Charon

akanealw/Charon

Fork 0

Commit Graph

Author	SHA1	Message	Date
GitHub Actions	e50d329e01	fix: replace nil with http.NoBody in CrowdsecHandler tests for clarity	2026-01-01 00:24:41 +00:00
GitHub Actions	7524d4d3aa	refactor: update function signatures and improve code readability	2025-12-31 21:29:53 +00:00
GitHub Actions	5b0d30986d	fix(security): resolve CWE-918 SSRF vulnerability in notification service - Apply URL validation using security.ValidateWebhookURL() to all webhook HTTP request paths in notification_service.go - Block private IPs (RFC 1918), cloud metadata endpoints, and loopback - Add comprehensive SSRF test coverage - Improve handler test coverage from 84.2% to 85.4% - Add CodeQL VS Code tasks for local security scanning - Update Definition of Done to include CodeQL scans - Clean up stale SARIF files from repo root Resolves CI CodeQL gate failure for CWE-918.	2025-12-24 05:59:16 +00:00

Author

SHA1

Message

Date

GitHub Actions

e50d329e01

fix: replace nil with http.NoBody in CrowdsecHandler tests for clarity

2026-01-01 00:24:41 +00:00

GitHub Actions

7524d4d3aa

refactor: update function signatures and improve code readability

2025-12-31 21:29:53 +00:00

GitHub Actions

5b0d30986d

fix(security): resolve CWE-918 SSRF vulnerability in notification service

- Apply URL validation using security.ValidateWebhookURL() to all webhook
  HTTP request paths in notification_service.go
- Block private IPs (RFC 1918), cloud metadata endpoints, and loopback
- Add comprehensive SSRF test coverage
- Improve handler test coverage from 84.2% to 85.4%
- Add CodeQL VS Code tasks for local security scanning
- Update Definition of Done to include CodeQL scans
- Clean up stale SARIF files from repo root

Resolves CI CodeQL gate failure for CWE-918.

2025-12-24 05:59:16 +00:00

3 Commits