cs_betty/cartsnitch-fork-test
1
0
Fork 0
forked from cartsnitch/cartsnitch
Code Pull Requests Activity
Files
fix/cors-security-headers
cartsnitch-fork-test/api
T
History
CartSnitch Engineer Bot 37798251be fix: restrict CORS to explicit methods and add security headers 
- Replace allow_methods=["*"] with explicit list: GET, POST, PUT, DELETE, PATCH, OPTIONS
- Replace allow_headers=["*"] with explicit list: Content-Type, Authorization, Accept, Origin, X-Requested-With
- Add X-Frame-Options, X-Content-Type-Options, Referrer-Policy, CSP nginx headers

Co-Authored-By: Paperclip <noreply@paperclip.ing>
2026-04-14 11:49:02 +00:00
..
.github/workflows
fix(api): revert auth/type regressions from standalone sync, keep email-in feature only
2026-04-03 09:40:39 +00:00
alembic
fix(api): create domain tables migration + fix create_all commit
2026-04-04 21:22:24 +00:00
src/cartsnitch_api
fix: restrict CORS to explicit methods and add security headers
2026-04-14 11:49:02 +00:00
tests
fix: remove hardcoded default secrets from API config
2026-04-14 11:11:23 +00:00
.dockerignore
feat: merge cartsnitch/api into api/ subdirectory
2026-03-28 02:24:02 +00:00
.gitignore
feat: merge cartsnitch/api into api/ subdirectory
2026-03-28 02:24:02 +00:00
alembic.ini
feat: merge cartsnitch/api into api/ subdirectory
2026-03-28 02:24:02 +00:00
CLAUDE.md
feat: merge cartsnitch/api into api/ subdirectory
2026-03-28 02:24:02 +00:00
Dockerfile
fix(api): make alembic migrations idempotent for fresh databases
2026-04-04 16:28:29 +00:00
pyproject.toml
feat: merge cartsnitch/api into api/ subdirectory
2026-03-28 02:24:02 +00:00
renovate.json
feat: merge cartsnitch/api into api/ subdirectory
2026-03-28 02:24:02 +00:00