claw/flaskpaste
1
0
Fork 1
forked from username/flaskpaste
Code Pull Requests Activity

Commit Graph

  • ff05f1b289 docs: add MIME detection security assessment Username 2025-12-25 22:21:35 +01:00
  • 4a44d846c2 pentest: add MIME detection abuse scenarios Username 2025-12-25 22:05:42 +01:00
  • 0c8bdacfd2 fix ruff S310 audit warnings in fpaste Username 2025-12-25 21:08:48 +01:00
  • 033751d8e5 ci: fix bandit nosec and cyclonedx-py syntax Username 2025-12-25 21:01:55 +01:00
  • de39a36174 fix mypy type narrowing in test_cli_security Username 2025-12-25 20:49:27 +01:00
  • e8b4cd5e77 ci: install dependencies for mypy type checking Username 2025-12-25 20:47:17 +01:00
  • 8408fedf5a fix lint errors (unused vars, line length, formatting) Username 2025-12-25 20:43:28 +01:00
  • 0496a39a91 add comprehensive MIME detection tests (50 tests) Username 2025-12-25 20:36:49 +01:00
  • 11bb095ca6 use prefix slicing for magic byte detection Username 2025-12-25 20:03:04 +01:00
  • 764b831bb0 expand magic byte detection for common file formats Username 2025-12-25 19:47:33 +01:00
  • 9901649fd7 docs: add compression design constraints Username 2025-12-25 19:40:34 +01:00
  • f640ec85b5 docs: sync ROADMAP and add compression design note Username 2025-12-25 19:30:09 +01:00
  • 14c8d0d83d docs: update test count and fix pki.md inaccuracies Username 2025-12-25 19:24:17 +01:00
  • cd7a9e8340 gitignore: add .hypothesis test cache Username 2025-12-25 19:20:33 +01:00
  • debdc8478e add hypothesis-based fuzzing test suite Username 2025-12-25 19:20:16 +01:00
  • d09ec0da74 fix: handle 405 Method Not Allowed properly Username 2025-12-25 19:20:08 +01:00
  • 0a7627fbe5 add offensive security testing framework Username 2025-12-25 01:11:02 +01:00
  • 0aa31c526b docs: add PKI usage guide with examples Username 2025-12-25 00:28:33 +01:00
  • 48e1e2d8e5 docs: add CONTRIBUTING.md with development setup Username 2025-12-25 00:27:05 +01:00
  • d1df8c4f76 fix: validate algorithm parameter in PKI methods Username 2025-12-25 00:26:23 +01:00
  • 79b12cc3b3 ci: enforce mypy type checking (all errors fixed) Username 2025-12-25 00:20:21 +01:00
  • a040fad0b8 fix: resolve all mypy type errors Username 2025-12-25 00:19:21 +01:00
  • db9b45a9ad docs: update task tracking after CI enhancement Username 2025-12-25 00:10:37 +01:00
  • 88da4fedbe ci: enhance security scanning and add SBOM generation Username 2025-12-24 23:50:11 +01:00
  • 3059d533bc docs: update documentation after pentest remediation Username 2025-12-24 23:33:15 +01:00
  • 3a76453828 security: implement CRYPTO-001 and TIMING-001 remediations Username 2025-12-24 23:28:16 +01:00
  • c130020ab8 security: implement HASH-001 and ENUM-001 remediations Username 2025-12-24 23:12:28 +01:00
  • da1beca893 security: implement quick win remediations (FLOOD-001, CLI-002, CLI-003, AUDIT-001) Username 2025-12-24 23:02:55 +01:00
  • 1fbb69d7f9 security: implement pentest remediation (RATE-002, CLI-001) Username 2025-12-24 22:03:17 +01:00
  • 89eee3378a security: implement pentest remediation (PROXY-001, BURN-001, RATE-001) Username 2025-12-24 21:42:15 +01:00
  • bebc6e0354 add comprehensive penetration testing plan Username 2025-12-24 21:32:19 +01:00
  • 4e06a3befb ci: retry after flaky test failure Username 2025-12-24 20:07:45 +01:00
  • 4577a1d7e4 docs: update for systemd and rate limit headers Username 2025-12-24 20:05:30 +01:00
  • cf458347ef add systemd service unit and rate limit headers Username 2025-12-24 17:51:14 +01:00
  • cb6eebee59 docs: update for v1.5.0 features Username 2025-12-24 17:10:42 +01:00
  • 045f73c998 feat: integrate unused observability features Username 2025-12-24 16:41:31 +01:00
  • fef5eac1b5 ci: add memory leak detection workflow Username 2025-12-24 00:19:33 +01:00
  • 51af8fd2f8 fix: suppress S608 for both ruff and bandit Username 2025-12-23 22:57:38 +01:00
  • 2a287c65f4 fix: use nosec for bandit SQL injection suppression Username 2025-12-23 22:53:52 +01:00
  • 482bd9a152 style: format metrics.py Username 2025-12-23 22:51:11 +01:00
  • 7063f8718e feat: add observability and CLI enhancements Username 2025-12-23 22:39:50 +01:00
  • 4d08a4467d fix: conditional requests import in container tests Username 2025-12-22 20:06:51 +01:00
  • ceb81fdd7c style: format test files Username 2025-12-22 20:04:46 +01:00
  • a469fc3343 test: add paste management tests (list, search, update, delete) Username 2025-12-22 19:42:55 +01:00
  • bf74988ddb test: add container integration tests Username 2025-12-22 19:22:41 +01:00
  • e130e9c84d test: add concurrent submission tests for abuse prevention Username 2025-12-22 19:16:24 +01:00
  • ca9342e92d fix: add comprehensive type annotations for mypy Username 2025-12-22 19:11:11 +01:00
  • 680b068c00 refactor: code consistency and best practices Username 2025-12-22 00:25:18 +01:00
  • 028367d803 docs: modernize and clean deprecated content Username 2025-12-21 22:36:48 +01:00
  • e2e2039903 docs: update for tiered expiry, admin features, batch delete Username 2025-12-21 22:16:51 +01:00
  • 916a09f595 fpaste: add batch delete and --all with confirmation Username 2025-12-21 22:06:53 +01:00
  • e8a99d5bdd add tiered auto-expiry based on auth level Username 2025-12-21 21:55:30 +01:00
  • 3fe631f6b9 fpaste: add --all flag and expiry countdown to list Username 2025-12-21 21:43:48 +01:00
  • 40873434c3 pki: admin can list/delete any paste Username 2025-12-21 21:30:50 +01:00
  • 2acf640d91 pki: first registered user gets admin rights Username 2025-12-21 21:13:30 +01:00
  • 99e6a019f4 tests: fix flaky cleanup test timing for CI Username 2025-12-21 13:45:05 +01:00
  • 2ccbfcbfaa ci: update linting and security checks Username 2025-12-21 13:39:30 +01:00
  • 0c7bf6b587 improve index endpoint with comprehensive API info Username 2025-12-21 13:16:49 +01:00
  • 098789ff89 allow untrusted certs to manage own pastes Username 2025-12-21 12:59:18 +01:00
  • 1f09f2686a fpaste: consolidate code and add type hints Username 2025-12-21 12:43:34 +01:00
  • 37d2ccef0f docs: update for v1.5.0 public registration feature Username 2025-12-21 12:34:35 +01:00
  • c0c65a23ad bump version to 1.5.0 Username 2025-12-21 11:09:53 +01:00
  • 880bf631e3 fpaste: add register command for public certificate enrollment Username 2025-12-21 10:59:09 +01:00
  • 5849c7406f add /register endpoint for public certificate registration Username 2025-12-21 10:34:02 +01:00
  • 68d51c5b3e fpaste: show elevated pow difficulty on create Username 2025-12-20 21:57:13 +01:00
  • b47c26dd14 docs: update for v1.4.0 features Username 2025-12-20 21:36:09 +01:00
  • 98bc656c87 config: increase anti-flood decay to 60s Username 2025-12-20 21:18:54 +01:00
  • c6b3dd410a fpaste: retry on pow failure (max 5 attempts) Username 2025-12-20 21:09:14 +01:00
  • 89ac2af161 fpaste info: show pow difficulty level Username 2025-12-20 20:58:17 +01:00
  • 8d13f52549 bump to 1.4.0, lower anti-flood threshold to 5 Username 2025-12-20 20:53:49 +01:00
  • 45712ea93f add anti-flood: dynamic PoW difficulty under load Username 2025-12-20 20:45:58 +01:00
  • a6812af027 remove /solver endpoint Username 2025-12-20 20:38:02 +01:00
  • 3fe3f6f160 add /solver endpoint for PoW solver script download Username 2025-12-20 20:32:39 +01:00
  • 4f0b33fd7b compose: set URL_PREFIX for HAProxy deployment Username 2025-12-20 20:25:09 +01:00
  • 14be46cdaf compose: use port 5001 (avoid libretranslate conflict) Username 2025-12-20 20:22:55 +01:00
  • dfca09102a bump version to 1.3.0 Username 2025-12-20 20:20:47 +01:00
  • bfc238b5cf add CLI enhancements and scheduled cleanup Username 2025-12-20 20:13:00 +01:00
  • cf31eab678 ci: handle pre-existing type and audit issues Username 2025-12-20 18:42:09 +01:00
  • d364c954d8 style: format with ruff Username 2025-12-20 18:32:47 +01:00
  • d0b199de11 fix lint errors (line length, unused var, nested if) Username 2025-12-20 18:31:47 +01:00
  • 9e92db5217 fpaste: fix -E flag with piped stdin Username 2025-12-20 18:22:59 +01:00
  • a2c5a013ef docs: update for encrypt-by-default CLI Username 2025-12-20 18:12:00 +01:00
  • ba29b6e319 fpaste: encrypt by default, add file path shortcut Username 2025-12-20 18:05:33 +01:00
  • 85110b2570 fpaste: add file path shortcut (fpaste <file>) Username 2025-12-20 17:56:34 +01:00
  • cdf8de5a8b document encryption enforcement options Username 2025-12-20 17:46:58 +01:00
  • b7f247d148 add tests for size and binary enforcement Username 2025-12-20 17:46:54 +01:00
  • 28ee2bae31 add minimum size and binary content enforcement Username 2025-12-20 17:46:49 +01:00
  • 01ee337936 slim down production dependencies Username 2025-12-20 17:37:41 +01:00
  • 486bac1d85 docs: update project status for v1.2.0 Username 2025-12-20 17:24:41 +01:00
  • 260d6e894d update project documentation Username 2025-12-20 17:20:40 +01:00
  • 713052de3d ci: optimize workflow structure Username 2025-12-20 17:20:33 +01:00
  • 9da33f786e fix lint issues across codebase Username 2025-12-20 17:20:27 +01:00
  • adbb5be5c0 add security tooling and development workflow Username 2025-12-20 17:20:21 +01:00
  • 4e38517faf pki: add minimal certificate authority Username 2025-12-20 17:20:15 +01:00
  • 7deba711d4 entropy: exempt small content from check Username 2025-12-20 08:48:13 +01:00
  • 8addf2d9e8 add entropy enforcement for optional encryption requirement Username 2025-12-20 06:57:50 +01:00
  • 9ccd4225dd fpaste: add E2E encryption support Username 2025-12-20 06:51:35 +01:00
  • 964698428c routes: use detected base URL in usage examples Username 2025-12-20 05:27:10 +01:00
  • 677d3e5ba1 client: also update help text with detected URL Username 2025-12-20 05:23:00 +01:00
  • d6fb2e92af client: auto-detect server URL from request headers Username 2025-12-20 05:21:55 +01:00