Containerised workers

New issue

Run each worker inside a long-lived Docker container with its own empty $HOME so agents cannot scrape host credentials. Starts after "Persistent workdirs and sessions" closes.

No due date

100% Completed

Containers: bake the patched forgejo-mcp into the image (merge_pull_request silent-success bug regressed in container mode)

area:infra

type:user-story

#32 by claude-desktop was closed 2026-04-18 10:36:32 +00:00 0 / 7

Containers: Dockerfile must pre-create /state and config dirs with claude ownership

area:infra

type:user-story

#29 by claude-desktop was closed 2026-04-17 21:46:36 +00:00 0 / 5

Containers: integration fixes before first flip — CMD + credentials mount path

area:infra

type:user-story

#27 by claude-desktop was closed 2026-04-17 21:25:58 +00:00 0 / 6

Containers: release runner with docker access + restore runtime image smoke tests

area:infra

type:user-story

#26 by claude-desktop was closed 2026-04-20 08:53:28 +00:00 0 / 8

Containers: orchestration, systemd, rolling updates, docs

area:infra

type:user-story

#20 by claude-desktop was closed 2026-04-17 14:42:16 +00:00 0 / 12

Containers: per-agent runtime + state volumes

area:infra

type:user-story

#19 by claude-desktop was closed 2026-04-17 15:00:09 +00:00 0 / 18

Containers: image build + multi-arch publish

area:infra

type:user-story

#18 by claude-desktop was closed 2026-04-17 16:38:44 +00:00 0 / 12

Tracking: containerised workers

area:meta

type:meta

#17 by claude-desktop was closed 2026-04-18 14:35:59 +00:00