Issues - breakpilot-compliance - Gitea: Git with a cup of tea

Benjamin_Boenisch/breakpilot-compliance

Labels Milestones New Issue

Write auth integration tests — verify 401/403 on every protected route security severity: high testing

#20 opened 2026-04-20 09:37:12 +00:00 by sharang M4: Testing & Contract Stability

Write tenant isolation integration tests security severity: high testing

#19 opened 2026-04-20 09:37:11 +00:00 by sharang M4: Testing & Contract Stability

Add DSGVO-required audit logging for all data access and mutation routes observability security severity: high

#16 opened 2026-04-20 09:36:29 +00:00 by sharang M3: Observability & Audit Logging

Fix silent exception swallowing in route handlers observability reliability severity: high

#11 opened 2026-04-20 09:35:44 +00:00 by sharang M2: Data Integrity & Reliability

Add retry logic and circuit breakers for external service calls reliability severity: high

#10 opened 2026-04-20 09:35:15 +00:00 by sharang M2: Data Integrity & Reliability

Wrap multi-step DB operations in transactions to prevent partial writes data-integrity severity: high

#9 opened 2026-04-20 09:35:10 +00:00 by sharang M2: Data Integrity & Reliability

Fix CORS default: restrict allowed origins from wildcard to explicit list security severity: high

#8 opened 2026-04-20 09:34:50 +00:00 by sharang M1: Security Foundation

Enforce required env vars at startup — eliminate insecure defaults config security severity: high

#7 opened 2026-04-20 09:34:48 +00:00 by sharang M1: Security Foundation

Replace f-string SQL construction with parameterized queries data-integrity security severity: high

#6 opened 2026-04-20 09:34:29 +00:00 by sharang M1: Security Foundation

Fix multi-tenancy bypass: derive tenant_id from JWT, not from request headers security severity: high

#5 opened 2026-04-20 09:34:28 +00:00 by sharang M1: Security Foundation

Wire JWT middleware to all FastAPI routes security severity: high

#4 opened 2026-04-20 09:34:08 +00:00 by sharang M1: Security Foundation