Username
|
93a4dd2f97
|
ci: add security headers audit to pipeline
|
2025-12-26 16:56:03 +01:00 |
|
Username
|
bd75f81afd
|
add security testing suite and update docs
- tests/security/pentest_session.py: comprehensive 10-phase pentest
- tests/security/profiled_server.py: cProfile-enabled server
- tests/security/cli_security_audit.py: CLI security checks
- tests/security/dos_memory_test.py: memory exhaustion tests
- tests/security/race_condition_test.py: concurrency tests
- docs: add pentest results, profiling analysis, new test commands
|
2025-12-26 00:39:33 +01:00 |
|
Username
|
c1d2e39b09
|
docs: complete penetration testing status update
All pentest items now complete:
- CLI security audit (clipboard, permissions)
- DoS memory exhaustion (fixed lookup rate limit)
- Race conditions (all protected by locks)
|
2025-12-26 00:17:11 +01:00 |
|
Username
|
0fa6052f69
|
docs: update security testing status with completed tests
- Add race condition testing results (HEAD triggers burn-after-read)
- Add timing attack analysis (PBKDF2 constant-time verified)
- Mark RPM, AVI, WAV MIME signatures as fixed
- Update security controls table with new verifications
|
2025-12-25 23:58:42 +01:00 |
|
Username
|
4823ff7b5d
|
docs: update MIME testing results (26 signatures tested)
|
2025-12-25 23:37:05 +01:00 |
|
Username
|
645f6feefd
|
docs: add security testing status and remaining tasks
|
2025-12-25 23:04:33 +01:00 |
|