8cf762164f
feat: implement HTTP Security Headers management (Issue #20 )
...
Add comprehensive security header management system with reusable
profiles, interactive builders, and security scoring.
Features:
- SecurityHeaderProfile model with 11+ header types
- CRUD API with 10 endpoints (/api/v1/security/headers/*)
- Caddy integration for automatic header injection
- 3 built-in presets (Basic, Strict, Paranoid)
- Security score calculator (0-100) with suggestions
- Interactive CSP builder with validation
- Permissions-Policy builder
- Real-time security score preview
- Per-host profile assignment
Headers Supported:
- HSTS with preload support
- Content-Security-Policy with report-only mode
- X-Frame-Options, X-Content-Type-Options
- Referrer-Policy, Permissions-Policy
- Cross-Origin-Opener/Resource/Embedder-Policy
- X-XSS-Protection, Cache-Control security
Implementation:
- Backend: models, handlers, services (85% coverage)
- Frontend: React components, hooks (87.46% coverage)
- Tests: 1,163 total tests passing
- Docs: Comprehensive feature documentation
Closes #20
2025-12-19 18:55:48 +00:00
01ec910d58
fix: update .gitignore to exclude additional temporary files and directories
2025-12-19 18:55:48 +00:00
fa5b85949e
fix: add trivy scan output file to .gitignore to prevent version control clutter
2025-12-19 18:55:48 +00:00
fd9d09b341
fix: add timeouts to Docker container run and CrowdSec hub update for improved reliability
2025-12-19 18:55:48 +00:00
aa1b8cd8ce
Merge pull request #433 from Wikid82/development
...
Propagate changes from development into feature/beta-release
2025-12-19 07:16:52 -05:00
03d166f05a
fix(deps): update dependency lucide-react to ^0.562.0 ( #432 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2025-12-19 00:52:20 +00:00
bb1b06b916
Merge pull request #431 from Wikid82/development
...
Propagate changes from development into feature/beta-release
2025-12-18 18:49:40 -05:00
0d2b4e167d
Merge branch 'feature/beta-release' into development
2025-12-18 18:49:31 -05:00
a2900cec2e
Merge pull request #430 from Wikid82/main
...
Propagate changes from main into development
2025-12-18 18:47:10 -05:00
98d4e279c1
Merge branch 'development' into main
2025-12-18 18:46:50 -05:00
3184807990
Merge pull request #427 from Wikid82/copilot/implement-translations-issue-33
...
feat: implement multi-language support (i18n) for UI
2025-12-18 17:31:51 -05:00
6a9c64aee2
Merge pull request #429 from Wikid82/development
...
Propagate changes from development into feature/beta-release
2025-12-18 14:18:11 -05:00
bc35986992
Merge pull request #428 from Wikid82/main
...
Propagate changes from main into development
2025-12-18 14:02:08 -05:00
9ed7d56857
docs: add comprehensive i18n implementation summary
...
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com >
2025-12-18 19:01:57 +00:00
9f56b54959
docs: add i18n examples and improve RTL comments
...
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com >
2025-12-18 18:59:11 +00:00
fde660ff0e
docs: add translation documentation and fix SystemSettings tests
...
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com >
2025-12-18 18:56:32 +00:00
b3514b1134
test: add unit tests for i18n functionality
...
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com >
2025-12-18 18:49:40 +00:00
e912bc4c80
feat: add i18n infrastructure and language selector
...
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com >
2025-12-18 18:47:41 +00:00
1981dd371b
Merge branch 'main' into copilot/implement-translations-issue-33
2025-12-18 13:40:52 -05:00
4cec3595e2
Merge pull request #426 from Wikid82/copilot/troubleshoot-websocket-issues
...
feat: WebSocket connection tracking and troubleshooting infrastructure
2025-12-18 13:39:58 -05:00
134e2e49b3
Initial plan
2025-12-18 18:39:13 +00:00
27344e9812
fix: improve test ID generation in concurrent test
2025-12-18 18:26:46 +00:00
1f9af267a3
fix: add null safety check for WebSocket connections
...
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com >
2025-12-18 18:24:29 +00:00
96dd7a84e9
chore: fix trailing whitespace from pre-commit
2025-12-18 18:13:53 +00:00
628838b6d4
test: add frontend tests for WebSocket tracking
...
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com >
2025-12-18 18:12:45 +00:00
8c4823edb6
feat: add WebSocket connection monitoring UI and documentation
...
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com >
2025-12-18 18:09:43 +00:00
854a940536
feat: add WebSocket connection tracking backend
...
Co-authored-by: Wikid82 <176516789+Wikid82@users.noreply.github.com >
2025-12-18 18:04:40 +00:00
b44064e15d
Merge branch 'feature/beta-release' into copilot/troubleshoot-websocket-issues
2025-12-18 13:01:56 -05:00
c25e2d652d
Initial plan
2025-12-18 17:56:24 +00:00
5d9cec288a
Merge pull request #423 from Wikid82/development
...
Propagate changes from development into feature/beta-release
2025-12-17 19:47:43 -05:00
abafd16fc8
Merge pull request #422 from Wikid82/renovate/npm-minorpatch
...
fix(deps): update dependency react-router-dom to ^7.11.0
2025-12-17 19:46:38 -05:00
062b595b11
fix(deps): update dependency react-router-dom to ^7.11.0
2025-12-18 00:34:28 +00:00
ec19803750
Merge pull request #421 from Wikid82/feature/beta-release
...
feat: add SQLite database corruption guardrails
2025-12-17 19:27:34 -05:00
c2c503edc7
Merge pull request #420 from Wikid82/feature/beta-release
...
feat: add SQLite database corruption guardrails
2025-12-17 19:27:03 -05:00
193ba124c7
fix: correct extraction of expr-lang version from caddy_deps.txt
2025-12-18 00:17:12 +00:00
ed7dc3f904
fix: update regex for expr-lang version check to ensure accurate vulnerability assessment
2025-12-18 00:05:31 +00:00
761d59c7e9
fix: add timeout to Caddy version verification step to prevent hangs
2025-12-17 23:58:40 +00:00
bc23eb3800
fix: add timeout to integration tests to prevent CI hangs
...
- Add timeout-minutes: 5 to docker-build.yml integration test step
- Add set -o pipefail to integration-test.sh
- Add 4-minute timeout wrapper (INTEGRATION_TEST_TIMEOUT env var)
Resolves hang after Caddy TLS cleanup in GitHub Actions run #20319807650
2025-12-17 23:41:27 +00:00
76895a9674
fix: load Docker image for PR events to resolve CI failure
2025-12-17 22:52:56 +00:00
cd7f192acd
fix: use PR number instead of ref_name for Docker image tags
...
GitHub's github.ref_name returns "421/merge" for PR merge refs,
creating invalid Docker tags like "pr-421/merge". Docker tags
cannot contain forward slashes.
Changed to use github.event.pull_request.number which returns
just the PR number (e.g., "421") for valid tags like "pr-421".
Also added comprehensive unit tests for backup_service.go to
meet the 85% coverage threshold.
Fixes CI/CD failure in PR #421 .
2025-12-17 21:54:17 +00:00
6d18854e92
fix: use PR number instead of ref_name for Docker image tags
...
GitHub's github.ref_name returns "421/merge" for PR merge refs,
creating invalid Docker tags like "pr-421/merge". Docker tags
cannot contain forward slashes.
Changed to use github.event.pull_request.number which returns
just the PR number (e.g., "421") for valid tags like "pr-421".
Fixes CI/CD failure in PR #421 .
2025-12-17 20:00:44 +00:00
b23e0fd076
fix: resolve CVE-2025-68156, coverage hang, and test lifecycle issue
2025-12-17 19:41:02 +00:00
942901fb9a
fix: remove Caddy version check that hangs build (CVE-2025-68156)
2025-12-17 18:37:20 +00:00
87ba9e1222
Merge branch 'development' into feature/beta-release
2025-12-17 12:04:47 -05:00
8d9bb8af5b
chore: optimize pre-commit performance while maintaining quality standards
...
- Move slow hooks (go-test-coverage, frontend-type-check) to manual stage
- Reduce pre-commit execution time from hanging to ~8 seconds (75% improvement)
- Expand Definition of Done with explicit coverage testing requirements
- Update all 6 agent modes to verify coverage before task completion
- Fix typos in agent files (DEFENITION → DEFINITION)
- Fix version mismatch in .version file
- Maintain 85% coverage requirement for both backend and frontend
- Coverage tests now run via VS Code tasks or manual scripts
Verification: All tests pass, coverage maintained at 85%+, CI integrity preserved
2025-12-17 16:54:14 +00:00
b015284165
feat: add SQLite database corruption guardrails
...
- Add PRAGMA quick_check on startup with warning log if corrupted
- Add corruption sentinel helpers for structured error detection
- Add backup retention (keep last 7, auto-cleanup after daily backup)
- Add GET /api/v1/health/db endpoint for orchestrator health checks
Prevents silent data loss and enables proactive corruption detection.
2025-12-17 16:53:38 +00:00
922958e123
Merge pull request #419 from Wikid82/main
...
Propagate changes from main into development
2025-12-17 10:26:26 -05:00
370bcfc125
Merge pull request #418 from Wikid82/copilot/sub-pr-414
...
fix: Add explicit error handling to auth middleware test
2025-12-17 10:16:43 -05:00
bd0dfd5487
fix: include scripts directory in Docker image for database recovery
2025-12-17 15:15:42 +00:00
f094123123
fix: add SQLite database recovery and WAL mode for corruption resilience
...
- Add scripts/db-recovery.sh for database integrity check and recovery
- Enable WAL mode verification with logging on startup
- Add structured error logging to uptime handlers with monitor context
- Add comprehensive database maintenance documentation
Fixes heartbeat history showing "No History Available" due to database
corruption affecting 6 out of 14 monitors.
2025-12-17 14:51:20 +00:00
GitHub Actions
Jeremy
renovate[bot]
copilot-swe-agent[bot]