sneak/webhooker
1
0
Fork 0
Code Issues 3 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5c69efb5bca992cf3c5c3536df4d44c17b90331b
webhooker/internal/middleware
History
clawbot 5c69efb5bc
All checks were successful
check / check (push) Successful in 2m7s
Details
Replace custom secureCompare with crypto/subtle.ConstantTimeCompare 
Remove the hand-rolled secureCompare function and use the standard
library's crypto/subtle.ConstantTimeCompare for CSRF token validation.
Remove the corresponding unit test for the deleted function; CSRF token
comparison is still covered by the integration tests.
2026-03-10 02:39:24 -07:00
..
csrf_test.go
Replace custom secureCompare with crypto/subtle.ConstantTimeCompare
2026-03-10 02:39:24 -07:00
csrf.go
Replace custom secureCompare with crypto/subtle.ConstantTimeCompare
2026-03-10 02:39:24 -07:00
middleware_test.go
test: add tests for delivery, middleware, and session packages (#32)
2026-03-04 12:07:23 +01:00
middleware.go
security: add headers middleware, session regeneration, and body size limits (#41)
2026-03-05 12:32:56 +01:00
ratelimit_test.go
feat: add CSRF protection, SSRF prevention, and login rate limiting
2026-03-05 03:37:09 -08:00
ratelimit.go
feat: add CSRF protection, SSRF prevention, and login rate limiting
2026-03-05 03:37:09 -08:00