ivatar/config_local_test.py at d37ae1456cd47e3a270b7ca10f5c30b00273f2ac - ivatar - PurpleRaft Gitea

external-repos/ivatar

mirror of https://git.linux-kernel.at/oliver/ivatar.git synced 2025-11-14 20:18:02 +00:00

Files

Oliver Falk d37ae1456c feat: implement comprehensive file upload security

- Add comprehensive file validation with magic bytes, MIME type, and PIL checks
- Implement malicious content detection and polyglot attack prevention
- Add EXIF data sanitization to prevent metadata leaks
- Enhance UploadPhotoForm with security validation
- Add security logging for audit trails
- Include comprehensive test suite for security features
- Add python-magic dependency for MIME type detection
- Update configuration with security settings
- Add detailed documentation for file upload security

Security features:
- File type validation (magic bytes + MIME type)
- Content security scanning (malware detection)
- EXIF data sanitization (privacy protection)
- Enhanced logging (security event tracking)
- Comprehensive test coverage

Removed rate limiting as requested for better user experience.

2025-10-15 15:30:32 +02:00

4 lines

108 B

Python

Raw Blame History

	`# -- coding: utf-8 --`
	`# Test configuration to verify LOGS_DIR override`
	`LOGS_DIR = "/tmp/ivatar_test_logs"`