lerkolabs/uptop
1
1
Fork 0
Code Issues 1 Pull Requests 1 Actions Packages Projects Releases 2 Wiki Activity
Files
bd561d9a5eb2b0ca6df2e5d061f4976dbcfe075a
uptop/internal/cluster
T
History
lerko 60b30935b3
CI / test (pull_request) Successful in 4m40s
Details
CI / lint (pull_request) Successful in 1m2s
Details
fix(security): phase 1 critical fixes for public release 
- Redact PostgreSQL DSN password from stdout/logs
- Harden .dockerignore to exclude .ssh/, .claude/, *.db, *.local files
- SSRF protection: block private/loopback/link-local IPs by default
  (UPTOP_ALLOW_PRIVATE_TARGETS=true to override for homelab use)
- Fix email header injection via CRLF in monitor names
- AES-256-GCM encryption for alert credentials at rest
  (UPTOP_ENCRYPTION_KEY env var, migrate-secrets subcommand)
- TLS support for HTTP server (UPTOP_TLS_CERT/UPTOP_TLS_KEY)
  with HSTS header when TLS enabled
2026-05-25 11:26:47 -04:00
..
cluster_test.go
fix(security): phase 1 critical fixes for public release
2026-05-25 11:26:47 -04:00
cluster.go
chore: complete rename from go-upkeep to uptop
2026-05-24 20:20:35 -04:00
probe.go
fix(security): phase 1 critical fixes for public release
2026-05-25 11:26:47 -04:00