Coder-soft · Coder-soft · Dec 6, 2025 · Dec 6, 2025 · Dec 6, 2025 · Dec 8, 2025
diff --git a/.github/workflows/static.yml b/.github/workflows/static.yml
@@ -0,0 +1,43 @@
+# Simple workflow for deploying static content to GitHub Pages
+name: Deploy static content to Pages
+
+on:
+  # Runs on pushes targeting the default branch
+  push:
+    branches: ["master"]
+
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+
+# Sets permissions of the GITHUB_TOKEN to allow deployment to GitHub Pages
+permissions:
+  contents: read
+  pages: write
+  id-token: write
+
+# Allow only one concurrent deployment, skipping runs queued between the run in-progress and latest queued.
+# However, do NOT cancel in-progress runs as we want to allow these production deployments to complete.
+concurrency:
+  group: "pages"
+  cancel-in-progress: false
+
+jobs:
+  # Single deploy job since we're just deploying
+  deploy:
+    environment:
+      name: github-pages
+      url: ${{ steps.deployment.outputs.page_url }}
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+      - name: Setup Pages
+        uses: actions/configure-pages@v5
+      - name: Upload artifact
+        uses: actions/upload-pages-artifact@v3
+        with:
+          # Upload entire repository
+          path: '.'
-        with:
-          # Upload entire repository
-          path: '.'
+        with:
+          # Upload only documentation directory
+          path: 'docs'
-        with:
-          # Upload entire repository
-          path: '.'
+        with:
+          # Upload only documentation directory
+          path: 'docs'
+      - name: Deploy to GitHub Pages
+        id: deployment
+        uses: actions/deploy-pages@v4
diff --git a/Dockerfile b/Dockerfile
@@ -30,6 +30,9 @@ RUN npm ci --production
 # Create plugins directory
 RUN mkdir -p plugins
 
+# Install wget for healthcheck
+RUN apk add --no-cache wget
+
 # Expose API port
 EXPOSE 3000
 

diff --git a/bin/holo.js b/bin/holo.js
@@ -10,6 +10,7 @@
  */
 
 import { spawn } from 'child_process';
+import { randomBytes } from 'crypto';
 import { readFile, writeFile, access, mkdir } from 'fs/promises';
 import { constants } from 'fs';
 import { resolve, dirname } from 'path';
@@ -211,9 +212,11 @@ RATE_LIMIT_MAX=100
 
 function generateApiKey() {
     const chars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';
+    const charsLength = chars.length;
+    const bytes = randomBytes(32); // 32 bytes of cryptographically secure entropy
     let key = 'holo_';
     for (let i = 0; i < 32; i++) {
-        key += chars.charAt(Math.floor(Math.random() * chars.length));
+        key += chars.charAt(bytes[i] % charsLength);
     }
     return key;
 }
@@ -246,24 +249,31 @@ Examples:
 const args = process.argv.slice(2);
 const command = args[0];
 
-switch (command) {
-    case 'start':
-        commandStart(args.slice(1));
-        break;
-    case 'doctor':
-        commandDoctor();
-        break;
-    case 'init':
-        commandInit();
-        break;
-    case 'help':
-    case '--help':
-    case '-h':
-    case undefined:
-        showHelp();
-        break;
-    default:
-        log(`Unknown command: ${command}`, 'red');
-        showHelp();
+(async () => {
+    try {
+        switch (command) {
+            case 'start':
+                await commandStart(args.slice(1));
+                break;
+            case 'doctor':
+                await commandDoctor();
+                break;
+            case 'init':
+                await commandInit();
+                break;
+            case 'help':
+            case '--help':
+            case '-h':
+            case undefined:
+                showHelp();
+                break;
+            default:
+                log(`Unknown command: ${command}`, 'red');
+                showHelp();
+                process.exit(1);
+        }
+    } catch (err) {
+        log(`Error: ${err.message}`, 'red');
         process.exit(1);
-}
+    }
+})();