Halligalli Arena is a browser game and same-origin socket.io server. It does not require accounts, payments, or server-side persistence.
Please report security issues privately by emailing the repository owner or opening a minimal GitHub security advisory when available. Avoid posting exploit details in public issues before there is a fix.
- Client-side React app.
- Node.js socket.io server.
- Local browser progress stored in
localStorage. - Azure Kubernetes Production package and runtime surfaces.
- Product release automation, GHCR image publication,
/readyz, and/health. - Product-facing Kubernetes documentation for the standalone runtime contract.
- No account system.
- No database.
- No server-side player profile storage.
- No payment or personal-data workflow.
- Multiplayer scoring is server-authoritative.
- Browser progress stays local to the device.
- Deployment secrets, generated config, and real cloud credentials are intentionally excluded from Git.
- Production-used Helm chart templates, real Azure Kubernetes Desired State, cluster credentials, and production values are intentionally kept out of this product repo.
- Vulnerabilities in unsupported local Node.js or browser versions.
- Third-party deployment account compromise.
- User-modified forks with changed infrastructure or credential handling.
- Future AKS topology changes, Container Apps reactivation, or infrastructure operations not explicitly confirmed and run through the infrastructure repo runbooks.