changedetection.io

Wykres commitów

Autor	SHA1	Wiadomość	Data
dgtlmoon	302ef80d95	Server - Path blueprint fixes and moving code blueprint to fix RSS forward slash on url (#3054 )	2025-03-25 22:57:15 +01:00
dgtlmoon	73189672c3	Refactor code layout, add extra tests	2025-03-18 10:40:22 +01:00
dgtlmoon	4419bc0e61	Fixing test for CVE-2024-56509 (#2864 )	2024-12-27 11:09:52 +01:00
dgtlmoon	f7e9846c9b	CVE-2024-56509 - Stricter file protocol checking pre-check ( Improper Input Validation Leading to LFR/Path Traversal when fetching file:.. )	2024-12-27 09:26:28 +01:00
dgtlmoon	d297850539	Security - Fix test	2024-11-07 20:10:02 +01:00
dgtlmoon	751239250f	Security check - improve test	2024-11-07 19:41:48 +01:00
dgtlmoon	49bc982c69	CVE-2024-51998 - file:/ path traversal access should not be allowed to access a file without ALLOW_FILE_URI set	2024-11-07 18:45:19 +01:00
dgtlmoon	e756e0af5e	Fixing file:// file pickup - for change detection of local files (#2505 )	2024-07-18 13:05:27 +02:00
dgtlmoon	8f3a6a42bc	Testing - Adding simple memory usage test (#2483 )	2024-07-11 15:03:42 +02:00
dgtlmoon	c0f000b1d1	Merge pull request from GHSA-pwgc-w4x9-gw67 * Auto-escape was not enabled GHSA-pwgc-w4x9-gw67 * Auto-escape was not enabled because the filenames were not something jinja2 enables it for.	2024-05-02 11:46:31 +02:00
dgtlmoon	c8dcc072c8	Code refactor for fetchers (#1941 )	2023-11-13 10:42:56 +01:00
dgtlmoon	52f2c00308	UI/Functionality - Ability to manage/apply filters and notifications across tags/groups	2023-06-19 23:29:13 +02:00
dgtlmoon	f8e587c415	Security - Possible stored XSS in watch list - Only permit HTTP/HTTP/FTP by default - override with env var `SAFE_PROTOCOL_REGEX` (#1359 )	2023-01-29 11:12:06 +01:00
dgtlmoon	f2fa638480	Security update - Protect against file:/// type access by webdriver/chrome. (#483 )	2022-03-21 20:59:20 +01:00

14 Commity (cb62404b8ca09c993b6721e27c5280a836343f23)