Pulse

vrr/Pulse

Fork 0

mirror of https://github.com/rcourtman/Pulse.git synced 2026-04-29 12:00:13 +00:00

Commit graph

Author	SHA1	Message	Date
rcourtman	bb47e1831c	security: SSRF protection for webhook URLs - Add DNS resolution validation to block webhooks to internal IPs - Validate hostname resolves before accepting webhook URL - Block metadata endpoints (AWS, GCP, Azure) - Block localhost, private IPs, and reserved ranges - Add context timeout for DNS lookups (2s)	2026-01-22 00:42:23 +00:00
rcourtman	d0ba203203	feat(audit): add comprehensive audit logging system - Add SQLite-backed audit logger for persistent audit trails - Implement cryptographic signing for tamper detection - Add audit log export functionality - Add webhook notifications for audit events	2026-01-12 15:20:33 +00:00

Author

SHA1

Message

Date

rcourtman

bb47e1831c

security: SSRF protection for webhook URLs

- Add DNS resolution validation to block webhooks to internal IPs
- Validate hostname resolves before accepting webhook URL
- Block metadata endpoints (AWS, GCP, Azure)
- Block localhost, private IPs, and reserved ranges
- Add context timeout for DNS lookups (2s)

2026-01-22 00:42:23 +00:00

rcourtman

d0ba203203

feat(audit): add comprehensive audit logging system

- Add SQLite-backed audit logger for persistent audit trails
- Implement cryptographic signing for tamper detection
- Add audit log export functionality
- Add webhook notifications for audit events

2026-01-12 15:20:33 +00:00

2 commits