feat: add [force_track] whitelist to .museignore

Adds a [force_track] section that overrides both the built-in secrets blocklist and user ignore patterns for specific exact paths. Canonical use-case: self-signed dev TLS certs that must survive clean pulls.

Design: - Exact paths only in [force_track].paths — no glob expansion - Overrides *.key, *.pem, .env, and all other blocked patterns - load_force_track_paths() returns frozenset for O(1) lookup in walk_workdir - Updated init.py template documents [force_track] as a commented block - 23 new TDD tests; 202 existing ignore/snapshot tests still green

sha256:5861034489d3d53ff3c84f8b084d59fce2bdb682354d654210a67e05aba860ea sha

sha256:c966b6011d352fa220ab6501ecd36dcf8d2d2c7cf0b22f7f84a5f9cd77201a92 parent

sha256:59ccf13d3177032dfd996e14a1c00d7c62c637db723ce0617ad50fa5a29798fb snapshot

← Older Oldest on task/force-track-whitelist

All commits

Newer → Latest on task/force-track-whitelist

0 comments

No comments yet. Be the first to start the discussion.

To add a comment, use the Muse CLI: muse hub commit comment sha256:5861034489d3d53ff3c84f8b084d59fce2bdb682354d654210a67e05aba860ea --body "your comment"

Provenance signed

AI Agent

claude-sonnet-4-6

Bump patch

Agent claude-code

Signature Cryptographically verified

Snapshot

ID sha256:59ccf13d3177032dfd996e14a1c00d7c62c637db723ce0617ad50fa5a29798fb

Files 0

Browse tree at this commit →

Commit

SHA sha256:5861034489d3d53ff3c84f8b084d59fce2bdb682354d654210a67e05aba860ea

Parent

sha256:c966b6011d352fa220ab6501ecd36dcf8d2d2c7cf0b22f7f84a5f9cd77201a92

Branch task/force-track-whitelist