Snider/Mining
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
Mining/pkg/node
History
snider 4072bdaf0d fix: Address 16 security findings from parallel code review 
Critical fixes (6):
- CRIT-001/002: Add safeKeyPrefix() to prevent panic on short public keys
- CRIT-003/004: Add sync.Once pattern for thread-safe singleton initialization
- CRIT-005: Harden console ANSI parser with length limits and stricter validation
- CRIT-006: Add client-side input validation for profile creation

High priority fixes (10):
- HIGH-001: Add secondary timeout in TTMiner to prevent goroutine leak
- HIGH-002: Verify atomic flag prevents timeout middleware race
- HIGH-004: Add LimitReader (100MB) to prevent decompression bombs
- HIGH-005: Add Lines parameter validation (max 10000) in worker
- HIGH-006: Add TLS 1.2+ config with secure cipher suites
- HIGH-007: Add pool URL format and wallet length validation
- HIGH-008: Add SIGHUP handling and force cleanup on Stop() failure
- HIGH-009: Add WebSocket message size limit and event type validation
- HIGH-010: Refactor to use takeUntil(destroy$) for observable cleanup
- HIGH-011: Add sanitizeErrorDetails() with debug mode control

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-31 17:44:49 +00:00
..
bufpool.go feat: Implement multiple code review improvements 2025-12-31 15:45:25 +00:00
bundle.go fix: Address 16 security findings from parallel code review 2025-12-31 17:44:49 +00:00
bundle_test.go fix: Comprehensive code hardening from 4-domain Opus review 2025-12-31 14:33:30 +00:00
controller.go fix: Comprehensive code hardening from 4-domain Opus review 2025-12-31 14:33:30 +00:00
identity.go feat: Implement challenge-response authentication for P2P (P2P-CRIT-4) 2025-12-31 15:16:00 +00:00
identity_test.go feat: Implement challenge-response authentication for P2P (P2P-CRIT-4) 2025-12-31 15:16:00 +00:00
message.go feat: Rename XMRig references to Miner and add miner.cpp for new platform 2025-12-31 16:38:48 +00:00
message_test.go refactor: Add reliability fixes and architecture improvements 2025-12-31 12:43:46 +00:00
peer.go fix: Address 16 security findings from parallel code review 2025-12-31 17:44:49 +00:00
peer_test.go refactor: Remove unused code and fix nil dereference issues 2025-12-31 09:24:12 +00:00
protocol.go refactor: Add reliability fixes and architecture improvements 2025-12-31 12:43:46 +00:00
protocol_test.go refactor: Add reliability fixes and architecture improvements 2025-12-31 12:43:46 +00:00
transport.go fix: Address 16 security findings from parallel code review 2025-12-31 17:44:49 +00:00
worker.go fix: Address 16 security findings from parallel code review 2025-12-31 17:44:49 +00:00
worker_test.go refactor: Add reliability fixes and architecture improvements 2025-12-31 12:43:46 +00:00