| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 39 hours | Fix URI validation bypasses (Phase 1.3 updated) | toastal | |
| - Add url_decode function to handle percent-encoded sequences - Check both raw and URL-decoded paths for traversal attacks - Catch %2e%2e%2f (encoded ../) and similar bypasses - Improved path traversal detection for patterns like /etc/../passwd Fixes TPol-identified vulnerabilities: - URL-encoded path traversal bypasses - Missing path traversal detection in some patterns | |||
| 39 hours | Add URI validation for security (Phase 1.3) | toastal | |
| Add validate function to uRI.ml that checks for: - Acceptable schemes: http, https, ftp, sftp, file, ssh, git, darcs, pijul, fossil - Path traversal attacks (../, ..\ patterns) Returns Result type with specific error variants for invalid schemes and path traversal attempts. All 17 tests pass. | |||
| 2026-01-02 | QCheck: update naming | ยท๐๐ด๐๐๐ฉ๐ค | |
| 2025-12-11 | add URI module | ยท๐๐ด๐๐๐ฉ๐ค | |
 |
index : nixtaml | |
| [no description] | Gitolite user |
| summaryrefslogtreecommitdiff |