sneak/upaas
1
0
Fork 0
Code Issues 14 Pull Requests 2 Actions Packages Projects Releases Wiki Activity
02f0a12626
upaas/internal
History
clawbot 02f0a12626 fix: restrict SCP-like URLs to git user only and reject path traversal 
- Changed SCP regex to only accept 'git' as the username
- Added path traversal check: reject URLs containing '..'
- Added test cases for non-git users and path traversal
2026-02-19 20:17:25 -08:00
..
config fix: restrict CORS to configured origins (closes #40) 2026-02-19 13:45:18 -08:00
database fix: remove undeployed api_tokens migrations (006 + 007) 2026-02-16 00:34:02 -08:00
docker fix: resolve all golangci-lint issues 2026-02-15 21:55:24 -08:00
globals Initial commit with server startup infrastructure 2025-12-29 15:46:03 +07:00
handlers fix: restrict SCP-like URLs to git user only and reject path traversal 2026-02-19 20:17:25 -08:00
healthcheck Initial commit with server startup infrastructure 2025-12-29 15:46:03 +07:00
logger Initial commit with server startup infrastructure 2025-12-29 15:46:03 +07:00
middleware fix: restrict CORS to configured origins (closes #40) 2026-02-19 13:45:18 -08:00
models fix: restrict CORS to configured origins (closes #40) 2026-02-19 13:45:18 -08:00
server fix: restrict CORS to configured origins (closes #40) 2026-02-19 13:45:18 -08:00
service fix: restrict CORS to configured origins (closes #40) 2026-02-19 13:45:18 -08:00
ssh Initial commit with server startup infrastructure 2025-12-29 15:46:03 +07:00