ivatar

external-repos/ivatar

Fork 0

mirror of https://git.linux-kernel.at/oliver/ivatar.git synced 2025-11-15 12:38:03 +00:00

Commit Graph

Author	SHA1	Message	Date
Oliver Falk	d37ae1456c	feat: implement comprehensive file upload security - Add comprehensive file validation with magic bytes, MIME type, and PIL checks - Implement malicious content detection and polyglot attack prevention - Add EXIF data sanitization to prevent metadata leaks - Enhance UploadPhotoForm with security validation - Add security logging for audit trails - Include comprehensive test suite for security features - Add python-magic dependency for MIME type detection - Update configuration with security settings - Add detailed documentation for file upload security Security features: - File type validation (magic bytes + MIME type) - Content security scanning (malware detection) - EXIF data sanitization (privacy protection) - Enhanced logging (security event tracking) - Comprehensive test coverage Removed rate limiting as requested for better user experience.	2025-10-15 15:30:32 +02:00

Author

SHA1

Message

Date

Oliver Falk

d37ae1456c

feat: implement comprehensive file upload security

- Add comprehensive file validation with magic bytes, MIME type, and PIL checks
- Implement malicious content detection and polyglot attack prevention
- Add EXIF data sanitization to prevent metadata leaks
- Enhance UploadPhotoForm with security validation
- Add security logging for audit trails
- Include comprehensive test suite for security features
- Add python-magic dependency for MIME type detection
- Update configuration with security settings
- Add detailed documentation for file upload security

Security features:
- File type validation (magic bytes + MIME type)
- Content security scanning (malware detection)
- EXIF data sanitization (privacy protection)
- Enhanced logging (security event tracking)
- Comprehensive test coverage

Removed rate limiting as requested for better user experience.

2025-10-15 15:30:32 +02:00

1 Commits