- Implement export-malicious-ips task that queries distinct IPs flagged
as is_suspicious from database and writes to exports/malicious_ips.txt
- Add exports volume mount to docker-compose.yaml for host persistence
- Update entrypoint.sh to fix ownership of exports directory for krawl user
- Update Dockerfile to create /app/exports directory during build
Other tasks can be added by creating them in the tasks dir using the same setup as this task.
All tasks *MUST* include a TASK_CONFIG dict and a main method in the file to work correctly.
- Add ./logs:/app/logs volume mount to docker-compose.yaml for log access
- Create entrypoint.sh script that fixes directory ownership at startup
- Install gosu in Dockerfile for secure privilege dropping
- Use ENTRYPOINT to run permission fix as root, then drop to krawl user
This ensures bind-mounted directories have correct permissions even when
Docker creates them as root on the host.
