akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 14 Packages Projects Releases Wiki Activity
1,565 Commits 11 Branches 107 Tags
6f64648d1fafe6d4e231eb573d55b6543e733cda
Commit Graph

78 Commits

Author SHA1 Message Date
renovate[bot]
6f64648d1f fix(deps): update npm minor/patch 2026-01-07 20:40:33 +00:00
Jeremy
acefca27cc Merge branch 'feature/beta-release' into development 2026-01-07 02:05:17 -05:00
GitHub Actions
d6f913b92d fix: resolve React 19 production runtime error with lucide-react icons 
- Updated package.json to include @types/node@25.0.3 for compatibility.
- Modified package-lock.json to reflect the new version of @types/node and updated cookie package to 1.1.1.
- Adjusted tsconfig.json to specify @testing-library/jest-dom/vitest for type definitions.
- Updated vite.config.ts to disable code splitting temporarily to diagnose React initialization issues, increasing chunk size warning limit.
 2026-01-07 06:48:40 +00:00
GitHub Actions
45e43601e7 docs: verify React 19.2.3 compatibility with lucide-react 
**What Changed:**
- Completed comprehensive diagnostic testing for reported React 19 production error
- Verified lucide-react@0.562.0 officially supports React 19.2.3
- Added user-facing troubleshooting guide for production build errors
- Updated README with browser compatibility requirements
- Archived diagnostic findings in docs/implementation/

**Technical Details:**
- All 1403 frontend unit tests pass
- Production build succeeds without warnings
- Bundle size unchanged (307.68 kB)
- Zero security vulnerabilities (CodeQL, govulncheck)
- Issue determined to be browser cache or stale Docker image (user-side)

**Why:**
Users reported "TypeError: Cannot set properties of undefined" in production.
Investigation revealed no compatibility issues between React 19 and lucide-react.
Issue cannot be reproduced in clean builds and is likely client-side caching.

**Fixes:**
- Unrelated: Fixed go vet format verb error in caddy_service.go

**Testing:**
-  Frontend: 1403/1403 tests pass, 84.57% coverage
-  Backend: 496/500 tests pass, 85%+ coverage
-  Security: 0 HIGH/CRITICAL findings (CodeQL JS/Go, govulncheck)
-  Type safety: 0 TypeScript errors
-  Build: Success (both frontend & backend)

**Related:**
- Diagnostic Report: docs/implementation/react-19-lucide-error-DIAGNOSTIC-REPORT.md
- QA Report: docs/reports/qa_report.md
- Troubleshooting: docs/troubleshooting/react-production-errors.md
 2026-01-07 04:36:37 +00:00
renovate[bot]
11e3c4e0de fix(deps): update dependency react-hook-form to ^7.70.0 (#467) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2026-01-04 21:27:36 +00:00
renovate[bot]
9fb422741e fix(deps): update npm minor/patch 2026-01-03 03:19:01 +00:00
Jeremy
9c113a1f94 Merge pull request #455 from Wikid82/development 
Propagate changes from development into feature/beta-release
 2025-12-31 00:45:48 -05:00
renovate[bot]
53eb4b9e67 fix(deps): update npm minor/patch 2025-12-30 17:49:13 +00:00
GitHub Actions
e0f69cdfc8 feat(security): comprehensive SSRF protection implementation 
BREAKING CHANGE: UpdateService.SetAPIURL() now returns error

Implements defense-in-depth SSRF protection across all user-controlled URLs:

Security Fixes:
- CRITICAL: Fixed security notification webhook SSRF vulnerability
- CRITICAL: Added GitHub domain allowlist for update service
- HIGH: Protected CrowdSec hub URLs with domain allowlist
- MEDIUM: Validated CrowdSec LAPI URLs (localhost-only)

Implementation:
- Created /backend/internal/security/url_validator.go (90.4% coverage)
- Blocks 13+ private IP ranges and cloud metadata endpoints
- DNS resolution with timeout and IP validation
- Comprehensive logging of SSRF attempts (HIGH severity)
- Defense-in-depth: URL format → DNS → IP → Request execution

Testing:
- 62 SSRF-specific tests covering all attack vectors
- 255 total tests passing (84.8% coverage)
- Zero security vulnerabilities (Trivy, go vuln check)
- OWASP A10 compliant

Documentation:
- Comprehensive security guide (docs/security/ssrf-protection.md)
- Manual test plan (30 test cases)
- Updated API docs, README, SECURITY.md, CHANGELOG

Security Impact:
- Pre-fix: CVSS 8.6 (HIGH) - Exploitable SSRF
- Post-fix: CVSS 0.0 (NONE) - Vulnerability eliminated

Refs: #450 (beta release)
See: docs/plans/ssrf_remediation_spec.md for full specification
 2025-12-23 15:09:22 +00:00
renovate[bot]
7beb1cb2fd chore(deps): update npm minor/patch 2025-12-23 06:03:07 +00:00
renovate[bot]
90ee470250 fix(deps): update npm minor/patch (#444) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-22 04:04:21 +00:00
renovate[bot]
03d166f05a fix(deps): update dependency lucide-react to ^0.562.0 (#432) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-19 00:52:20 +00:00
copilot-swe-agent[bot]
e912bc4c80 feat: add i18n infrastructure and language selector 
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com>
 2025-12-18 18:47:41 +00:00
copilot-swe-agent[bot]
628838b6d4 test: add frontend tests for WebSocket tracking 
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com>
 2025-12-18 18:12:45 +00:00
renovate[bot]
062b595b11 fix(deps): update dependency react-router-dom to ^7.11.0 2025-12-18 00:34:28 +00:00
renovate[bot]
8005858593 chore(deps): update dependency knip to ^5.75.1 2025-12-17 14:26:03 +00:00
GitHub Actions
8f2f18edf7 feat: implement modern UI/UX design system (#409) 
- Add comprehensive design token system (colors, typography, spacing)
- Create 12 new UI components with Radix UI primitives
- Add layout components (PageShell, StatsCard, EmptyState, DataTable)
- Polish all pages with new component library
- Improve accessibility with WCAG 2.1 compliance
- Add dark mode support with semantic color tokens
- Update 947 tests to match new UI patterns

Closes #409
 2025-12-16 21:21:39 +00:00
renovate[bot]
e5918d392c chore(deps): update npm minor/patch 2025-12-16 15:53:48 +00:00
renovate[bot]
c1aba6220f chore(deps): update npm minor/patch (#399) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-15 05:29:19 +00:00
renovate[bot]
09266a281f chore(deps): update dependency eslint to ^9.39.2 (#360) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-12 23:52:13 +00:00
renovate[bot]
8abe689e74 fix(deps): update npm minor/patch 2025-12-12 15:37:45 +00:00
renovate[bot]
bfa9367505 fix(deps): update npm minor/patch to ^19.2.3 2025-12-12 04:08:09 +00:00
renovate[bot]
7a0fb23a46 fix(deps): update npm minor/patch to ^19.2.2 2025-12-11 22:45:42 +00:00
renovate[bot]
79eeaebdd8 chore(deps): update npm minor/patch to ^4.1.18 2025-12-11 18:28:15 +00:00
renovate[bot]
34a8fbd97a fix(deps): update npm minor/patch 2025-12-11 08:53:58 +00:00
renovate[bot]
f84b77a2a7 chore(deps): update dependency knip to ^5.73.0 2025-12-10 02:58:25 +00:00
renovate[bot]
4c21e977f3 chore(deps): update npm minor/patch to ^8.49.0 (#333) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-08 21:51:49 +00:00
renovate[bot]
594acb1c6d chore(deps): update dependency jsdom to ^27.3.0 2025-12-08 13:46:14 +00:00
renovate[bot]
5dada0e350 chore(deps): update dependency @vitejs/plugin-react to ^5.1.2 (#329) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-08 13:40:27 +00:00
renovate[bot]
c52d1c4aea chore(deps): update dependency knip to ^5.72.0 2025-12-08 06:39:34 +00:00
renovate[bot]
81f588e117 fix(deps): update npm minor/patch 2025-12-08 04:47:32 +00:00
renovate[bot]
a74174b009 fix(deps): update dependency react-router-dom to ^7.10.1 (#311) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-04 21:51:58 +00:00
renovate[bot]
d2c59370aa fix(deps): update dependency @tanstack/react-query to ^5.90.12 2025-12-04 12:59:38 +00:00
renovate[bot]
8f12071577 fix(deps): update dependency react-hook-form to ^7.68.0 2025-12-03 23:09:41 +00:00
renovate[bot]
b6d353c5af fix(deps): update npm minor/patch to ^19.2.1 2025-12-03 19:39:24 +00:00
Jeremy
377c331ff9 Merge branch 'feature/beta-release' into development 2025-12-03 09:20:34 -05:00
renovate[bot]
e97c46a4b9 fix(deps): update npm minor/patch 2025-12-02 18:39:07 +00:00
renovate[bot]
a714a35056 chore(deps): update npm minor/patch to ^8.48.1 (#287) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-12-02 14:28:02 +00:00
GitHub Actions
34347b1ff5 Refactor uptime service and tests; add WAF configuration UI and e2e tests 
- Refactored `SyncMonitors` method in `uptime_service.go` for better readability.
- Updated unit tests for `UptimeService` to ensure proper functionality.
- Introduced Playwright configuration for end-to-end testing.
- Added e2e tests for WAF blocking and monitoring functionality.
- Enhanced the Security page to include WAF mode and rule set selection.
- Implemented tests for WAF configuration changes and validation.
- Created a `.last-run.json` file to store test results.
 2025-12-02 02:51:50 +00:00
renovate[bot]
266fbac7a3 fix(deps): update npm minor/patch 2025-12-01 14:37:52 +00:00
CI
ce8a51e6c7 fix(workflows): replace invalid semantic-version action with fallback script 2025-11-29 02:49:21 +00:00
Wikid82
a4cff3c194 feat: Add security presets and related tests 
- Implemented new security presets for access control lists, including geo-blacklist and known botnet IPs.
- Added tests for security presets functionality, including validation of preset structure and category/type checks.
- Created hooks for Docker and domains with comprehensive tests for fetching, creating, and deleting domains.
- Removed unused HealthStatus component.
- Updated ProxyHosts bulk delete tests to reflect changes in selection logic.
- Introduced integration test script for automated testing of proxy host creation and validation.
 2025-11-28 02:54:44 +00:00
renovate[bot]
9177737a60 fix(deps): update npm minor/patch 2025-11-26 09:53:57 +00:00
Jeremy
5307b4fe5e Merge branch 'feature/beta-release' into development 2025-11-25 22:49:03 -05:00
renovate[bot]
69863ae6fb fix(deps): update npm minor/patch (#235) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-11-25 20:57:52 +00:00
Wikid82
7a1f577771 feat: add forward authentication configuration and UI 
- Introduced ForwardAuthConfig model to store global forward authentication settings.
- Updated Manager to fetch and apply forward authentication configuration.
- Added ForwardAuthHandler to create a reverse proxy handler for authentication.
- Enhanced ProxyHost model to include forward authentication options.
- Created Security page and ForwardAuthSettings component for managing authentication settings.
- Implemented API endpoints for fetching and updating forward authentication configuration.
- Added tests for new functionality including validation and error handling.
- Updated frontend components to support forward authentication settings.
 2025-11-25 13:25:05 +00:00
Jeremy
6f82659d14 Merge pull request #226 from Wikid82/development 
Propagate changes from development into feature/beta-release
 2025-11-24 23:18:52 -05:00
renovate[bot]
16c113580d fix(deps): update npm minor/patch (#225) 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2025-11-25 04:12:08 +00:00
Wikid82
6feff3e8ce chore: remove cashed 2025-11-24 18:22:01 +00:00
Wikid82
9c842e7eab chore: remove cached 2025-11-24 18:21:11 +00:00