tksadik92/wrenn-releases
1
0
Fork 0
forked from wrenn/wrenn
Code Pull Requests Activity
Files
dd50cfdcb163097bb2a08c01ac1e8caf5de4dfd5
wrenn-releases/internal/api
History
pptx704 dd50cfdcb1 fix: security hardening from CSO audit 
- Add auth failure logging (login, API key, JWT) with IP/email/prefix
- Move OAuth JWT from URL params to short-lived cookies to prevent
  token leakage via browser history, server logs, and Referer headers
- Pin Swagger UI to v5.18.2 with SRI integrity hashes
- Upgrade Go toolchain to 1.25.8 (fixes 5 called stdlib vulns)
- Fix unchecked error in host agent credential refresh
- Add .gstack to .gitignore for security report artifacts
2026-04-08 03:46:31 +06:00
..
agent_helper.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handler_sandbox_proxy.go
Add pre-pause proxy connection drain and sandbox proxy caching
2026-04-01 15:09:44 +06:00
handlers_apikeys.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handlers_audit.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handlers_auth.go
fix: security hardening from CSO audit
2026-04-08 03:46:31 +06:00
handlers_builds.go
Add skip_pre_post build option, cancel endpoint, and recipe package
2026-03-30 21:24:52 +06:00
handlers_exec_stream.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handlers_exec.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handlers_files_stream.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handlers_files.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handlers_hosts.go
Add mTLS to CP→agent channel
2026-03-30 21:24:35 +06:00
handlers_metrics.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handlers_oauth.go
fix: security hardening from CSO audit
2026-04-08 03:46:31 +06:00
handlers_sandbox.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handlers_snapshots.go
Seed minimal template in DB and protect it from deletion
2026-03-29 01:34:54 +06:00
handlers_stats.go
Fix metrics correctness, redesign stats page
2026-03-25 15:11:46 +06:00
handlers_team.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
handlers_terminal.go
Add minimal control plane with REST API, database, and reconciler
2026-03-10 16:50:12 +06:00
handlers_users.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
host_monitor.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
metrics_sampler.go
Add live stats page with metrics sampling and route split
2026-03-25 14:41:05 +06:00
middleware_admin.go
Add BYOC page, admin section, and is_byoc team visibility gating
2026-03-25 03:10:41 +06:00
middleware_auth.go
fix: security hardening from CSO audit
2026-04-08 03:46:31 +06:00
middleware_hosttoken.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
middleware_jwt.go
Switch database IDs from TEXT to native UUID
2026-03-26 16:16:21 +06:00
middleware.go
Add UUID-based template IDs and team-scoped template directory layout
2026-03-29 00:30:10 +06:00
openapi.yaml
Add 5m, 1h, 6h, 12h range filters to metrics endpoint
2026-03-25 20:44:28 +06:00
server.go
fix: security hardening from CSO audit
2026-04-08 03:46:31 +06:00