SecAI-Hub
diff --git a/‎.github/scripts/check-container-pins.sh‎
Lines changed: 27 additions & 0 deletions b/‎.github/scripts/check-container-pins.sh‎
Lines changed: 27 additions & 0 deletions
diff --git a/‎.github/workflows/ci.yml‎
Lines changed: 9 additions & 23 deletions b/‎.github/workflows/ci.yml‎
Lines changed: 9 additions & 23 deletions
diff --git a/‎.github/workflows/release.yml‎
Lines changed: 64 additions & 18 deletions b/‎.github/workflows/release.yml‎
Lines changed: 64 additions & 18 deletions
diff --git a/‎.github/workflows/vm-boot-smoke.yml‎
Lines changed: 21 additions & 20 deletions b/‎.github/workflows/vm-boot-smoke.yml‎
Lines changed: 21 additions & 20 deletions
@@ -80,6 +80,18 @@ def compose_files() -> list[pathlib.Path]:
     return sorted(set(files))
 
 
+def helper_script_files() -> list[pathlib.Path]:
+    roots = [repo / "scripts", repo / ".github" / "scripts", repo / "files" / "scripts"]
+    files: list[pathlib.Path] = []
+    for root in roots:
+        if not root.exists():
+            continue
+        for path in root.rglob("*"):
+            if path.is_file() and path.suffix in {".sh", ".bash", ".ps1"}:
+                files.append(path)
+    return sorted(files)
+
+
 errors = 0
 checked = 0
 
@@ -120,6 +132,21 @@ for path in compose_files():
             print(f"ERROR: {rel(path)}:{line_no}: unpinned compose image {image_ref}")
             errors += 1
 
+script_image_re = re.compile(
+    r"(?P<ref>(?:docker\.io|quay\.io|ghcr\.io)/(?!secai-hub/secai_os\b)"
+    r"[A-Za-z0-9][A-Za-z0-9._/-]*:[A-Za-z0-9._-]+(?:@[A-Za-z0-9:]+)?)"
+)
+for path in helper_script_files():
+    for line_no, line in enumerate(path.read_text(encoding="utf-8").splitlines(), 1):
+        if line.lstrip().startswith("#"):
+            continue
+        for match in script_image_re.finditer(line):
+            image_ref = match.group("ref").strip('"\'')
+            checked += 1
+            if "@sha256:" not in image_ref:
+                print(f"ERROR: {rel(path)}:{line_no}: unpinned helper image {image_ref}")
+                errors += 1
+
 if errors:
     print(f"FAIL: {errors} unpinned container image reference(s) found")
     sys.exit(1)
 
@@ -259,34 +259,20 @@ jobs:
         with:
           go-version: "1.25"
 
-      - name: Install Syft (SBOM generator)
-        run: curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin
-
       - name: Install cosign (signing & attestation)
         run: |
           COSIGN_VERSION="v2.4.3"
           curl -sSfL "https://github.com/sigstore/cosign/releases/download/${COSIGN_VERSION}/cosign-linux-amd64" \
             -o /usr/local/bin/cosign
           chmod +x /usr/local/bin/cosign
 
-      - name: Verify SBOM generation (Go services)
-        run: |
-          echo "=== SBOM generation verification ==="
-          for svc in airlock registry tool-firewall gpu-integrity-watch mcp-firewall \
-                     policy-engine runtime-attestor integrity-monitor incident-recorder; do
-            echo "--- ${svc} ---"
-            syft dir:services/${svc} -o cyclonedx-json=/dev/null
-            echo "OK: ${svc} SBOM generated"
-          done
-
-      - name: Verify SBOM generation (Python services)
-        run: |
-          for svc in agent ui quarantine common diffusion-worker search-mediator; do
-            if [ -d "services/${svc}" ]; then
-              syft dir:services/${svc} -o cyclonedx-json=/dev/null
-              echo "OK: ${svc} SBOM generated"
-            fi
-          done
+      - name: Verify SBOM generation
+        uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # v0.24.0
+        with:
+          path: .
+          format: cyclonedx-json
+          output-file: /tmp/secai-os-sbom.cdx.json
+          upload-artifact: false
 
       - name: Verify cosign is functional
         run: |
@@ -514,7 +500,7 @@ jobs:
           python-version: "3.12"
 
       - name: Install govulncheck
-        run: go install golang.org/x/vuln/cmd/govulncheck@latest
+        run: go install golang.org/x/vuln/cmd/govulncheck@v1.3.0
 
       - name: Go vulnerability scan (enforced)
         run: |
@@ -827,7 +813,7 @@ jobs:
       - name: Install dependencies
         run: |
           pip install -r requirements-ci.txt
-          go install golang.org/x/vuln/cmd/govulncheck@latest
+          go install golang.org/x/vuln/cmd/govulncheck@v1.3.0
 
       - name: Bandit (release-strict)
         run: |
 
@@ -91,13 +91,15 @@ jobs:
       - name: Build (linux/amd64)
         working-directory: services/${{ matrix.service }}
         run: |
+          mkdir -p ../../dist
           CGO_ENABLED=0 GOOS=linux GOARCH=amd64 \
             go build -ldflags="-s -w -X main.version=${{ github.ref_name }}" \
             -o ../../dist/${{ matrix.service }}-linux-amd64 .
 
       - name: Build (linux/arm64)
         working-directory: services/${{ matrix.service }}
         run: |
+          mkdir -p ../../dist
           CGO_ENABLED=0 GOOS=linux GOARCH=arm64 \
             go build -ldflags="-s -w -X main.version=${{ github.ref_name }}" \
             -o ../../dist/${{ matrix.service }}-linux-arm64 .
@@ -126,23 +128,56 @@ jobs:
         with:
           python-version: "3.12"
 
-      - name: Install Syft
-        run: curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh | sh -s -- -b /usr/local/bin
+      - name: Prepare SBOM output directory
+        run: mkdir -p dist
 
-      - name: Generate Python SBOMs
-        run: |
-          mkdir -p dist
-          for svc in agent ui quarantine common; do
-            if [ -d "services/${svc}" ]; then
-              syft dir:services/${svc} -o cyclonedx-json=dist/${svc}-sbom.cdx.json
-            fi
-          done
-          # Diffusion worker and search mediator
-          for svc in diffusion-worker search-mediator; do
-            if [ -d "services/${svc}" ]; then
-              syft dir:services/${svc} -o cyclonedx-json=dist/${svc}-sbom.cdx.json
-            fi
-          done
+      - name: Generate agent SBOM
+        uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # v0.24.0
+        with:
+          path: services/agent
+          format: cyclonedx-json
+          output-file: dist/agent-sbom.cdx.json
+          upload-artifact: false
+
+      - name: Generate ui SBOM
+        uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # v0.24.0
+        with:
+          path: services/ui
+          format: cyclonedx-json
+          output-file: dist/ui-sbom.cdx.json
+          upload-artifact: false
+
+      - name: Generate quarantine SBOM
+        uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # v0.24.0
+        with:
+          path: services/quarantine
+          format: cyclonedx-json
+          output-file: dist/quarantine-sbom.cdx.json
+          upload-artifact: false
+
+      - name: Generate common SBOM
+        uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # v0.24.0
+        with:
+          path: services/common
+          format: cyclonedx-json
+          output-file: dist/common-sbom.cdx.json
+          upload-artifact: false
+
+      - name: Generate diffusion-worker SBOM
+        uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # v0.24.0
+        with:
+          path: services/diffusion-worker
+          format: cyclonedx-json
+          output-file: dist/diffusion-worker-sbom.cdx.json
+          upload-artifact: false
+
+      - name: Generate search-mediator SBOM
+        uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # v0.24.0
+        with:
+          path: services/search-mediator
+          format: cyclonedx-json
+          output-file: dist/search-mediator-sbom.cdx.json
+          upload-artifact: false
 
       - name: Upload artifacts
         uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1
@@ -158,7 +193,18 @@ jobs:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
 
       - name: Build sandbox images required for VEX generation
-        run: docker compose -f deploy/sandbox/compose.yaml --profile diffusion build ui agent search-mediator diffusion
+        run: |
+          for attempt in 1 2 3; do
+            if docker compose -f deploy/sandbox/compose.yaml --profile diffusion build ui agent search-mediator diffusion; then
+              exit 0
+            fi
+            if [ "$attempt" -eq 3 ]; then
+              echo "Sandbox image build failed after ${attempt} attempts." >&2
+              exit 1
+            fi
+            echo "Sandbox image build failed; retrying in $((attempt * 15)) seconds..."
+            sleep $((attempt * 15))
+          done
 
       - name: Generate sandbox OpenVEX document
         run: |
@@ -301,7 +347,7 @@ jobs:
       - name: Build QCOW2
         run: |
           bash scripts/vm/build-qcow2.sh --ci \
-            --image-ref "ghcr.io/secai-hub/secai_os:${{ github.ref_name }}"
+            --image-ref "ghcr.io/secai-hub/secai_os:latest"
 
       - name: Build OVA from QCOW2
         run: bash scripts/vm/build-ova.sh
 
@@ -3,7 +3,8 @@ name: VM Boot Smoke Test (Tier 2)
 # Tier 2: Real VM boot test on self-hosted KVM runner.
 # All checks run inside the guest via SSH (not host-side).
 #
-# REQUIRES: self-hosted runner with KVM, QEMU, cloud-utils, and ssh-keygen.
+# REQUIRES: self-hosted runner with KVM, QEMU, libvirt/virt-install, cloud-utils,
+# and ssh-keygen.
 # Gate: only runs when vars.HAS_KVM_RUNNER == 'true'.
 #
 # SECURITY: Never triggered by pull_request (fork safety for self-hosted runners).
@@ -110,9 +111,9 @@ jobs:
       - name: Wait for SSH readiness
         run: |
           echo "Waiting for guest SSH (up to 5 minutes)..."
-          SSH_OPTS="-o ConnectTimeout=5 -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key"
+          SSH_OPTS=(-o ConnectTimeout=5 -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key)
           for i in $(seq 1 60); do
-            if ssh $SSH_OPTS -p 2222 root@localhost echo "SSH ready" 2>/dev/null; then
+            if ssh "${SSH_OPTS[@]}" -p 2222 root@localhost echo "SSH ready" 2>/dev/null; then
               echo "Guest SSH is up after $((i * 5)) seconds"
               break
             fi
@@ -121,34 +122,34 @@ jobs:
 
       - name: "Check: systemd system state"
         run: |
-          SSH="ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost"
-          STATE=$($SSH "systemctl is-system-running" 2>/dev/null || true)
+          SSH=(ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost)
+          STATE=$("${SSH[@]}" "systemctl is-system-running" 2>/dev/null || true)
           echo "System state: $STATE"
           if [ "$STATE" != "running" ] && [ "$STATE" != "degraded" ]; then
             echo "FAIL: expected running or degraded, got $STATE"
-            $SSH "systemctl --failed" || true
+            "${SSH[@]}" "systemctl --failed" || true
             exit 1
           fi
 
       - name: "Check: auth endpoint responds"
         run: |
-          SSH="ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost"
-          $SSH "curl -sf http://127.0.0.1:8480/api/auth/status" || {
+          SSH=(ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost)
+          "${SSH[@]}" "curl -sf http://127.0.0.1:8480/api/auth/status" || {
             echo "FAIL: auth endpoint did not respond"
             exit 1
           }
 
       - name: "Check: health endpoint"
         run: |
-          SSH="ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost"
-          $SSH "curl -sf http://127.0.0.1:8480/health" || {
+          SSH=(ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost)
+          "${SSH[@]}" "curl -sf http://127.0.0.1:8480/health" || {
             echo "FAIL: health endpoint did not respond"
             exit 1
           }
 
       - name: "Check: disabled services stay inactive (offline_private profile)"
         run: |
-          SSH="ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost"
+          SSH=(ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost)
           DISABLED=(
             secure-ai-diffusion.service
             secure-ai-airlock.service
@@ -158,7 +159,7 @@ jobs:
             secure-ai-enable-diffusion.path
           )
           for svc in "${DISABLED[@]}"; do
-            if $SSH "systemctl is-active --quiet $svc" 2>/dev/null; then
+            if "${SSH[@]}" "systemctl is-active --quiet $svc" 2>/dev/null; then
               echo "FAIL: $svc is active (should be disabled in offline_private)"
               exit 1
             fi
@@ -167,31 +168,31 @@ jobs:
 
       - name: "Check: default profile is offline_private"
         run: |
-          SSH="ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost"
-          PROFILE=$($SSH "cat /var/lib/secure-ai/state/profile.json 2>/dev/null || echo '{}'")
+          SSH=(ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost)
+          PROFILE=$("${SSH[@]}" "cat /var/lib/secure-ai/state/profile.json 2>/dev/null || echo '{}'")
           echo "Profile state: $PROFILE"
           # On first boot without wizard, profile.json may not exist yet — fallback is offline_private
 
       - name: "Check: vault API responds"
         run: |
-          SSH="ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost"
-          $SSH "curl -sf http://127.0.0.1:8480/api/vault/status" || {
+          SSH=(ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost)
+          "${SSH[@]}" "curl -sf http://127.0.0.1:8480/api/vault/status" || {
             echo "FAIL: vault status endpoint did not respond"
             exit 1
           }
 
       - name: "Check: quarantine directory exists"
         run: |
-          SSH="ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost"
-          $SSH "test -d /var/lib/secure-ai/quarantine" || {
+          SSH=(ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost)
+          "${SSH[@]}" "test -d /var/lib/secure-ai/quarantine" || {
             echo "FAIL: quarantine directory does not exist"
             exit 1
           }
 
       - name: "Check: rpm-ostree deployment"
         run: |
-          SSH="ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost"
-          $SSH "rpm-ostree status" || {
+          SSH=(ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i /tmp/vm-smoke-key -p 2222 root@localhost)
+          "${SSH[@]}" "rpm-ostree status" || {
             echo "FAIL: rpm-ostree status failed"
             exit 1
           }