mirror of
https://github.com/katanemo/plano.git
synced 2026-04-25 00:36:34 +02:00
1df43872a6
* Fix code scanning and dependabot security alerts Code scanning fixes (14 alerts): - Fix XSS in OG image route by validating request origin against allowlist - Fix incomplete URL sanitization in blog layout using exact hostname matching - Bind port-check socket to 127.0.0.1 instead of 0.0.0.0 - Add explicit permissions to 7 GitHub Actions workflows Dependabot fixes: - Update @isaacs/brace-expansion 5.0.0 -> 5.0.1 (CVE-2026-25547) - Update bytes 1.10.1 -> 1.11.1 (CVE-2026-25541) - Update time 0.3.41 -> 0.3.47 (CVE-2026-25727) - Update cryptography 45.0.7 -> 46.0.5 (CVE-2026-26007) - Update python-multipart 0.0.20 -> 0.0.22 (CVE-2026-24486) - Update urllib3 2.6.2 -> 2.6.3 in test lockfiles (CVE-2026-21441) - Update Werkzeug 3.1.4 -> 3.1.5 (CVE-2026-21860) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Address PR review feedback - Replace plano.katanemo.com with planoai.dev in allowed hosts - Add planoai.dev to OG route and blog layout allowlists - Revert socket bind to 0.0.0.0 (intentional for port-in-use check) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| docker-push-main.yml | ||
| docker-push-release.yml | ||
| docker-security-scan.yml | ||
| e2e_plano_tests.yml | ||
| e2e_test_currency_convert.yml | ||
| e2e_test_preference_based_routing.yml | ||
| e2e_tests.yml | ||
| ghrc-push-main.yml | ||
| ghrc-push-release.yml | ||
| plano_tools_tests.yml | ||
| pre-commit.yml | ||
| publish-pypi.yml | ||
| rust_tests.yml | ||
| static.yml | ||
| validate_plano_config.yml | ||