external-repos/ivatar
1
0
Fork 0
mirror of https://git.linux-kernel.at/oliver/ivatar.git synced 2025-11-16 21:18:02 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,077 Commits 13 Branches 2 Tags
d37ae1456cd47e3a270b7ca10f5c30b00273f2ac
Go to file
Clone
Open with VS Code
Download ZIP Download TAR.GZ Download BUNDLE
Oliver Falk d37ae1456c feat: implement comprehensive file upload security 
- Add comprehensive file validation with magic bytes, MIME type, and PIL checks
- Implement malicious content detection and polyglot attack prevention
- Add EXIF data sanitization to prevent metadata leaks
- Enhance UploadPhotoForm with security validation
- Add security logging for audit trails
- Include comprehensive test suite for security features
- Add python-magic dependency for MIME type detection
- Update configuration with security settings
- Add detailed documentation for file upload security

Security features:
- File type validation (magic bytes + MIME type)
- Content security scanning (malware detection)
- EXIF data sanitization (privacy protection)
- Enhanced logging (security event tracking)
- Comprehensive test coverage

Removed rate limiting as requested for better user experience.
2025-10-15 15:30:32 +02:00
.cursor/screenshots
feat: implement comprehensive file upload security
2025-10-15 15:30:32 +02:00
.gitlab/issue_templates
Add example issue template
2023-09-12 16:56:58 +02:00
attic
Add attic
2023-01-02 22:42:26 +01:00
ivatar
feat: implement comprehensive file upload security
2025-10-15 15:30:32 +02:00
locale
Add translations from old libravatar project - will need a lot of love
2019-02-18 13:04:50 +01:00
schemas/export
Make pylint happier, enhance a few tests and add missing schemas
2020-11-13 13:36:16 +01:00
templates
feat: enhance security with improved password hashing and logging
2025-10-15 15:13:09 +02:00
.buildpacks
Set sast config 1
2023-05-15 18:58:22 +00:00
.coveragerc
Update ignored files (for coverage report)
2021-09-16 10:00:02 +02:00
.env
Only create virtualenv on toplevel
2023-02-14 21:43:16 +01:00
.env.leave
Still a few files lingering around in the dev branch that should stay in the repo
2022-09-16 13:48:28 +02:00
.flake8
Code cleanup/refactoring
2025-02-10 16:54:28 +01:00
.gitignore
feat: enhance security with improved password hashing and logging
2025-10-15 15:13:09 +02:00
.gitlab-ci.yml
Enhance the StatsView
2025-09-24 17:44:41 +02:00
.pre-commit-config.yaml
Add support for OIDC authentication with Fedora
2025-04-07 11:03:33 +02:00
.pylintrc
Allow up to 10 parents
2018-07-11 10:09:28 +02:00
config_local_test.py
feat: implement comprehensive file upload security
2025-10-15 15:30:32 +02:00
config_local.py.example
feat: implement comprehensive file upload security
2025-10-15 15:30:32 +02:00
config.py
feat: implement comprehensive file upload security
2025-10-15 15:30:32 +02:00
COPYING
Add missing lic
2018-11-06 13:38:09 +01:00
coverage_extra_style.css
Hotfixes from devel
2025-09-11 14:18:41 +02:00
create_nobody_from_svg_with_inkscape.sh
feat: enhance security with improved password hashing and logging
2025-10-15 15:13:09 +02:00
create.sh
feat: enhance security with improved password hashing and logging
2025-10-15 15:13:09 +02:00
cropperjs.zip
feat: implement comprehensive file upload security
2025-10-15 15:30:32 +02:00
Dockerfile
Use newer Fedora version (investigating even newer soon) and change the registry
2025-04-16 08:57:22 +02:00
FILE_UPLOAD_SECURITY.md
feat: implement comprehensive file upload security
2025-10-15 15:30:32 +02:00
import_libravatar.py
Rework with black
2022-02-11 13:17:22 +01:00
INSTALL.md
Add support for OIDC authentication with Fedora
2025-04-07 11:03:33 +02:00
libravatarproxy.py
Rework with black
2022-02-11 13:16:52 +01:00
LICENSE
Make pylint happier, enhance a few tests and add missing schemas
2020-11-13 13:36:16 +01:00
manage.py
feat: enhance security with improved password hashing and logging
2025-10-15 15:13:09 +02:00
MANIFEST.in
Add the usual project files in order to build a tarball more easily
2023-01-03 15:37:51 +01:00
pyproject.toml
Add the usual project files in order to build a tarball more easily
2023-01-03 15:37:51 +01:00
README.md
Hotfixes from devel
2025-09-11 14:18:41 +02:00
requirements.txt
feat: implement comprehensive file upload security
2025-10-15 15:30:32 +02:00
setup.cfg
Add the usual project files in order to build a tarball more easily
2023-01-03 15:37:51 +01:00
setup.py
Add the usual project files in order to build a tarball more easily
2023-01-03 15:37:51 +01:00

README.md

ivatar / libravatar

Pipeline and coverage status

pipeline status coverage report

Reports / code documentation

Authors and contributors

Lead developer/Owner: Oliver Falk (aka ofalk or falko) - https://git.linux-kernel.at/oliver

Operations: Michal Novotny (aka clime)

QA: Tristan Le Guern (aka tleguern)

Frontend developer: Lukas Schönsgibl (aka hybridpicker), Niklas Poslovski (aka nipos)

Organisation/Meeting moderation: Lars Kruse (aka sumpfralle)

Initial developer: François Marier - https://fmarier.org/

Description
No description provided
Readme AGPL-3.0 32 MiB
Languages
PostScript 94.5%
Python 3.8%
CSS 0.7%
HTML 0.7%
JavaScript 0.3%