gsadmin/certctl
1
0
Fork 0
mirror of https://github.com/shankar0123/certctl.git synced 2026-06-07 16:51:31 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
995b72df058b5fb514d72f57f5898a72d15eb715
certctl/internal/api/middleware
T
History
shankar0123 6d508cf53f fix: security audit remediation (AUDIT-001, 003, 004, 005, 006, 018) 
- AUDIT-001: Validate OpenSSL revoke inputs (hex-only serials, RFC 5280 reasons)
- AUDIT-003: Enforce /20 CIDR size cap at API level (create + update)
- AUDIT-004: Support comma-separated CERTCTL_AUTH_SECRET for zero-downtime key rotation
- AUDIT-005: Add ReadHeaderTimeout (5s) to prevent Slowloris
- AUDIT-006: Document audit trail query parameter exclusion rationale
- AUDIT-018: Add immediate-run-on-start to short-lived expiry scheduler loop

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-03-28 14:11:16 -04:00
..
audit_test.go
fix: security audit remediation (AUDIT-001, 003, 004, 005, 006, 018)
2026-03-28 14:11:16 -04:00
audit.go
fix: security audit remediation (AUDIT-001, 003, 004, 005, 006, 018)
2026-03-28 14:11:16 -04:00
auth_test.go
fix: security audit remediation (AUDIT-001, 003, 004, 005, 006, 018)
2026-03-28 14:11:16 -04:00
bodylimit_test.go
docs: synchronize project documentation with codebase
2026-03-27 22:28:54 -04:00
bodylimit.go
docs: synchronize project documentation with codebase
2026-03-27 22:28:54 -04:00
cors_test.go
fix(security): TICKET-009 add HTTP timeouts to notifier clients
2026-03-27 21:33:31 -04:00
middleware.go
fix: security audit remediation (AUDIT-001, 003, 004, 005, 006, 018)
2026-03-28 14:11:16 -04:00