ico
/
pingql
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
249 Commits 1 Branch 0 Tags 3.2 MiB
Commit Graph

8 Commits

Author SHA1 Message Date
nate 425bfbfc39 perf: optimize monitor runner, fix SSE leak, deduplicate shared utils 2026-03-18 18:44:08 +04:00
nate 5a0cf5033b fix: harden auth, SSRF, query engine, and cookie security 2026-03-18 11:37:33 +04:00
M1 6bdd76b4f0 security: auth redesign, SSRF protection, CORS lockdown, and 13 other fixes 
- Auth (#2/#3): UUID PK, 256-bit keys, SHA-256 lookup + bcrypt hash
- SSRF (#1): validate URLs, block private IPs, cloud metadata endpoints
- CORS (#4): lock to pingql.com origins, not wildcard
- SSE limit (#6): 10 connections per monitor max
- ReDoS (#7): cap $regex patterns at 200 chars
- Monitor limit (#8): 100 per account default
- Cookie env config (#9): secure/domain from env vars
- Bearer parsing (#10): case-insensitive RFC 6750
- Pings retention (#11): 90-day pruner, hourly interval
- monitors.enabled index (#12): partial index for /internal/due
- Runner locking (#14): locked_until for horizontal scale safety
- COALESCE nullable bug (#17): dynamic PATCH with explicit undefined checks
- MONITOR_TOKEN null guard (#18): startup validation + middleware hardening
- reset-key cookie fix (#16): sets new cookie in response
 2026-03-17 06:10:10 +04:00
M1 27c9044a8b feat: add $consider (UP/DOWN) toggle to query builder and evaluators 2026-03-16 13:56:36 +04:00
M1 5328471229 Revert "feat: grouped query builder with $upIf/$downIf condition groups" 
This reverts commit 99b59070a2.
 2026-03-16 13:53:27 +04:00
M1 99b59070a2 feat: grouped query builder with $upIf/$downIf condition groups 2026-03-16 13:52:06 +04:00
M1 fe7a0bf19b refactor: nested $json/$select syntax, migrate stored queries 2026-03-16 13:14:22 +04:00
M1 500132ba05 feat: dashboard, visual query builder, expanded query language, cert expiry support 2026-03-16 12:26:17 +04:00