)]}'
{
  "log": [
    {
      "commit": "13e385685fb87cea70711ff387e57fbe0f725f28",
      "tree": "618000cfa3846350455ea01f72998dc7648c6d46",
      "parents": [
        "59789951fdf8f9a5c834b4d079f0394c2bc42dd3"
      ],
      "author": {
        "name": "banksean",
        "email": "banksean@gmail.com",
        "time": "Sun Jun 29 17:53:27 2025 +0000"
      },
      "committer": {
        "name": "banksean",
        "email": "banksean@gmail.com",
        "time": "Sun Jun 29 17:53:27 2025 +0000"
      },
      "message": "sketch: update local_ssh.md to replace SSHTheater with LocalSSHimmer\n\nUpdate component naming in SSH mutual authentication documentation from deprecated SSHTheater to current LocalSSHimmer implementation.\n\nChanges:\n- Updated sequence diagram participant name from \u0027SSHTheater\u0027 to \u0027LocalSSHimmer\u0027\n- Updated implementation component description to reference LocalSSHimmer\n- Updated SSH configuration approach section to reference LocalSSHimmer\n\nThe documentation now accurately reflects the current component naming used in the SSH authentication system implementation.\n\nCo-Authored-By: sketch \u003chello@sketch.dev\u003e\nChange-ID: s644b455057106ba2k\n"
    },
    {
      "commit": "7013e9ee282ef58104f91d64d85d4aec62f9c022",
      "tree": "baa2d5484c5a5e7add5f9caef2833a3da4abbe29",
      "parents": [
        "00442413a2d0e6d6978982f9eeec0268e533ba56"
      ],
      "author": {
        "name": "Sean McCullough",
        "email": "banksean@gmail.com",
        "time": "Wed May 14 02:03:58 2025 +0000"
      },
      "committer": {
        "name": "Sean McCullough",
        "email": "banksean@gmail.com",
        "time": "Wed May 14 11:15:45 2025 -0700"
      },
      "message": "ssh: use local CA, add mutual container/host auth\n\nSee loop/server/local_ssh.md for a detailed description of how sketch uses\nnow uses a local CA to sign each container certificate instead of adding\na new entry to known_hosts for each container.\n\nThis also adds another layer of security by having the container\u0027s ssh\nserver verify that incoming ssh connections have valid host certificates,\nwhereas prior to this change the authentication was only one-way (verifying\nthat the sketch container you think you\u0027re ssh\u0027ing into really is the one\nyou think you\u0027re ssh\u0027ing into).\n\nThis is somewhat inspired by https://github.com/FiloSottile/mkcert - which\nplays a similar role as ssh_theater.go local for ssh connections, but mkcert\nuses a local CA to address local development use cases for TLS/https rather\nthan for ssh.\n\nCo-Authored-By: sketch \u003chello@sketch.dev\u003e\nChange-ID: sc7b3928295277d5dk\n"
    }
  ]
}
