fix(security): improve TeapotController header sanitization #21

Merged
Charon merged 1 commit from security/improve-teapot-sanitization into main 2026-02-20 12:10:59 +00:00

1 commit

Author SHA1 Message Date
163d34aacf fix(security): improve TeapotController header sanitization (#13)
Some checks failed
CI / PHP 8.2 (pull_request) Failing after 1s
CI / PHP 8.4 (pull_request) Failing after 1s
CI / PHP 8.3 (pull_request) Failing after 1s
CI / Assets (pull_request) Failing after 1s
Switch header storage from blacklist to whitelist approach, add private
IP detection for auto-block bypass, and validate referer URLs.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-20 11:50:04 +00:00