28,7 @@ const VISIBILITY_OPTIONS: FilterOption[] = [

 function Home() {
  const [searchParams, setSearchParams] = useSearchParams();
+  const navigate = useNavigate();
  const { user } = useAuth();

  const [projectsData, setProjectsData] = useState<PaginatedResponse<Project> | null>(null);
@@ -101,8 +96,10 @@ function Home() {
    }
  }

-  const handleSortChange = (newSort: string, newOrder: 'asc' | 'desc') => {
-    updateParams({ sort: newSort, order: newOrder, page: '1' });
+  const handleSortChange = (columnKey: string) => {
+    // Toggle order if clicking the same column, otherwise default to asc
+    const newOrder = columnKey === sort ? (order === 'asc' ? 'desc' : 'asc') : 'asc';
+    updateParams({ sort: columnKey, order: newOrder, page: '1' });
  };

  const handleVisibilityChange = (value: string) => {
@@ -189,7 +186,6 @@ function Home() {
          value={visibility}
          onChange={handleVisibilityChange}
        />
-        <SortDropdown options={SORT_OPTIONS} value={sort} order={order} onChange={handleSortChange} />
      </div>

      {hasActiveFilters && (
@@ -204,69 +200,106 @@ function Home() {
        </FilterChipGroup>
      )}

-      {projects.length === 0 ? (
-        <div className="empty-state">
-          {hasActiveFilters ? (
-            <p>No projects match your filters. Try adjusting your search.</p>
-          ) : (
-            <p>No projects yet. Create your first project to get started!</p>
-          )}
-        </div>
-      ) : (
-        <>
-          <div className="project-grid">
-            {projects.map((project) => (
-              <Link to={`/project/${project.name}`} key={project.id} className="project-card card">
-                <h3>
+      <div className="data-table--responsive">
+        <DataTable
+          data={projects}
+          keyExtractor={(project) => project.id}
+          onRowClick={(project) => navigate(`/project/${project.name}`)}
+          onSort={handleSortChange}
+          sortKey={sort}
+          sortOrder={order}
+          emptyMessage={
+            hasActiveFilters
+              ? 'No projects match your filters. Try adjusting your search.'
+              : 'No projects yet. Create your first project to get started!'
+          }
+          columns={[
+            {
+              key: 'name',
+              header: 'Name',
+              sortable: true,
+              render: (project) => (
+                <span className="cell-name">
                  {!project.is_public && <LockIcon />}
                  {project.name}
-                </h3>
-                {project.description && <p>{project.description}</p>}
-                <div className="project-meta">
-                  <div className="project-badges">
-                    <Badge variant={project.is_public ? 'public' : 'private'}>
-                      {project.is_public ? 'Public' : 'Private'}
-                    </Badge>
-                    {user && project.access_level && (
-                      <Badge
-                        variant={
-                          project.is_owner
-                            ? 'success'
-                            : project.access_level === 'admin'
+                </span>
+              ),
+            },
+            {
+              key: 'description',
+              header: 'Description',
+              className: 'cell-description',
+              render: (project) => project.description || '—',
+            },
+            {
+              key: 'visibility',
+              header: 'Visibility',
+              render: (project) => (
+                <Badge variant={project.is_public ? 'public' : 'private'}>
+                  {project.is_public ? 'Public' : 'Private'}
+                </Badge>
+              ),
+            },
+            {
+              key: 'created_by',
+              header: 'Owner',
+              className: 'cell-owner',
+              render: (project) => project.created_by,
+            },
+            ...(user
+              ? [
+                  {
+                    key: 'access_level',
+                    header: 'Access',
+                    render: (project: Project) =>
+                      project.access_level ? (
+                        <Badge
+                          variant={
+                            project.is_owner
                              ? 'success'
-                              : project.access_level === 'write'
-                                ? 'info'
-                                : 'default'
-                        }
-                      >
-                        {project.is_owner ? 'Owner' : project.access_level.charAt(0).toUpperCase() + project.access_level.slice(1)}
-                      </Badge>
-                    )}
-                  </div>
-                  <div className="project-meta__dates">
-                    <span className="date">Created {new Date(project.created_at).toLocaleDateString()}</span>
-                    {project.updated_at !== project.created_at && (
-                      <span className="date">Updated {new Date(project.updated_at).toLocaleDateString()}</span>
-                    )}
-                  </div>
-                </div>
-                <div className="project-meta__owner">
-                  <span className="owner">by {project.created_by}</span>
-                </div>
-              </Link>
-            ))}
-          </div>
+                              : project.access_level === 'admin'
+                                ? 'success'
+                                : project.access_level === 'write'
+                                  ? 'info'
+                                  : 'default'
+                          }
+                        >
+                          {project.is_owner
+                            ? 'Owner'
+                            : project.access_level.charAt(0).toUpperCase() + project.access_level.slice(1)}
+                        </Badge>
+                      ) : (
+                        '—'
+                      ),
+                  },
+                ]
+              : []),
+            {
+              key: 'created_at',
+              header: 'Created',
+              sortable: true,
+              className: 'cell-date',
+              render: (project) => new Date(project.created_at).toLocaleDateString(),
+            },
+            {
+              key: 'updated_at',
+              header: 'Updated',
+              sortable: true,
+              className: 'cell-date',
+              render: (project) => new Date(project.updated_at).toLocaleDateString(),
+            },
+          ]}
+        />
+      </div>

-          {pagination && pagination.total_pages > 1 && (
-            <Pagination
-              page={pagination.page}
-              totalPages={pagination.total_pages}
-              total={pagination.total}
-              limit={pagination.limit}
-              onPageChange={handlePageChange}
-            />
-          )}
-        </>
+      {pagination && pagination.total_pages > 1 && (
+        <Pagination
+          page={pagination.page}
+          totalPages={pagination.total_pages}
+          total={pagination.total}
+          limit={pagination.limit}
+          onPageChange={handlePageChange}
+        />
      )}
    </div>
  );
--- a/frontend/src/pages/PackagePage.tsx
+++ b/frontend/src/pages/PackagePage.tsx
@@ -5,7 +5,6 @@ import { listTags, getDownloadUrl, getPackage, getMyProjectAccess, UnauthorizedE
 import { Breadcrumb } from '../components/Breadcrumb';
 import { Badge } from '../components/Badge';
 import { SearchInput } from '../components/SearchInput';
-import { SortDropdown, SortOption } from '../components/SortDropdown';
 import { FilterChip, FilterChipGroup } from '../components/FilterChip';
 import { DataTable } from '../components/DataTable';
 import { Pagination } from '../components/Pagination';
@@ -14,11 +13,6 @@ import { useAuth } from '../contexts/AuthContext';
 import './Home.css';
 import './PackagePage.css';

-const SORT_OPTIONS: SortOption[] = [
-  { value: 'name', label: 'Name' },
-  { value: 'created_at', label: 'Created' },
-];
-
 function formatBytes(bytes: number): string {
  if (bytes === 0) return '0 B';
  const k = 1024;
@@ -164,8 +158,9 @@ function PackagePage() {
    updateParams({ search: value, page: '1' });
  };

-  const handleSortChange = (newSort: string, newOrder: 'asc' | 'desc') => {
-    updateParams({ sort: newSort, order: newOrder, page: '1' });
+  const handleSortChange = (columnKey: string) => {
+    const newOrder = columnKey === sort ? (order === 'asc' ? 'desc' : 'asc') : 'asc';
+    updateParams({ sort: columnKey, order: newOrder, page: '1' });
  };

  const handlePageChange = (newPage: number) => {
@@ -376,7 +371,6 @@ function PackagePage() {
          placeholder="Filter tags..."
          className="list-controls__search"
        />
-        <SortDropdown options={SORT_OPTIONS} value={sort} order={order} onChange={handleSortChange} />
      </div>

      {hasActiveFilters && (
@@ -385,25 +379,21 @@ function PackagePage() {
        </FilterChipGroup>
      )}

-      <DataTable
-        data={tags}
-        columns={columns}
-        keyExtractor={(t) => t.id}
-        emptyMessage={
-          hasActiveFilters
-            ? 'No tags match your filters. Try adjusting your search.'
-            : 'No tags yet. Upload an artifact with a tag to create one!'
-        }
-        onSort={(key) => {
-          if (key === sort) {
-            handleSortChange(key, order === 'asc' ? 'desc' : 'asc');
-          } else {
-            handleSortChange(key, 'asc');
+      <div className="data-table--responsive">
+        <DataTable
+          data={tags}
+          columns={columns}
+          keyExtractor={(t) => t.id}
+          emptyMessage={
+            hasActiveFilters
+              ? 'No tags match your filters. Try adjusting your search.'
+              : 'No tags yet. Upload an artifact with a tag to create one!'
          }
-        }}
-        sortKey={sort}
-        sortOrder={order}
-      />
+          onSort={handleSortChange}
+          sortKey={sort}
+          sortOrder={order}
+        />
+      </div>

      {pagination && pagination.total_pages > 1 && (
        <Pagination
--- a/frontend/src/pages/ProjectPage.tsx
+++ b/frontend/src/pages/ProjectPage.tsx
@@ -1,23 +1,17 @@
 import { useState, useEffect, useCallback } from 'react';
-import { useParams, Link, useSearchParams, useNavigate, useLocation } from 'react-router-dom';
+import { useParams, useSearchParams, useNavigate, useLocation } from 'react-router-dom';
 import { Project, Package, PaginatedResponse, AccessLevel } from '../types';
 import { getProject, listPackages, createPackage, getMyProjectAccess, UnauthorizedError, ForbiddenError } from '../api';
 import { Breadcrumb } from '../components/Breadcrumb';
 import { Badge } from '../components/Badge';
+import { DataTable } from '../components/DataTable';
 import { SearchInput } from '../components/SearchInput';
-import { SortDropdown, SortOption } from '../components/SortDropdown';
 import { FilterChip, FilterChipGroup } from '../components/FilterChip';
 import { Pagination } from '../components/Pagination';
 import { AccessManagement } from '../components/AccessManagement';
 import { useAuth } from '../contexts/AuthContext';
 import './Home.css';

-const SORT_OPTIONS: SortOption[] = [
-  { value: 'name', label: 'Name' },
-  { value: 'created_at', label: 'Created' },
-  { value: 'updated_at', label: 'Updated' },
-];
-
 const FORMAT_OPTIONS = ['generic', 'npm', 'pypi', 'docker', 'deb', 'rpm', 'maven', 'nuget', 'helm'];

 function formatBytes(bytes: number): string {
@@ -140,8 +134,9 @@ function ProjectPage() {
    updateParams({ search: value, page: '1' });
  };

-  const handleSortChange = (newSort: string, newOrder: 'asc' | 'desc') => {
-    updateParams({ sort: newSort, order: newOrder, page: '1' });
+  const handleSortChange = (columnKey: string) => {
+    const newOrder = columnKey === sort ? (order === 'asc' ? 'desc' : 'asc') : 'asc';
+    updateParams({ sort: columnKey, order: newOrder, page: '1' });
  };

  const handleFormatChange = (value: string) => {
@@ -294,7 +289,6 @@ function ProjectPage() {
            </option>
          ))}
        </select>
-        <SortDropdown options={SORT_OPTIONS} value={sort} order={order} onChange={handleSortChange} />
      </div>

      {hasActiveFilters && (
@@ -304,70 +298,78 @@ function ProjectPage() {
        </FilterChipGroup>
      )}

-      {packages.length === 0 ? (
-        <div className="empty-state">
-          {hasActiveFilters ? (
-            <p>No packages match your filters. Try adjusting your search.</p>
-          ) : (
-            <p>No packages yet. Create your first package to start uploading artifacts!</p>
-          )}
-        </div>
-      ) : (
-        <>
-          <div className="project-grid">
-            {packages.map((pkg) => (
-              <Link to={`/project/${projectName}/${pkg.name}`} key={pkg.id} className="project-card card">
-                <div className="package-card__header">
-                  <h3>{pkg.name}</h3>
-                  <Badge variant="default">{pkg.format}</Badge>
-                </div>
-                {pkg.description && <p>{pkg.description}</p>}
+      <div className="data-table--responsive">
+        <DataTable
+          data={packages}
+          keyExtractor={(pkg) => pkg.id}
+          onRowClick={(pkg) => navigate(`/project/${projectName}/${pkg.name}`)}
+          onSort={handleSortChange}
+          sortKey={sort}
+          sortOrder={order}
+          emptyMessage={
+            hasActiveFilters
+              ? 'No packages match your filters. Try adjusting your search.'
+              : 'No packages yet. Create your first package to start uploading artifacts!'
+          }
+          columns={[
+            {
+              key: 'name',
+              header: 'Name',
+              sortable: true,
+              render: (pkg) => <span className="cell-name">{pkg.name}</span>,
+            },
+            {
+              key: 'description',
+              header: 'Description',
+              className: 'cell-description',
+              render: (pkg) => pkg.description || '—',
+            },
+            {
+              key: 'format',
+              header: 'Format',
+              render: (pkg) => <Badge variant="default">{pkg.format}</Badge>,
+            },
+            {
+              key: 'tags',
+              header: 'Tags',
+              render: (pkg) => pkg.tag_count ?? '—',
+            },
+            {
+              key: 'artifacts',
+              header: 'Artifacts',
+              render: (pkg) => pkg.artifact_count ?? '—',
+            },
+            {
+              key: 'size',
+              header: 'Size',
+              render: (pkg) =>
+                pkg.total_size !== undefined && pkg.total_size > 0 ? formatBytes(pkg.total_size) : '—',
+            },
+            {
+              key: 'latest_tag',
+              header: 'Latest',
+              render: (pkg) =>
+                pkg.latest_tag ? <strong style={{ color: 'var(--accent-primary)' }}>{pkg.latest_tag}</strong> : '—',
+            },
+            {
+              key: 'created_at',
+              header: 'Created',
+              sortable: true,
+              className: 'cell-date',
+              render: (pkg) => new Date(pkg.created_at).toLocaleDateString(),
+            },
+          ]}
+        />
+      </div>

-                {(pkg.tag_count !== undefined || pkg.artifact_count !== undefined) && (
-                  <div className="package-stats">
-                    {pkg.tag_count !== undefined && (
-                      <div className="package-stats__item">
-                        <span className="package-stats__value">{pkg.tag_count}</span>
-                        <span className="package-stats__label">Tags</span>
-                      </div>
-                    )}
-                    {pkg.artifact_count !== undefined && (
-                      <div className="package-stats__item">
-                        <span className="package-stats__value">{pkg.artifact_count}</span>
-                        <span className="package-stats__label">Artifacts</span>
-                      </div>
-                    )}
-                    {pkg.total_size !== undefined && pkg.total_size > 0 && (
-                      <div className="package-stats__item">
-                        <span className="package-stats__value">{formatBytes(pkg.total_size)}</span>
-                        <span className="package-stats__label">Size</span>
-                      </div>
-                    )}
-                  </div>
-                )}
-
-                <div className="project-meta">
-                  {pkg.latest_tag && (
-                    <span className="latest-tag">
-                      Latest: <strong>{pkg.latest_tag}</strong>
-                    </span>
-                  )}
-                  <span className="date">Created {new Date(pkg.created_at).toLocaleDateString()}</span>
-                </div>
-              </Link>
-            ))}
-          </div>
-
-          {pagination && pagination.total_pages > 1 && (
-            <Pagination
-              page={pagination.page}
-              totalPages={pagination.total_pages}
-              total={pagination.total}
-              limit={pagination.limit}
-              onPageChange={handlePageChange}
-            />
-          )}
-        </>
+      {pagination && pagination.total_pages > 1 && (
+        <Pagination
+          page={pagination.page}
+          totalPages={pagination.total_pages}
+          total={pagination.total}
+          limit={pagination.limit}
+          onPageChange={handlePageChange}
+        />
      )}

      {canAdmin && projectName && (
--- a/kics.config
+++ b/kics.config
@@ -23,3 +23,29 @@ exclude-queries:
  # Reason: We intentionally don't pin curl version to get security updates.
  # This is documented with hadolint ignore comment in Dockerfile.
  - 965a08d7-ef86-4f14-8792-4a3b2098937e
+
+  # Container Capabilities Unrestricted (MEDIUM)
+  # Reason: LOCAL DEVELOPMENT ONLY. Stock postgres, redis, minio images require
+  # certain capabilities (SETUID, SETGID, CHOWN) to switch users at startup.
+  # cap_drop: ALL breaks these containers. Production Kubernetes deployments
+  # use securityContext with appropriate settings.
+  - ce76b7d0-9e77-464d-b86f-c5c48e03e22d
+
+  # No New Privileges Not Set (HIGH)
+  # Reason: LOCAL DEVELOPMENT ONLY. Stock postgres, redis, minio images need
+  # to escalate privileges during initialization (e.g., postgres switches from
+  # root to postgres user). no-new-privileges:true prevents this and causes
+  # containers to crash. Production Kubernetes deployments handle this via
+  # securityContext.
+  - 27fcc7d6-c49b-46e0-98f1-6c082a6a2750
+
+  # Security Opt Not Set (MEDIUM)
+  # Reason: LOCAL DEVELOPMENT ONLY. Related to above - security_opt is not set
+  # on database services because no-new-privileges breaks them.
+  - 610e266e-6c12-4bca-9925-1ed0cd29742b
+
+  # Container Traffic Not Bound To Host Interface (MEDIUM)
+  # Reason: LOCAL DEVELOPMENT ONLY. The orchard-server port is bound to 0.0.0.0
+  # to allow testing from other machines on the local network. This is only in
+  # docker-compose.local.yml, not production deployments.
+  - 451d79dc-0588-476a-ad03-3c7f0320abb3
Author	SHA1	Message	Date
Mondo Diaz	ece5341199	Allow external access to local dev server - Bind orchard-server port to 0.0.0.0 for LAN testing - Add KICS exception for unbound port (local dev only)	2026-01-15 15:46:43 +00:00
Mondo Diaz	7f7ac44c46	Fix local docker-compose security settings for stock images Remove cap_drop: ALL and no-new-privileges from postgres, redis, minio, and minio-init services. These stock images require certain capabilities (SETUID, SETGID, CHOWN) to switch users during initialization. Added KICS exceptions with documentation explaining these are local development only settings - production Kubernetes uses securityContext.	2026-01-15 15:46:43 +00:00
Mondo Diaz	944debc831	Apply consistent table sorting to Package page Remove SortDropdown in favor of clickable table headers for consistency with Home and Project pages. Add responsive wrapper for horizontal scroll.	2026-01-15 15:46:43 +00:00
Mondo Diaz	005c3d0f6e	Replace package cards with sortable data table on Project page - Convert package grid to DataTable matching Home page style - Add sortable columns: Name, Created - Show package stats: Tags, Artifacts, Size, Latest tag - Row click navigates to package page - Keep existing search and format filter working	2026-01-15 15:46:43 +00:00
Mondo Diaz	54ed41183f	Replace project cards with sortable data table on Home page - Replace card grid with DataTable for better handling of large project lists - Add sortable columns: Name, Created, Updated (click header to sort) - Show lock icon for private projects in Name column - Display Access column with badges for authenticated users - Add onRowClick prop to DataTable for row navigation - Make table responsive with horizontal scroll on small screens - Increase Home page container width to 1200px - Keep existing visibility filter and pagination working	2026-01-15 15:46:43 +00:00
Mondo Diaz	f3a817f8a5	Merge branch 'fix/dark-mode-lighter-theme' into 'main' Adjust dark mode to lighter tones for better readability See merge request esv/bsf/bsf-integration/orchard/orchard-mvp!30	2026-01-15 09:44:07 -06:00
Mondo Diaz	f212864647	Adjust dark mode to lighter tones for better readability	2026-01-15 09:44:07 -06:00