claw/flaskpaste
1
0
Fork 1
forked from username/flaskpaste
Code Pull Requests Activity
216 Commits 1 Branch 0 Tags
8ebabfe1028716561053e927eb96a1b1f4f8cce0
Commit Graph

216 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Username
8ebabfe102 pastes: add display_name field 
Authenticated users can tag pastes with a human-readable label
via X-Display-Name header. Supports create, update, remove, and
listing. Max 128 chars, control characters rejected.
 2026-02-24 12:55:44 +01:00
Username
d44c9c66ab ci: remove test job from pipeline 2026-02-23 22:06:22 +01:00
user
d7c4705e7a chore: trigger CI 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-02-23 21:59:42 +01:00
Username
9a641bc14e deps: pin wheel>=0.46.2 (CVE-2026-24049) 2026-02-23 21:57:23 +01:00
Username
2a99a101a6 ci: consolidate 9 jobs into 4 
Merge lint+security into single lint job, merge
test+security-tests+security-advanced+memory+fuzz
into single test job. Eliminates 5 redundant container
setups (~90s overhead each).

Pipeline: lint --> test --> build-push --> vuln-scan
 2026-02-23 21:54:51 +01:00
Username
4f4964decd routes: fix mypy no-any-return in get_pow_secret 2026-02-23 21:40:31 +01:00
Username
253fb2ad38 config: fix ruff formatting 2026-02-23 21:38:44 +01:00
Username
fdf8364e80 config: fix ruff E501 line length in POW_SECRET 2026-02-23 21:37:26 +01:00
Username
d638c822d3 ci: ensure git is available in deploy job 2026-02-23 21:33:54 +01:00
user
e7c278be0d fix: share PoW HMAC secret across gunicorn workers 
get_pow_secret() generated a random secret per process, so challenges
signed by worker A failed verification on worker B (~90% failure rate
with 2 workers).  Persist a file-backed secret to data/.pow_secret
using O_EXCL for atomic creation.  FLASKPASTE_POW_SECRET env var
still takes priority when configured.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
 2026-02-23 21:32:18 +01:00
Username
ca1cbd6e73 routes: fix ruff formatting 2026-02-18 08:47:53 +01:00
Username
c69290af2d routes: skip rate limiting for trusted certificate holders 2026-02-18 08:42:25 +01:00
Username
283f87b9c4 routes: skip PoW for trusted certificate holders 2026-02-16 22:51:08 +01:00
Username
c31923f491 containerfile: pin wheel>=0.46.2 in runtime stage 2026-02-16 22:32:55 +01:00
Username
cf27bd3f6a containerfile: pin wheel>=0.46.2 (CVE-2026-24049) 2026-02-16 22:26:56 +01:00
Username
e9d52d9794 ci: add --load flag to docker build 2026-02-16 22:09:48 +01:00
Username
c996b7166d tests: fix ruff 0.15 formatting 2026-02-16 22:04:27 +01:00
Username
c484c9ecc8 routes: fix ruff formatting 2026-02-16 22:02:36 +01:00
Username
727e432740 audit: migrate enums to StrEnum 2026-02-16 20:59:55 +01:00
Username
2679bc8e69 docs: add url shortener documentation 2026-02-16 20:56:55 +01:00
Username
75a9bf56d9 tests: add url shortener test suite 2026-02-16 20:27:02 +01:00
Username
0f63bb05e1 cleanup: add expired short url cleanup 2026-02-16 20:26:58 +01:00
Username
727fc84784 routes: add url shortener endpoints 2026-02-16 20:26:54 +01:00
Username
965a6eac0e metrics: add url shortener counters 2026-02-16 20:26:50 +01:00
Username
edc9e4344e audit: add url shortener event types 2026-02-16 20:26:46 +01:00
Username
80b8dbdd40 config: add url shortener settings 2026-02-16 20:26:43 +01:00
Username
7fe1cc164b database: add short_urls table schema 2026-02-16 20:26:39 +01:00
Username
68b3f8e84e ci: specify containerfile path for docker build 2026-01-21 12:24:31 +01:00
Username
60652e96b4 containerfile: consolidate to single alpine image 2026-01-21 12:17:47 +01:00
Username
79a4d1d0ea docs: add k1s quick deploy section 2026-01-21 10:35:11 +01:00
Username
70d9a7f9f7 tests: remove name field assertion from index test 2026-01-21 10:18:01 +01:00
Username
b78d033192 ci: trigger workflow 2026-01-21 10:05:03 +01:00
Username
fec9e22bb3 api: remove name field from index endpoint 2026-01-20 23:33:41 +01:00
Username
9777cbb053 bump version to 1.5.2 2026-01-20 08:41:22 +01:00
Username
f5f2f8f363 containerfile: remove vendored jaraco from setuptools, purge pip cache 2026-01-20 08:28:26 +01:00
Username
5a05af4764 containerfile: use --no-deps to prevent jaraco.context downgrade 2026-01-20 08:25:16 +01:00
Username
329563f4b9 containerfile: force reinstall jaraco.context to fix GHSA-58pv 2026-01-20 08:23:53 +01:00
Username
66d7948073 containerfile: consolidate security pins in requirements.txt 2026-01-20 08:20:55 +01:00
Username
677cdff58d containerfile: upgrade base image pip and jaraco.context 2026-01-20 08:19:41 +01:00
Username
aba81f908e containerfile: force upgrade pip and jaraco.context post-install 2026-01-20 08:16:49 +01:00
Username
e4b313041e containerfile: pin pip>=25.3 to fix CVE-2025-8869 2026-01-20 08:12:22 +01:00
Username
9c4c907f75 fpaste: add configurable endpoint prefix 
- Add endpoint config key (FLASKPASTE_ENDPOINT env var)
- Add build_url() helper for URL construction
- Change default server to https://paste.mymx.me
- Support endpoint prefix in config file
 2026-01-19 23:58:42 +01:00
Username
0f5742ccc2 containerfile: switch slim image to alpine base 
Debian distroless had 5 critical CVEs (unfixed in Debian 12).
Alpine has active security patches and smaller footprint.
 2026-01-19 23:58:34 +01:00
Username
54190487c8 kubernetes: use slim distroless image 2026-01-19 23:04:06 +01:00
Username
10c94f29dd ci: fix vuln count to exclude header line 2026-01-19 22:58:58 +01:00
Username
89b019d7df ci: fix vuln count parsing in harbor scan 2026-01-19 22:54:42 +01:00
Username
9302939890 ci: fix harbor-ctl scan/vulns command syntax 2026-01-19 22:49:18 +01:00
Username
c81988fc1a ci: add delay before harbor scan for image indexing 2026-01-19 22:47:02 +01:00
Username
46875fba0c ci: fresh run 2026-01-19 22:36:09 +01:00
Username
1d90de95ac ci: retrigger after runner fix 2026-01-19 22:24:45 +01:00