Skip to content

security features #8

Merged
rempairamore merged 3 commits into
mainfrom
2026-new-sec-features
Jun 24, 2026
Merged

security features #8
rempairamore merged 3 commits into
mainfrom
2026-new-sec-features

Conversation

@rempairamore

Copy link
Copy Markdown
Contributor
  • Security (CodeQL): fix path-injection on uploads, enforce http(s):// URLs, harden SSRF (peer-IP check vs DNS rebinding).
  • URL cache: 4h TTL, 1 GB budget with oldest-first eviction, new cache=true|false param.
  • Docker: run as non-root user + .dockerignore.

@rempairamore rempairamore self-assigned this Jun 23, 2026
@rempairamore rempairamore merged commit c3b357e into main Jun 24, 2026
5 of 9 checks passed
@rempairamore rempairamore deleted the 2026-new-sec-features branch June 24, 2026 11:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant