core/php-uptelligence
8
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
php-uptelligence/Models/AssetVersion.php
Snider 6f71edd14e fix(security): address P2 security items and migration mismatch 
P2-058: Migration Mismatch
- Created new migration for vendor tracking tables (000004)
- Added explicit $table property to all models with uptelligence_ prefix
- Clarified dual-purpose nature (uptime monitoring + vendor tracking)
- Added appropriate indexes for common query patterns

P2-059: Webhook Signature Timing Attack Audit
- Verified all signature verification uses hash_equals()
- Added comprehensive tests in WebhookSignatureVerificationTest.php
- Tests cover all providers, grace periods, edge cases

P2-060: API Key Exposure in Logs
- Added redactSensitiveData() to AIAnalyzerService
- Added redactSensitiveData() to IssueGeneratorService
- Added redactSensitiveData() to VendorUpdateCheckerService
- Redacts API keys, tokens, bearer tokens, auth headers

P2-061: Missing Webhook Payload Validation
- Added MAX_PAYLOAD_SIZE (1MB) and MAX_JSON_DEPTH (32) limits
- Added validatePayloadSize() for DoS protection
- Added parseAndValidateJson() with depth limit
- Added validatePayloadStructure() for provider-specific validation
- Added hasExcessiveArraySize() to prevent memory exhaustion
- Added tests in WebhookPayloadValidationTest.php

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-29 13:29:26 +00:00

54 lines
1.1 KiB
PHP
Raw Blame History

<?php
declare(strict_types=1);
namespace Core\Mod\Uptelligence\Models;
use Illuminate\Database\Eloquent\Factories\HasFactory;
use Illuminate\Database\Eloquent\Model;
use Illuminate\Database\Eloquent\Relations\BelongsTo;
/**
* Asset Version - tracks version history for assets.
*
* Stores changelog, breaking changes, and download information.
*/
class AssetVersion extends Model
{
use HasFactory;
/**
* The table associated with the model.
*/
protected $table = 'uptelligence_asset_versions';
protected $fillable = [
'asset_id',
'version',
'changelog',
'breaking_changes',
'download_url',
'local_path',
'released_at',
];
protected $casts = [
'breaking_changes' => 'array',
'released_at' => 'datetime',
];
public function asset(): BelongsTo
{
return $this->belongsTo(Asset::class);
}
public function hasBreakingChanges(): bool
{
return ! empty($this->breaking_changes);
}
public function isStored(): bool
{
return $this->local_path && file_exists($this->local_path);
}
}
Reference in a new issue View git blame Copy permalink