apunkt/gomcp
1
0
Fork 0
mirror of https://github.com/syntrex-lab/gomcp.git synced 2026-04-27 21:36:21 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions
32 commits 1 branch 1 tag 898 KiB
Commit graph

14 commits

Author SHA1 Message Date
DmitrL-dev
5ddfa74771 chore: Apply dashboard audit remediations, sync engine counts, update APIs 2026-03-27 16:54:18 +10:00
DmitrL-dev
b8097d3f1b feat: SOC ghost sinkhole, rate limiter, RBAC, demo seed 2026-03-27 12:45:11 +10:00
DmitrL-dev
5c00ffef75 perf: full optimization pass for 10K battle 2026-03-26 14:26:17 +10:00
DmitrL-dev
af945d5008 perf: SOC hardening — CPU limits, scan semaphore, SEO, tenant_id migration 
- docker-compose.prod.yml: SOC CPU 1→3, GOMEMLIMIT 1200MiB, GOMAXPROCS 3, removed certbot
- server.go: scan semaphore (max 4 concurrent scans)
- soc_handlers.go: 503 backpressure + 30s scan timeout
- 003_add_tenant_id.sql: migration for soc_events/incidents/sensors
- SEO: Google/Yandex verification, expanded sitemap.xml, improved robots.txt
- SENTINEL_AI_SOC_SPEC.md: v2.3 — §18 Performance & Capacity section
 2026-03-26 14:02:55 +10:00
DmitrL-dev
0454dd4966 feat: auto-enrich SOC events with source IP from HTTP request 2026-03-26 12:22:00 +10:00
DmitrL-dev
11c0e42af7 fix: exclude auth/SSE/events from global rate limiter 2026-03-26 09:16:53 +10:00
DmitrL-dev
413fa8aa2c feat: POST /api/waitlist — backend endpoint for registration waitlist 
- server.go: route registration (public, rate-limited)
- soc_handlers.go: handleWaitlist with email validation, input sanitization
- service.go: AddWaitlistEntry with audit trail + structured logging
- Frontend form at /register already submits to this endpoint
 2026-03-24 15:46:59 +10:00
DmitrL-dev
4ce94e9c77 SEC: Fix 3 CRITICAL + 3 MEDIUM red team findings 
C1: Remove verification_code_dev from API response (CVSS 9.8)
    - Code now logged server-side only when email service not configured
C2: Tenant isolation on /api/auth/users (CVSS 9.1)
    - HandleListUsers filters by claims.TenantID
    - TenantID added to User struct, DB migration, persistUser, loadFromDB
C3: Include TenantID in JWT tokens (CVSS 8.8)
    - Login handler now uses Sign() with full Claims including TenantID
    - Enables downstream RBAC tenant filtering

M1: nginx server_tokens off (hide version fingerprint)
M2: syntrex.pro added to server_name
M3: CORS multi-origin support (SOC_CORS_ORIGIN=origin1,origin2)
 2026-03-24 10:32:50 +10:00
DmitrL-dev
8d87c453b0 feat: add free starter plan with 1000 scans/month quota tracking 2026-03-24 09:37:09 +10:00
DmitrL-dev
f581d65951 feat: wire Shield engine + 134K signatures into demo scanner pipeline 2026-03-23 21:28:54 +10:00
DmitrL-dev
b958ed07bd feat: connect demo scanner to real SENTINEL engines via /api/v1/scan endpoint 2026-03-23 20:25:30 +10:00
DmitrL-dev
41cbfd6e0a Release prep: 54 engines, self-hosted signatures, i18n, dashboard updates 2026-03-23 16:45:40 +10:00
DmitrL-dev
694e32be26 refactor: rename identity to syntrex, add root orchestration and CI/CD 
- Rename Go module: sentinel-community/gomcp -> syntrex/gomcp (50+ files)
- Rename npm package: sentinel-dashboard -> syntrex-dashboard
- Update Cargo.toml repository URL to syntrex/syntrex
- Update all doc references from DmitrL-dev/AISecurity to syntrex
- Add root Makefile (build-all, test-all, lint-all, clean-all)
- Add MIT LICENSE
- Add .editorconfig (Go/Rust/TS/C cross-language)
- Add .github/workflows/ci.yml (Go + Rust + Dashboard)
- Add dashboard next.config.ts and .env.example
- Clean ARCHITECTURE.md: remove brain/immune/strike/micro-swarm, fix 61->67 engines
 2026-03-11 15:30:49 +10:00
DmitrL-dev
2c50c993b1 initial: Syntrex extraction from sentinel-community (615 files) 2026-03-11 15:12:02 +10:00