milliways-infosec/AikidoSec-safe-chain
7
0
Fork 0
mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 12:10:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
738 commits 61 branches 106 tags 3.3 MiB
Commit graph

738 commits

This branch
This branch
All branches
Author SHA1 Message Date
Sander Declerck
fb3a8582a2
Merge pull request #158 from AikidoSec/prevent-packagemanager-from-caching-modified-response 
Prevent package manager from caching modified response
 2025-11-24 18:37:44 +01:00
Sander Declerck
c695d0cb5d
Add explaining comment 2025-11-24 18:29:35 +01:00
Sander Declerck
5629b640cc
Prevent package manager from caching modified response 2025-11-24 18:16:09 +01:00
Sander Declerck
f6400e9822
Merge pull request #151 from AikidoSec/package-min-age 
npm: Minimum package age
 2025-11-24 16:14:02 +01:00
Sander Declerck
900bf8e6ea
Parse npm registry's timestamps. 2025-11-24 15:52:17 +01:00
Sander Declerck
ea75179143
Update readme to reflect our support for node 16+ and delete broken screenshot. 2025-11-24 15:31:30 +01:00
Sander Declerck
0a8dacda24
Add small comment on why we're removing the host header before forwarding. 2025-11-24 15:31:30 +01:00
Sander Declerck
faae0488c8
Undo small refactor 2025-11-24 15:31:30 +01:00
Sander Declerck
44ee58aa9b
Let modifyNpmInfoRequestHeaders return the header collection as well. 2025-11-24 15:31:30 +01:00
Sander Declerck
5834229427
Add comment in interceptorBuilder.js to clarify which api is for setup, and which api is used by the proxy. 2025-11-24 15:31:30 +01:00
Sander Declerck
9a1092199d
Move getHeaderValueAsString to separate utils file 2025-11-24 15:31:30 +01:00
Sander Declerck
78c8da6fae
Restore old "how it works" text in Readme.md 2025-11-24 15:31:30 +01:00
Sander Declerck
e02e36cfea
Apply suggestion from @bitterpanda63 
Adds comment about "utf8" encoding of json response.

Co-authored-by: bitterpanda <bitterpanda@proton.me>
 2025-11-24 14:49:40 +01:00
Sander Declerck
f7de81645c
Fix cliArgument.js merge issue 2025-11-24 14:17:47 +01:00
Sander Declerck
a04bea26da
Merge branch 'main' into package-min-age 2025-11-24 14:15:55 +01:00
Sander Declerck
f34fb3576d
Merge pull request #152 from AikidoSec/pypi-feature-flag 
Add feature flag in setup for python support.
 2025-11-24 10:00:23 +01:00
Reinier Criel
a0dc6536b1
Merge pull request #147 from AikidoSec/feature/cert-beta 
Create INI file for pip to make sure behavior is predictable
 2025-11-21 13:27:57 -08:00
Reinier Criel
72bf44cb6d Fix linting issue 2025-11-21 10:31:57 -08:00
Reinier Criel
ab1aa0dce9 Little cleanup 2025-11-21 09:58:43 -08:00
Reinier Criel
0a0ac85542 Adapt per review 2025-11-21 09:41:07 -08:00
bitterpanda
f030b16adf
rm obvious comments 2025-11-21 13:33:33 +01:00
Reinier Criel
0e5b9b23f1 Fix tests 2025-11-17 10:18:47 -08:00
Reinier Criel
87fcb7239a Adapt per review 2025-11-17 10:03:38 -08:00
Sander Declerck
41998dff95
Describe safe-chain setup --include-python in documentation. 2025-11-14 14:18:12 +01:00
Sander Declerck
c6bcd6f646
Add feature flag in setup for python support. 2025-11-14 14:12:44 +01:00
Sander Declerck
59963a6f34
Make warning in readme less prominent 2025-11-14 11:40:29 +01:00
Sander Declerck
ddf867bf53
Fix readme indentation 2025-11-14 10:41:53 +01:00
Sander Declerck
de27856640
Merge branch 'main' into package-min-age 2025-11-14 10:36:34 +01:00
bitterpanda
4b5bef8d6a
Clarify support for ecosystems and pip status 
Updated README to clarify that Aikido Safe Chain currently supports only JavaScript ecosystems and marks pip and pip3 as beta.
 2025-11-14 10:35:57 +01:00
Sander Declerck
157725a25a
Cleanup 2025-11-14 10:29:09 +01:00
Sander Declerck
290a630526
Better header check + remove last-modified header 2025-11-14 10:23:06 +01:00
Sander Declerck
40523f29dd
Document minimum package age in README.md 2025-11-14 09:30:58 +01:00
bitterpanda
86fb69a931
Clarify support for ecosystems and pip status 
Updated README to clarify that Aikido Safe Chain currently supports only JavaScript ecosystems and marks pip and pip3 as beta.
 2025-11-14 09:30:58 +01:00
Sander Declerck
06b287d4d4
Use correct header collection for forwarding 2025-11-14 09:08:27 +01:00
Reinier Criel
7039961d4c Bugfix 2025-11-13 15:50:37 -08:00
Reinier Criel
0b3cc1c175 Some more cleanup 2025-11-13 15:50:14 -08:00
Reinier Criel
474d91d29a Indentation 2025-11-13 13:32:49 -08:00
Reinier Criel
f4ff18304a Fix imports 2025-11-13 13:20:11 -08:00
Reinier Criel
4ee18973de Fix unit test 2025-11-13 12:48:04 -08:00
Reinier Criel
a0e24b1722 Update comments 2025-11-13 11:21:53 -08:00
Reinier Criel
84b8c2f2cf Merge branch 'main' into feature/cert-beta 2025-11-13 11:15:33 -08:00
Reinier Criel
61c9f1a1ef Merge config file if it exists 2025-11-13 11:14:45 -08:00
Sander Declerck
59fa76a42f
Notify the user when we modified the package versions 2025-11-13 17:10:22 +01:00
Sander Declerck
dc6f37b3ec
Remove etag from response when modifying headers 2025-11-13 16:27:42 +01:00
Sander Declerck
752504dcc8
Add --safe-chain-skip-minimum-package-age cli flag 2025-11-13 16:04:24 +01:00
Sander Declerck
f64ee3bccf
Add skipMinimumPackageAge. 2025-11-13 15:14:44 +01:00
Sander Declerck
a9a4d76705
Fix type error in modifyNpmInfo.js 2025-11-13 15:08:36 +01:00
Sander Declerck
6b208a8730
Merge pull request #150 from AikidoSec/bitterpanda63-patch-1-1 
Mark python support as beta for now
 2025-11-13 14:53:45 +01:00
Sander Declerck
6ae93686b7
Finish npm info modification. 2025-11-13 14:51:57 +01:00
Reinier Criel
fbd11c6d44 Update 2025-11-12 14:01:06 -08:00