forked from wrenn/wrenn
pptx704
dd50cfdcb1
- Add auth failure logging (login, API key, JWT) with IP/email/prefix - Move OAuth JWT from URL params to short-lived cookies to prevent token leakage via browser history, server logs, and Referer headers - Pin Swagger UI to v5.18.2 with SRI integrity hashes - Upgrade Go toolchain to 1.25.8 (fixes 5 called stdlib vulns) - Fix unchecked error in host agent credential refresh - Add .gstack to .gitignore for security report artifacts
50 lines
824 B
Plaintext
50 lines
824 B
Plaintext
# If you prefer the allow list template instead of the deny list, see community template:
|
|
# https://github.com/github/gitignore/blob/main/community/Golang/Go.AllowList.gitignore
|
|
#
|
|
# Binaries for programs and plugins
|
|
*.exe
|
|
*.exe~
|
|
*.dll
|
|
*.so
|
|
*.dylib
|
|
|
|
# Test binary, built with `go test -c`
|
|
*.test
|
|
|
|
# Code coverage profiles and other test artifacts
|
|
*.out
|
|
coverage.*
|
|
*.coverprofile
|
|
profile.cov
|
|
|
|
# Dependency directories (remove the comment below to include it)
|
|
# vendor/
|
|
|
|
# Go workspace file
|
|
go.work
|
|
go.work.sum
|
|
|
|
# env file
|
|
.env
|
|
|
|
# Editor/IDE
|
|
# .idea/
|
|
.vscode/
|
|
|
|
## AI
|
|
.claude/
|
|
e2b/
|
|
.impeccable.md
|
|
.gstack
|
|
|
|
## Builds
|
|
builds/
|
|
|
|
## Frontend
|
|
frontend/node_modules/
|
|
frontend/.svelte-kit/
|
|
frontend/build/
|
|
|
|
## Dashboard embedded static (built from frontend, not committed)
|
|
internal/dashboard/static/*
|
|
!internal/dashboard/static/.gitkeep |