php-framework/packages/core-php
Snider edb34e38d5 fix(privacy): hash IP addresses in referral tracking for GDPR compliance
- ReferralController now stores ip_hash (SHA-256) instead of raw IP in session
- Cookie excludes IP entirely (only stores provider/model/timestamp)
- PlantTreeForAgentReferral uses hashed IPs in tree metadata
- Updated test to verify hashed IP storage

Raw IPs should not be stored in cookies or persisted unnecessarily.
Session-only hashed IP is sufficient for fraud detection.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-26 00:39:07 +00:00
..
config Fix critical and high severity issues from code review 2026-01-21 20:20:14 +00:00
src fix(privacy): hash IP addresses in referral tracking for GDPR compliance 2026-01-26 00:39:07 +00:00
stubs Add core components and initial setup for the PHP framework 2026-01-21 14:11:45 +00:00
tests Fix critical and high severity issues from code review 2026-01-21 20:20:14 +00:00
composer.json refactor: consolidate migrations and clean up core packages 2026-01-25 22:28:58 +00:00
phpunit.xml Add core components and initial setup for the PHP framework 2026-01-21 14:11:45 +00:00
TODO.md refactor: consolidate migrations and clean up core packages 2026-01-25 22:28:58 +00:00