penal-colony/samsa
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
samsa/internal
History
ashisgreat22 d21e9189b8 fix(engines): validate Wikipedia language codes to prevent SSRF 
Wikipedia language subdomain was derived from user input without
validation, allowing attackers to redirect requests via malicious
language values like "evil.com.attacker.com". Added a whitelist of
valid Wikipedia language codes to prevent this.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-03-22 13:22:52 +01:00
..
autocomplete refactor: clean up verbose and redundant comments 2026-03-22 11:10:50 +00:00
cache license: change from MIT to AGPLv3 2026-03-22 08:27:23 +00:00
config feat: add source_url config option for footer source link 2026-03-22 08:34:20 +00:00
contracts refactor: clean up verbose and redundant comments 2026-03-22 11:10:50 +00:00
engines fix(engines): validate Wikipedia language codes to prevent SSRF 2026-03-22 13:22:52 +01:00
httpapi test: add HTTP API integration tests 2026-03-22 11:44:48 +00:00
middleware refactor: clean up verbose and redundant comments 2026-03-22 11:10:50 +00:00
search refactor: clean up verbose and redundant comments 2026-03-22 11:10:50 +00:00
upstream license: change from MIT to AGPLv3 2026-03-22 08:27:23 +00:00
views feat: add source_url config option for footer source link 2026-03-22 08:34:20 +00:00