milliways-infosec/AikidoSec-safe-chain
7
0
Fork 0
mirror of https://github.com/AikidoSec/safe-chain.git synced 2026-05-26 20:20:49 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
966 commits 61 branches 106 tags 3.3 MiB
Commit graph

143 commits

Author SHA1 Message Date
Sander Declerck
527e3cd70a
Cleanup generated cert bundles 2026-03-19 11:08:38 +01:00
Sander Declerck
c02d0785fa
Fix tests for mitm registryproxy 2026-01-22 11:58:52 +01:00
Sander Declerck
6c814ff82f
Only allow wildcards for scoped packages (@scope/*) 2026-01-15 15:13:00 +01:00
Sander Declerck
884cb6e026
Allow trailing * for wildcard matching 2026-01-14 17:51:41 +01:00
Sander Declerck
6815b62019
Allow to exclude packages from the minimum package age 2026-01-14 17:41:23 +01:00
bitterpanda
c38f1bcb3e
Update packages/safe-chain/src/registryProxy/interceptors/npm/modifyNpmInfo.js 2026-01-13 19:33:00 +01:00
Reinier Criel
f678ff8dd1 Include package name in logging when minimum package age is not met 2026-01-13 10:09:59 -08:00
Sander Declerck
8bfbe1c77d
Merge pull request #232 from galargh/pip-custom-registries 
feat: allow python custom registries configuration
 2026-01-05 14:01:51 +01:00
galargh
39e2001d97 Merge remote-tracking branch 'origin/main' into pip-custom-registries 2025-12-22 13:27:04 +01:00
jassanw
3b6beb7f16 default to port 443 if port is null or empty 2025-12-19 18:49:58 -08:00
cherryace
bd19f477f7 Using port from req url when creating proxy request instead of hardcoded port 443 2025-12-19 17:57:33 -08:00
Sander Declerck
53c59e35e9
Merge pull request #258 from thomasbecker/fix/connection-timeout-issue-228 
fix: use true connection timeout instead of idle timeout
 2025-12-19 11:05:53 +01:00
Sander Declerck
e3aa2e15cb
Add npmjs.com to known registries too. 2025-12-18 17:59:15 +01:00
Sander Declerck
41cc24d1f5
Allow to configure custom/prinvate npm registries 2025-12-18 13:52:49 +01:00
Thomas Becker
878e549211 fix: use true connection timeout instead of idle timeout 
socket.setTimeout() is an idle timeout in Node.js (node docs)[https://nodejs.org/api/net.html#socketsettimeouttimeout-callback]
- it fires after N ms of inactivity, not N ms after the connection attempt. This
caused false timeout errors after successful data transfers when connections
went idle for longer than the timeout period.

Replace with JS setTimeout() that:
- Fires N ms after connection attempt starts
- Gets cleared on successful connect
- Return 504 Gateway Timeout (more accurate than 502)

Also adds proper close event handlers for socket cleanup.

Fixes #228
 2025-12-18 12:53:49 +01:00
galargh
833fa285aa feat: allow python custom registries configuration 2025-12-10 13:27:18 +01:00
Reinier Criel
0b28cb8fdb Merge branch 'main' into feature/combine-certs 2025-12-09 14:31:05 -08:00
Sander Declerck
40650e7912
Add tests for: not shortcircuiting timeout on imds endpoint. 2025-12-09 15:46:37 +01:00
Sander Declerck
afc68618c6
Only timeout for imds endpoints 2025-12-09 15:25:19 +01:00
Reinier Criel
5d1807a551 Remove unnecessary change 2025-12-08 17:30:55 -08:00
Reinier Criel
b84b410fd8 Fix linting issues 2025-12-08 15:36:37 -08:00
Reinier Criel
c51956b2db Fix tests 2025-12-08 15:23:44 -08:00
Reinier Criel
d9fe775d11 Fix some issues 2025-12-08 15:18:06 -08:00
Reinier Criel
2bc6d249de Some fixes 2025-12-08 13:38:38 -08:00
Reinier Criel
091e6ec5f8 Merge branch 'main' into feature/combine-certs 2025-12-08 09:42:10 -08:00
Sander Declerck
19aed47f02
Add typedef for MalwareBlockedEvent 2025-12-08 11:54:30 +01:00
Sander Declerck
4840b0f694
Fix undefined url in output logs 2025-12-08 11:50:57 +01:00
Reinier Criel
2e9bae41f3 Add unit tests 2025-12-05 15:40:14 -08:00
Reinier Criel
d0c5f35707 Check input file 2025-12-05 15:31:19 -08:00
Reinier Criel
8aa0615293 Some improvements 2025-12-05 15:13:12 -08:00
Reinier Criel
7086cfa277 Combine NODE_EXTRA_CA_CERTS with Safe Chain's certificate bundle 2025-12-05 14:26:23 -08:00
bitterpanda
15cc6ff7fe
Merge pull request #178 from AikidoSec/feature/poetry-2 
Add Poetry support
 2025-12-05 15:56:20 +01:00
Sander Declerck
e421414b8a
Don't repeatedly call isImdsEndpoint 2025-12-05 12:12:22 +01:00
Sander Declerck
57a0e88fa4
Add tests and clarifying comments 2025-12-05 12:09:19 +01:00
Reinier Criel
d018246292 More cleanup 2025-12-04 07:13:32 -08:00
Sander Declerck
a9ebec14f6
Remove 192.0.2.1 2025-12-04 15:21:47 +01:00
Sander Declerck
47ea989bbd
Reduce connect timeout for tunnel for known instance metadata hosts 2025-12-04 15:20:47 +01:00
Reinier Criel
297a264fe0 Adapt per comments 2025-12-03 15:40:02 -08:00
Reinier Criel
11bd3a2b91 Some more improvements 2025-12-03 09:54:25 -08:00
Reinier Criel
cfedb6df99 Some comment updates 2025-12-03 09:20:54 -08:00
Reinier Criel
c1a12c9573 Merge branch 'main' into feature/poetry-2 2025-12-03 07:41:52 -08:00
Sander Declerck
2085aad005
Improve logs for MITM handler 2025-12-03 13:24:04 +01:00
Reinier Criel
a6423763e7 More package names 2025-11-30 20:30:35 -08:00
Reinier Criel
5a7a9dd03e Fix test to account for normalization 2025-11-30 20:28:06 -08:00
Reinier Criel
c7edefd247 Fix issue during manual testing 2025-11-30 20:25:13 -08:00
Reinier Criel
26157cf5a7 Fix type check 2025-11-27 14:02:37 -08:00
Reinier Criel
d863cc6920 Another iteration 2025-11-27 14:00:34 -08:00
Reinier Criel
7ddeb9025b Fix certUtils 2025-11-27 13:34:34 -08:00
Reinier Criel
2810a87cd0 Another try 2025-11-27 13:25:53 -08:00
Reinier Criel
0106767c35 Another try 2025-11-27 13:23:03 -08:00