Haschek-Solutions/http2pic
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
94 Commits 1 Branch 11 Tags
v2.2.0
Commit Graph

8 Commits

Author SHA1 Message Date
Chris
6973522c45 fix: block non-http(s) schemes, sanitize API_KEY backslash, improve viewport error message 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-21 12:48:18 +02:00
Chris
cc30d2288e fix: sanitize API_KEY and BLOCK_PRIVATE_IPS in config generation 
- Fix Issue 1: Normalize BLOCK_PRIVATE_IPS to safe boolean (true/false) using shell case statement to prevent PHP injection from non-boolean values like 'yes'
- Fix Issue 2: Strip single quotes from API_KEY to prevent PHP string injection if the value contains quotes
- Update docker-compose-dev.yml to document these configuration options

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-20 21:50:59 +02:00
Chris
3ab7c1334f feat: add API_KEY and BLOCK_PRIVATE_IPS config vars 2026-04-20 21:47:09 +02:00
Chris
086e7c7a77 full path 2025-06-10 12:00:35 +02:00
Chris
181bed4449 config corrections 2025-06-10 11:57:16 +02:00
Chris
a140a35448 symlink 2025-06-10 11:21:11 +02:00
Chris
469ef7f5ea container and dev preparations
Some checks failed
ci / docker (push) Failing after 11m20s
Details
2025-06-10 10:39:47 +02:00
Christian Haschek
f54d35c312 preparations and testing for a rewrite, ditching wkhtmltopdf for chrome-driver 2025-01-12 20:13:47 +00:00