Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / unrolled/secure issues and pull requests

#103 - chore: ensure the package does not add any headers

Pull Request - State: closed - Opened by unrolled about 1 month ago

#101 - chore: add go 1.23 to test matrix

Pull Request - State: closed - Opened by unrolled about 2 months ago

#100 - lint: fixing linter errs

Pull Request - State: closed - Opened by unrolled about 2 months ago

#99 - chore: fix readme comment

Pull Request - State: closed - Opened by unrolled about 2 months ago

#97 - skip func fields in marshalling Options (json,yaml,toml)

Pull Request - State: closed - Opened by aerth 3 months ago

#96 - fix: sort csp directives per w3 spec

Pull Request - State: closed - Opened by unrolled 5 months ago

#95 - bringing linter up to date

Pull Request - State: closed - Opened by unrolled 5 months ago

#93 - No options about Cache-Control, need support

Issue - State: closed - Opened by anhuibl 10 months ago - 1 comment

#92 - Removing HPKP and Expect-CT

Pull Request - State: closed - Opened by unrolled 11 months ago

#91 - `HPKP` & `Expect-CT` are deprecated.

Issue - State: closed - Opened by AshGw 11 months ago

#90 - Bump CI versions, fix a few linting errors

Pull Request - State: closed - Opened by unrolled about 1 year ago

#89 - Updating linter rules

Pull Request - State: closed - Opened by unrolled almost 2 years ago

#86 - Feature/csp builder

Pull Request - State: closed - Opened by robot-5 over 2 years ago - 1 comment

#85 - Replacing `AllowedHostsFunc` with `AllowRequestFunc`

Pull Request - State: closed - Opened by unrolled over 2 years ago - 2 comments

#84 - Add custom is host allowed func

Pull Request - State: closed - Opened by franklinexpress over 2 years ago - 1 comment

#83 - Pass request to allowed hosts func

Pull Request - State: closed - Opened by franklinexpress over 2 years ago

#82 - Add ability to pass a custom allowed hosts function

Pull Request - State: closed - Opened by franklinexpress over 2 years ago - 2 comments

#80 - Add ability to set Cross-Origin-Opener-Policy header

Pull Request - State: closed - Opened by tclem almost 3 years ago - 2 comments

#79 - Any new releases?

Issue - State: closed - Opened by samstride over 3 years ago - 2 comments

#78 - SQL Injection detection based on payload

Issue - State: closed - Opened by batara666 over 3 years ago - 3 comments

#77 - Add Permissions-Policy

Pull Request - State: closed - Opened by yhlee-tw almost 4 years ago - 1 comment

#76 - Allow configure Permissions-Policy: headers

Issue - State: closed - Opened by karnauskas about 4 years ago

#75 - FIX README.md chi code sample

Pull Request - State: closed - Opened by m22o about 4 years ago - 1 comment

#74 - Deprecate the PublicKey feature per latest security best practices.

Pull Request - State: closed - Opened by bramp over 4 years ago - 1 comment

#73 - Add a Content Security Policy builder

Issue - State: closed - Opened by bramp over 4 years ago - 5 comments

#72 - Support for Access-Control-Allow-Origin headers?

Issue - State: closed - Opened by bramp over 4 years ago - 3 comments

#71 - Update README.md Integration Example

Pull Request - State: closed - Opened by kataras over 4 years ago - 1 comment

#70 - Panic when accession newR.Context()

Issue - State: closed - Opened by ScottBrooks over 4 years ago - 2 comments

#69 - Issue #68 :: Update reference to urfave/negroni

Pull Request - State: closed - Opened by johnweldon over 4 years ago - 1 comment

#68 - go.mod references codegangsta/negroni rather than urfave/negroni

Issue - State: closed - Opened by johnweldon over 4 years ago - 1 comment

#67 - certificate bidirectional authentication

Issue - State: closed - Opened by excxapp over 4 years ago - 1 comment

#66 - Bad Host (Cloudflare)

Issue - State: closed - Opened by ghost almost 5 years ago - 2 comments

#65 - Allow a custom context key

Pull Request - State: closed - Opened by dtomcej almost 5 years ago - 3 comments

#64 - Static SecureHeaderKey does not allow multiple instances

Issue - State: closed - Opened by dtomcej almost 5 years ago

#63 - I encountered a problem when i try to install this pakage.

Issue - State: closed - Opened by matchseller almost 5 years ago - 2 comments

#62 - Add SSLHost logic to ModifyResponseHeaders()

Pull Request - State: closed - Opened by dtomcej about 5 years ago - 1 comment

#61 - ModifyResponseHeader rewrites response headers indiscriminately

Issue - State: closed - Opened by dtomcej about 5 years ago

#60 - 不能用443端口吗?

Issue - State: closed - Opened by heroghost about 5 years ago - 4 comments

#59 - Update casing on includeSubDomains directive

Pull Request - State: closed - Opened by dtomcej about 5 years ago - 1 comment

#58 - Fix Location response header http to https when SSL

Pull Request - State: closed - Opened by elielgoncalves about 5 years ago - 2 comments

#57 - Unnecessary redirect in SSL

Issue - State: closed - Opened by elielgoncalves about 5 years ago

#56 - Gin accessing CSP nonce

Issue - State: closed - Opened by Raggaer over 5 years ago - 6 comments

#55 - chore: migrate to go module.

Pull Request - State: closed - Opened by ldez over 5 years ago

#54 - Allow using nonce with report-only policy

Pull Request - State: closed - Opened by dzbarsky over 5 years ago - 3 comments

#53 - use for microservices facing public

Issue - State: closed - Opened by mlevkov over 5 years ago - 2 comments

#52 - Adds AllowedHostsAreRegex implementation

Pull Request - State: closed - Opened by pzeinlinger over 5 years ago - 1 comment

#51 - Correct HSTS seconds value in docs

Pull Request - State: closed - Opened by uLan08 over 5 years ago - 1 comment

#50 - AllowedHost check wildcard for subdomains

Issue - State: closed - Opened by pzeinlinger over 5 years ago - 3 comments

#49 - HSTS seconds in docs is 10 years?

Issue - State: closed - Opened by uLan08 over 5 years ago - 1 comment

#48 - Add support for a correlation id header

Pull Request - State: closed - Opened by JanMa almost 6 years ago - 2 comments

#47 - Add exported ProcessNoModifyRequest

Pull Request - State: closed - Opened by dtomcej almost 6 years ago - 1 comment

#46 - Make sure the Contest with the CSP nonce gets passed into wrapped handlers.

Pull Request - State: closed - Opened by jcgregorio almost 6 years ago - 1 comment

#45 - Unexported `processRequest` does not allow modification of the request before next

Issue - State: closed - Opened by dtomcej almost 6 years ago - 2 comments

#44 - Add usage for Gorilla Mux to README.md

Pull Request - State: closed - Opened by klische almost 6 years ago

#43 - How should I use CSP nonce with Gin?

Issue - State: closed - Opened by hashworks about 6 years ago - 1 comment

#42 - Add support for report only content security policies.

Pull Request - State: closed - Opened by justingallardo-okta about 6 years ago - 2 comments

#41 - Add support for Expect-CT security header

Issue - State: closed - Opened by Yggdrasil about 6 years ago - 2 comments

#40 - Propose logo

Issue - State: closed - Opened by dee-y about 6 years ago - 1 comment

#39 - Set headers instead of adding them

Pull Request - State: closed - Opened by hashworks about 6 years ago - 1 comment

#38 - Add ability to set `Feature-Policy` header

Pull Request - State: closed - Opened by hashworks about 6 years ago - 1 comment

#37 - How to redirect from HTTP to HTTPS with CSP set?

Issue - State: closed - Opened by ajeecai over 6 years ago - 2 comments

#36 - gofmt

Pull Request - State: closed - Opened by whilei over 6 years ago

#35 - Always check host against SSLHOST to redirect if doesn't match

Pull Request - State: closed - Opened by aek over 6 years ago - 9 comments

#34 - Integrating gometalinter

Pull Request - State: closed - Opened by unrolled over 6 years ago

#33 - Add linters.

Pull Request - State: closed - Opened by ldez over 6 years ago - 8 comments

#32 - Fix bad key type on context

Pull Request - State: closed - Opened by mmatur over 6 years ago - 1 comment

#31 - ModifyResponse feature to be able to use secure with http.ReverseProxy

Pull Request - State: closed - Opened by mmatur almost 7 years ago - 3 comments

#30 - add the ability to dynamically dispatch https redirection

Pull Request - State: closed - Opened by Wizr almost 7 years ago - 1 comment

#29 - Can't get $NONCE to work properly

Issue - State: closed - Opened by 16n almost 7 years ago - 4 comments

#28 - force ssl only if X-Forwarded-Proto exists and its not https?

Issue - State: closed - Opened by u007 almost 7 years ago - 5 comments

#27 - Expose a WithCSPNonce function.

Pull Request - State: closed - Opened by balasanjay almost 7 years ago

#26 - Dynamic Csp nonce

Pull Request - State: closed - Opened by srikrsna almost 7 years ago - 2 comments

#25 - Dynamic CSP Nonce Support

Issue - State: closed - Opened by srikrsna almost 7 years ago - 3 comments

#24 - travis: update go versions

Pull Request - State: closed - Opened by dvrkps about 7 years ago - 1 comment

#23 - SSLRedirect not working if only TLS is served

Issue - State: closed - Opened by Nhoya about 7 years ago - 4 comments

#22 - Seeking information about redirecting HTTP to HTTPS

Issue - State: closed - Opened by amankapoor about 7 years ago - 4 comments

#21 - Fix typo in README

Pull Request - State: closed - Opened by jmackie over 7 years ago - 1 comment

#20 - Support for Echo 3

Issue - State: closed - Opened by StarpTech over 7 years ago - 3 comments

#19 - Allow customization of the X-XSS-Protection header

Issue - State: closed - Opened by F21 over 7 years ago - 2 comments

#18 - Fix formatting in README file

Pull Request - State: closed - Opened by mavimo over 7 years ago - 1 comment

#17 - README indentation fix

Pull Request - State: closed - Opened by Roemerb over 7 years ago

#16 - Hosts proxy header option

Pull Request - State: closed - Opened by kujenga over 7 years ago

#15 - Allow for a proxy header to specify the Host

Issue - State: closed - Opened by kujenga over 7 years ago - 1 comment

#14 - Add support for Referrer-Policy header

Pull Request - State: closed - Opened by ant1441 over 7 years ago - 2 comments

#13 - Add support for "Referrer-Policy" header

Issue - State: closed - Opened by kujenga almost 8 years ago - 1 comment

#12 - Could you provide an example for the chi library

Issue - State: closed - Opened by msaron almost 8 years ago - 2 comments

#11 - Go fmt on code chunks

Pull Request - State: closed - Opened by matbesancon almost 8 years ago - 1 comment

#10 - Go fmt on the gin example

Pull Request - State: closed - Opened by matbesancon almost 8 years ago - 1 comment

#9 - Fix Gin example

Pull Request - State: closed - Opened by javierprovecho about 8 years ago - 1 comment

#8 - Reference alt CSP module

Issue - State: closed - Opened by yanfali about 8 years ago - 1 comment

#7 - WSS support

Issue - State: closed - Opened by yanfali about 8 years ago - 2 comments

#6 - Update README Integration example for Iris

Pull Request - State: closed - Opened by ghost over 8 years ago - 2 comments

#5 - 500 error when redirecting from http to https on HEAD requests

Issue - State: closed - Opened by BrodrickChilds about 9 years ago - 1 comment

#4 - Implemented a header check in order for this middleware to work with …

Pull Request - State: closed - Opened by ruseinov about 9 years ago - 3 comments

#3 - Master - Added HPKP

Pull Request - State: closed - Opened by ericlagergren over 9 years ago - 3 comments

#2 - Updated STS to support the preload flag

Pull Request - State: closed - Opened by gbedoya over 9 years ago - 1 comment