akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 5 Packages Projects Releases Wiki Activity
Files
7524d4d3aaacaaf0601af2370db2f2ff8d899a57
Charon/.github/workflows
History
GitHub Actions f46d19b3c0 fix(security): enhance SSRF defense-in-depth with monitoring (CWE-918) 
- Add CodeQL custom model recognizing ValidateExternalURL as sanitizer
- Enhance validation: hostname length (RFC 1035), IPv6-mapped IPv4 blocking
- Integrate Prometheus metrics (charon_ssrf_blocks_total, charon_url_validation_total)
- Add security audit logging with sanitized error messages
- Fix test race conditions with atomic types
- Update SECURITY.md with 5-layer defense documentation

Related to: #450
Coverage: Backend 86.3%, Frontend 87.27%
Security scans: CodeQL, Trivy, govulncheck all clean
2025-12-31 21:17:08 +00:00
..
auto-add-to-project.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
auto-changelog.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
auto-label-issues.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
auto-versioning.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
benchmark.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
caddy-major-monitor.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
codecov-upload.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
codeql.yml
fix(security): enhance SSRF defense-in-depth with monitoring (CWE-918)
2025-12-31 21:17:08 +00:00
create-labels.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
docker-build.yml
Merge branch 'development' into feature/issue-365-additional-security
2025-12-21 23:06:36 -05:00
docker-lint.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
docs-to-issues.yml
feat: allow workflow to trigger on feature branches
2025-12-21 19:54:59 +00:00
docs.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
dry-run-history-rewrite.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
history-rewrite-tests.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
pr-checklist.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
propagate-changes.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
quality-checks.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
release-goreleaser.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
renovate_prune.yml
fix: update workflows to use GITHUB_TOKEN instead of CHARON_TOKEN for improved compatibility
2025-12-14 00:11:06 +00:00
renovate.yml
chore(deps): update renovatebot/github-action action to v44.2.1
2025-12-23 05:56:17 +00:00
repo-health.yml
chore: implement instruction compliance remediation
2025-12-21 04:08:42 +00:00
security-weekly-rebuild.yml
chore(deps): update docker/setup-buildx-action action to v3.12.0 (#443)
2025-12-22 04:04:01 +00:00
waf-integration.yml
chore(deps): update docker/setup-buildx-action action to v3.12.0 (#443)
2025-12-22 04:04:01 +00:00