akanealw/Charon
1
0
Fork 0
Code Issues Pull Requests Actions 6 Packages Projects Releases Wiki Activity
Files
caeea504a59188513fba504a348c0632768e7e92
Charon/backend
T
History
GitHub Actions f46d19b3c0 fix(security): enhance SSRF defense-in-depth with monitoring (CWE-918) 
- Add CodeQL custom model recognizing ValidateExternalURL as sanitizer
- Enhance validation: hostname length (RFC 1035), IPv6-mapped IPv4 blocking
- Integrate Prometheus metrics (charon_ssrf_blocks_total, charon_url_validation_total)
- Add security audit logging with sanitized error messages
- Fix test race conditions with atomic types
- Update SECURITY.md with 5-layer defense documentation

Related to: #450
Coverage: Backend 86.3%, Frontend 87.27%
Security scans: CodeQL, Trivy, govulncheck all clean
2025-12-31 21:17:08 +00:00
..
cmd
fix(security): resolve CrowdSec startup and permission issues
2025-12-23 01:59:21 +00:00
integration
feat: Add full integration testing for Cerberus security stack
2025-12-12 23:29:30 +00:00
internal
fix(security): enhance SSRF defense-in-depth with monitoring (CWE-918)
2025-12-31 21:17:08 +00:00
tools
Add QA test outputs, build scripts, and Dockerfile validation
2025-12-11 18:26:24 +00:00
.env.example
Add QA test outputs, build scripts, and Dockerfile validation
2025-12-11 18:26:24 +00:00
.golangci.yml
Add QA test outputs, build scripts, and Dockerfile validation
2025-12-11 18:26:24 +00:00
detailed_coverage.txt
test: increase test coverage to 86.1% and fix SSRF test failures
2025-12-23 05:46:44 +00:00
final_coverage.txt
test: increase test coverage to 86.1% and fix SSRF test failures
2025-12-23 05:46:44 +00:00
go.mod
fix(deps): update module github.com/oschwald/geoip2-golang/v2 to v2.1.0
2025-12-23 05:56:41 +00:00
go.sum
fix(security): rename variable to break taint chain in TestURLConnectivity for CWE-918 SSRF remediation
2025-12-24 06:44:42 +00:00
package-lock.json
chore(deps): update npm minor/patch
2025-12-16 15:53:48 +00:00
package.json
chore(deps): update npm minor/patch
2025-12-16 15:53:48 +00:00
README.md
Fix Rate Limiting Issues
2025-12-12 19:21:44 +00:00
test-output-final.txt
Fix Rate Limiting Issues
2025-12-12 19:21:44 +00:00
user_handler_coverage.txt
test: increase test coverage to 86.1% and fix SSRF test failures
2025-12-23 05:46:44 +00:00

README.md

Backend Service

This folder contains the Go API for CaddyProxyManager+.

Prerequisites

  • Go 1.24+

Getting started

cp .env.example .env # optional
cd backend
go run ./cmd/api

Tests

cd backend
go test ./...
Reference in New Issue View Git Blame Copy Permalink