akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 16 Packages Projects Releases Wiki Activity
Files
6d6cce5b8c35889d4f9b272b8ab85d388ecdbb4e
Charon/docs/reports
History
GitHub Actions 93894c517b fix(security): resolve API key logging vulnerability and enhance import validation 
Critical security fix addressing CWE-312/315/359 (Cleartext Storage/Cookie
Storage/Privacy Exposure) where CrowdSec bouncer API keys were logged in cleartext.
Implemented maskAPIKey() utility to show only first 4 and last 4 characters,
protecting sensitive credentials in production logs.

Enhanced CrowdSec configuration import validation with:
- Zip bomb protection via 100x compression ratio limit
- Format validation rejecting zip archives (only tar.gz allowed)
- CrowdSec-specific YAML structure validation
- Rollback mechanism on validation failures

UX improvement: moved CrowdSec API key display from Security Dashboard to
CrowdSec Config page for better logical organization.

Comprehensive E2E test coverage:
- Created 10 test scenarios including valid import, missing files, invalid YAML,
  zip bombs, wrong formats, and corrupted archives
- 87/108 E2E tests passing (81% pass rate, 0 regressions)

Security validation:
- CodeQL: 0 CWE-312/315/359 findings (vulnerability fully resolved)
- Docker Image: 7 HIGH base image CVEs documented (non-blocking, Debian upstream)
- Pre-commit hooks: 13/13 passing (fixed 23 total linting issues)

Backend coverage: 82.2% (+1.1%)
Frontend coverage: 84.19% (+0.3%)
2026-02-04 00:12:13 +00:00
..
audit_logging_qa_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
backend_coverage_verification.md
test: fix E2E timing for DNS provider field visibility
2026-02-01 14:17:58 +00:00
backend_ip_fix_qa.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
break_glass_protocol_qa_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
browser_alignment_diagnostic.md
chore(diagnostics): Add comprehensive diagnostic tools for E2E testing
2026-02-03 00:02:45 +00:00
caddy_import_final_test_results.md
feat: improve Caddy import with directive detection and warnings
2026-01-30 15:29:49 +00:00
caddy_import_full_test_results.md
feat: improve Caddy import with directive detection and warnings
2026-01-30 15:29:49 +00:00
caddy_import_poc_results.md
feat: improve Caddy import with directive detection and warnings
2026-01-30 15:29:49 +00:00
caddy_import_test_execution_summary.md
feat: improve Caddy import with directive detection and warnings
2026-01-30 15:29:49 +00:00
cerberus_live_logs_qa_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
cerberus_tc2_fix_implementation_report.md
hotfix: Route-Aware Verification and jq Dependency
2026-01-28 21:46:11 +00:00
ci_failure_diagnosis.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
compliance_qa_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
coverage_gap_analysis.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
coverage_verification.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_app_level_config.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_bouncer_field_investigation.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_final_validation_20251215.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_final_validation.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_fix_deployment.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_integration_summary.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_migration_qa_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_production_ready_20251215_205500.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_trusted_proxies_fix.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec_validation_final.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec-preset-fix-summary.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
crowdsec-preset-pull-apply-debug.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
definition_of_done_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
documentation_updates_geolite2_fix.md
COMMIT_MESSAGE_START
2026-02-02 13:31:56 +00:00
e2e_final_validation.md
fix: restore PATCH endpoints used by E2E + emergency-token fallback
2026-01-27 22:43:33 +00:00
e2e_fix_v2_qa_report.md
test: fix E2E timing for DNS provider field visibility
2026-02-01 14:17:58 +00:00
e2e_fix_v2_summary.md
test: fix E2E timing for DNS provider field visibility
2026-02-01 14:17:58 +00:00
e2e_triage_report.md
fix: restore PATCH endpoints used by E2E + emergency-token fallback
2026-01-27 22:43:33 +00:00
e2e_validation_report.md
fix: restore PATCH endpoints used by E2E + emergency-token fallback
2026-01-27 22:43:33 +00:00
FINAL_VERIFICATION_SSRF_REMEDIATION.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
gh_actions_diagnostic.md
fix(ci): add e2e-tests.yml to push event path filters for workflow triggers
2026-01-27 05:23:49 +00:00
gorm_scanner_qa_report.md
chore: integrate GORM Security Scanner into CI pipeline and update documentation
2026-01-28 10:34:27 +00:00
HOTFIX_CROWDSEC_INTEGRATION_ISSUES.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
HTTP_HEADER_SCAN.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
implementation_notes.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
key_rotation_qa_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
lint_remediation_checkpoint.md
chore: remediate 61 Go linting issues and tighten pre-commit config
2026-02-02 06:17:48 +00:00
multi_credential_qa_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
phase1_analysis.md
chore(diagnostics): Add comprehensive diagnostic tools for E2E testing
2026-02-03 00:02:45 +00:00
phase1_complete.md
chore(diagnostics): Add comprehensive diagnostic tools for E2E testing
2026-02-03 00:02:45 +00:00
phase1_diagnostics.md
chore(diagnostics): Add comprehensive diagnostic tools for E2E testing
2026-02-03 00:02:45 +00:00
phase1_final_report.md
chore: remediate 61 Go linting issues and tighten pre-commit config
2026-02-02 06:17:48 +00:00
phase1_validation_checklist.md
chore(diagnostics): Add comprehensive diagnostic tools for E2E testing
2026-02-03 00:02:45 +00:00
phase2_checkpoint_report.md
chore(e2e): Introduce semantic wait helpers to replace arbitrary wait calls
2026-02-03 01:02:51 +00:00
phase2_complete.md
chore(e2e): Refactor tests to replace fixed wait times with debouncing and modal wait helpers
2026-02-03 02:02:53 +00:00
phase3_3_completion_report.md
chore: improve test coverage and resolve infrastructure constraints
2026-02-03 02:43:26 +00:00
phase3_3_findings.md
chore: improve test coverage and resolve infrastructure constraints
2026-02-03 02:43:26 +00:00
phase3_4_validation_report.md
chore: improve test coverage and resolve infrastructure constraints
2026-02-03 02:43:26 +00:00
phase3_coverage_gap_analysis.md
chore: improve test coverage and resolve infrastructure constraints
2026-02-03 02:43:26 +00:00
phase4_dns_autodetection_qa_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
phase5_qa_report_20260120.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
PHASE_2_FINAL_APPROVAL.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
pr460_qa_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
pr_461_remediation_complete.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
pr_461_vulnerability_comment.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
precommit_fix_verification.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
precommit_performance_diagnosis.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_agent_skills_migration.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_codeql_ci_alignment.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_coverage_validation_report.md
fix(ci): enhance test database management and improve service cleanup
2026-02-01 09:33:26 +00:00
qa_crowdsec_frontend_coverage_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_crowdsec_implementation.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_crowdsec_lapi_availability_fix.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_crowdsec_startup_test_failure.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_crowdsec_toggle_fix_summary.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_cwe918_ssrf_triage.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_debian_trixie_migration_2026-01-18.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_docker_only_build_fix_report.md
COMMIT_MESSAGE_START
2026-02-02 13:31:56 +00:00
qa_docs_to_issues_workflow_fix.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_e2e_test_fixes_report.md
fix(e2e): resolve feature toggle timeouts and clipboard access errors
2026-02-01 15:21:26 +00:00
qa_final_audit.md
test: fix E2E timing for DNS provider field visibility
2026-02-01 14:17:58 +00:00
qa_final_crowdsec_validation.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_final_validation_sprint1.md
fix(e2e): resolve test timeout issues and improve reliability
2026-02-02 18:53:30 +00:00
qa_geolite2_checksum_fix.md
COMMIT_MESSAGE_START
2026-02-02 13:31:56 +00:00
qa_i18n_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_phase0_e2e_infrastructure.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_phase2_testdata_auth_fix_20250123.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_phase3_caddy_import_firefox_fix.md
chore: validate Docker rebuild with system updates
2026-02-03 08:00:24 +00:00
qa_phase5_testdata_auth_20260124.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_race_and_test_failures_2025-12-12.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_acl_uuid_validation.md
hotfix(api): add UUID support to access list endpoints
2026-01-29 03:15:06 +00:00
qa_report_bulk_apply_headers.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_capi_fix.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_ci_fixes.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_crowdsec_architecture.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_crowdsec_markdownlint_20251212.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_crowdsec_startup_fix.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_crowdsec_verification.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_dns_provider_e2e_fixes.md
test: fix E2E timing for DNS provider field visibility
2026-02-01 14:17:58 +00:00
qa_report_docker_tag_fix_pr421.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_dual_registry_publishing_2026-01-25.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_final.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_geoip_v2.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_grype_sbom_2026-01-10.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_i18n.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_issue20_security_headers.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_issue365.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_old_20260116_023158.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_phase2.md
fix(e2e: Implement Phase 2 E2E test optimizations
2026-02-02 19:59:40 +00:00
qa_report_phase3_remediation.md
fix(e2e):end-to-end tests for Security Dashboard and WAF functionality
2026-02-02 22:55:41 +00:00
qa_report_phase3.md
fix(e2e): implement performance tracking for shard execution and API call metrics
2026-02-02 21:32:27 +00:00
qa_report_pr583.md
fix: resolve CI failures for PR #583 coverage gates
2026-01-31 06:16:52 +00:00
qa_report_proxy_host_update_fix.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_rate_limiting_20251212.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_sidebar_ui.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_ssrf_fix.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_standard_proxy_headers.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_staticcheck_old.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_validator_fix_20260128.md
hotfix(caddy): resolve validator rejecting emergency+main route pattern
2026-01-28 20:10:37 +00:00
qa_report_waf_integration_fix_2026-01-25.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report_workflow_orchestration.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_report.md
fix(security): resolve API key logging vulnerability and enhance import validation
2026-02-04 00:12:13 +00:00
qa_security_headers_fix_2025-12-18.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_security_weekly_workflow.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_ssrf_remediation_final.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_ssrf_remediation_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_summary_sidebar_ui.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_supply_chain_security.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_test_coverage_audit.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
qa_uiux_testing_report.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
rate_limit_fix_summary.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
rate_limit_test_status.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
security_headers_bug_fix_summary.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
security_headers_trace.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
security_scan_summary.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
security-module-testing-qa-audit.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
shard1_fix_qa_report.md
fix(e2e): address Shard 1 CI failures by replacing dynamic imports with static imports in wait-helpers
2026-02-03 04:06:56 +00:00
SPRINT1_GO_DECISION.md
fix(e2e): resolve test timeout issues and improve reliability
2026-02-02 18:53:30 +00:00
SSRF_DOCUMENTATION_UPDATE_SUMMARY.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
TEST_VERIFICATION_SUMMARY.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00
unused_code_audit.md
chore: clean .gitignore cache
2026-01-26 19:22:05 +00:00