Benjamin_Boenisch/breakpilot-compliance
1
0
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity
Labels Milestones New Issue
12 Open 0 Closed
Label
Clear labels
config
data-integrity
frontend
observability
reliability
security
severity: critical
severity: high
severity: medium
testing
Milestone
No milestone
Open milestones
M1: Security Foundation
M2: Data Integrity & Reliability
M3: Observability & Audit Logging
M4: Testing & Contract Stability
M5: Frontend Hardening
Projects
Clear projects
Assignee
Clear assignees
No assignee
sharang
Benjamin_Boenisch
Lock down IPFS dsms-node: close external port 5001 and add auth to dsms-gateway security severity: medium
#26 opened 2026-04-20 09:37:51 +00:00 by sharang M5: Frontend Hardening
Move auth tokens from localStorage to httpOnly cookies frontend security severity: medium
#24 opened 2026-04-20 09:37:44 +00:00 by sharang M5: Frontend Hardening
Write auth integration tests — verify 401/403 on every protected route security severity: high testing
#20 opened 2026-04-20 09:37:12 +00:00 by sharang M4: Testing & Contract Stability
Write tenant isolation integration tests security severity: high testing
#19 opened 2026-04-20 09:37:11 +00:00 by sharang M4: Testing & Contract Stability
Stop leaking internal error details to API clients observability security severity: medium
#18 opened 2026-04-20 09:36:33 +00:00 by sharang M3: Observability & Audit Logging
Add DSGVO-required audit logging for all data access and mutation routes observability security severity: high
#16 opened 2026-04-20 09:36:29 +00:00 by sharang M3: Observability & Audit Logging
Fix CORS default: restrict allowed origins from wildcard to explicit list security severity: high
#8 opened 2026-04-20 09:34:50 +00:00 by sharang M1: Security Foundation
Enforce required env vars at startup — eliminate insecure defaults config security severity: high
#7 opened 2026-04-20 09:34:48 +00:00 by sharang M1: Security Foundation
Replace f-string SQL construction with parameterized queries data-integrity security severity: high
#6 opened 2026-04-20 09:34:29 +00:00 by sharang M1: Security Foundation
Fix multi-tenancy bypass: derive tenant_id from JWT, not from request headers security severity: high
#5 opened 2026-04-20 09:34:28 +00:00 by sharang M1: Security Foundation
Wire JWT middleware to all FastAPI routes security severity: high
#4 opened 2026-04-20 09:34:08 +00:00 by sharang M1: Security Foundation
Rotate and remove hardcoded credentials from docker-compose.yml config security severity: critical
#3 opened 2026-04-20 09:33:56 +00:00 by sharang M1: Security Foundation