354fd5da28
Security fixes implemented: - CRIT-001/002: Replace static shared buffer with per-instance buffer in Miner - CRIT-003: Redact password from API response in ApiRouter - CRIT-004: Fix TlsContext::setCiphers returning true on failure + TLS hardening - CRIT-005: Add null check in Controller destructor to prevent double-free - CRIT-006: Add JSON type validation before member access in BindHost - CRIT-007: Restrict CORS to localhost + add security headers in HttpApiResponse - CRIT-014: Add HTTP body/header/URL size limits to prevent DoS - HIGH-001: Make miner ID generation thread-safe with std::atomic - HIGH-003: Make all global counters atomic in Counters class - HIGH-009: Implement rolling window for latency vector (max 10K entries) These fixes address race conditions, memory exhaustion DoS vectors, information disclosure, and thread safety issues identified during parallel code review. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> |
||
|---|---|---|
| .. | ||
| config | ||
| core | ||
| cuda | ||
| deps | ||
| heatmap | ||
| proxy | ||
| workers | ||
| NOTICE | ||