username/flaskpaste
1
0
Fork 1
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
198 Commits 1 Branch 0 Tags
727e432740eb496daa4b626ac2a997cb005e50a4
Commit Graph

10 Commits

Author SHA1 Message Date
Username
60652e96b4 containerfile: consolidate to single alpine image
Some checks failed
CI / Lint & Format (push) Successful in 22s
Details
CI / Security Scan (push) Successful in 20s
Details
CI / Advanced Security Tests (push) Successful in 17s
Details
CI / Memory Leak Check (push) Successful in 19s
Details
CI / Security Tests (push) Successful in 26s
Details
CI / Unit Tests (push) Successful in 33s
Details
CI / Build & Push Image (push) Failing after 2s
Details
CI / Harbor Vulnerability Scan (push) Has been skipped
Details
CI / SBOM Generation (push) Successful in 19s
Details
CI / Fuzz Testing (push) Successful in 26s
Details
2026-01-21 12:17:47 +01:00
Username
f5f2f8f363 containerfile: remove vendored jaraco from setuptools, purge pip cache
All checks were successful
CI / Security Scan (push) Successful in 22s
Details
CI / Lint & Format (push) Successful in 24s
Details
CI / Advanced Security Tests (push) Successful in 17s
Details
CI / Memory Leak Check (push) Successful in 20s
Details
CI / Security Tests (push) Successful in 26s
Details
CI / Unit Tests (push) Successful in 34s
Details
CI / SBOM Generation (push) Successful in 20s
Details
CI / Fuzz Testing (push) Successful in 26s
Details
CI / Build & Push Image (push) Successful in 39s
Details
CI / Harbor Vulnerability Scan (push) Successful in 37s
Details
2026-01-20 08:28:26 +01:00
Username
ee0e1211a6 containerfile: remove vendored jaraco.context dist-info
All checks were successful
CI / Lint & Format (push) Successful in 23s
Details
CI / Security Scan (push) Successful in 22s
Details
CI / Memory Leak Check (push) Successful in 20s
Details
CI / SBOM Generation (push) Successful in 22s
Details
CI / Security Tests (push) Successful in 26s
Details
CI / Unit Tests (push) Successful in 33s
Details
CI / Advanced Security Tests (push) Successful in 16s
Details
CI / Build & Push Image (push) Successful in 40s
Details 
setuptools vendors jaraco.context 5.3.0 internally; Trivy detects
this even with 6.1.0 installed separately. Remove the vendored
dist-info to silence the false positive.
 2026-01-18 16:29:41 +01:00
Username
278ad73778 containerfile: fix jaraco.context CVE and consolidate 
- explicitly install jaraco.context>=6.1.0 in runtime stage
  to override vendored copy in setuptools (GHSA-58pv-8j8x-9vj2)
- remove redundant installs from builder (requirements.txt
  already pins setuptools>=80.0 and jaraco.context>=6.1.0)
- consolidate runtime pip install into single command
- remove redundant comments
 2026-01-18 12:09:53 +01:00
Username
cc1bba9a57 container: upgrade system setuptools to fix jaraco.context CVE
All checks were successful
CI / Security Scan (push) Successful in 21s
Details
CI / Lint & Format (push) Successful in 23s
Details
CI / Advanced Security Tests (push) Successful in 16s
Details
CI / Memory Leak Check (push) Successful in 20s
Details
CI / Security Tests (push) Successful in 26s
Details
CI / Unit Tests (push) Successful in 34s
Details
CI / SBOM Generation (push) Successful in 20s
Details
CI / Build & Push Image (push) Successful in 20s
Details
2026-01-18 11:12:17 +01:00
Username
6c0e2ab07f container: use apt instead of apt-get
All checks were successful
CI / Lint & Format (push) Successful in 22s
Details
CI / Security Scan (push) Successful in 20s
Details
CI / Advanced Security Tests (push) Successful in 15s
Details
CI / Memory Leak Check (push) Successful in 20s
Details
CI / Security Tests (push) Successful in 25s
Details
CI / Unit Tests (push) Successful in 33s
Details
CI / SBOM Generation (push) Successful in 20s
Details
CI / Build & Push Image (push) Successful in 33s
Details
2026-01-18 10:46:47 +01:00
Username
ba0e591dda container: clean apt caches and upgrade setuptools for CVE fix
All checks were successful
CI / Lint & Format (push) Successful in 22s
Details
CI / Security Scan (push) Successful in 21s
Details
CI / Advanced Security Tests (push) Successful in 15s
Details
CI / Memory Leak Check (push) Successful in 19s
Details
CI / Security Tests (push) Successful in 25s
Details
CI / Unit Tests (push) Successful in 33s
Details
CI / SBOM Generation (push) Successful in 19s
Details
CI / Build & Push Image (push) Successful in 32s
Details
2026-01-18 10:44:24 +01:00
Username
4e38517faf pki: add minimal certificate authority 
- CA generation with encrypted private key storage (AES-256-GCM)
- Client certificate issuance with configurable validity
- Certificate revocation with status tracking
- SHA1 fingerprint integration with existing mTLS auth
- API endpoints: /pki/status, /pki/ca, /pki/issue, /pki/revoke
- CLI commands: fpaste pki status/issue/revoke
- Comprehensive test coverage
 2025-12-20 17:20:15 +01:00
Username
2272b1ff12 add /client endpoint to download fpaste CLI
All checks were successful
CI / test (push) Successful in 38s
Details
2025-12-20 05:19:20 +01:00
Username
8f9868f0d9 flaskpaste: initial commit with security hardening 
Features:
- REST API for text/binary pastes with MIME detection
- Client certificate auth via X-SSL-Client-SHA1 header
- SQLite with WAL mode for concurrent access
- Automatic paste expiry with LRU cleanup

Security:
- HSTS, CSP, X-Frame-Options, X-Content-Type-Options
- Cache-Control: no-store for sensitive responses
- X-Request-ID tracing for log correlation
- X-Proxy-Secret validation for defense-in-depth
- Parameterized queries, input validation
- Size limits (3 MiB anon, 50 MiB auth)

Includes /health endpoint, container support, and 70 tests.
 2025-12-16 04:42:18 +01:00