molecule-core

History

molecule-ai[bot] fde90efde5 fix(security): cap discord error response body read at 4096 bytes Unbounded io.ReadAll on the Discord webhook error response body was a LOW OOM risk: a malicious gateway or misconfigured proxy could return a multi-MB body and exhaust agent memory. Cap with io.LimitReader(resp.Body, 4096) — error messages are always short; any extra content is irrelevant noise. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>		2026-04-17 10:46:09 +00:00
..
cmd/server	feat(platform): wire github-app-auth plugin for per-installation tokens	2026-04-16 12:52:20 -07:00
internal	fix(security): cap discord error response body read at 4096 bytes	2026-04-17 10:46:09 +00:00
migrations	Merge pull request #646 from Molecule-AI/fix/migration-025-fk-type	2026-04-17 06:46:08 +00:00
pkg/provisionhook	fix(github): refresh installation token when TTL < 10 min (#547 ) (#567 )	2026-04-17 00:47:03 +00:00
Dockerfile	fix: address all code review findings + remove exposed secrets	2026-04-16 05:05:49 -07:00
Dockerfile.tenant	fix: address all code review findings + remove exposed secrets	2026-04-16 05:05:49 -07:00
entrypoint-tenant.sh	feat(platform): auto-detect SaaS tenant → control plane provisioner	2026-04-16 11:50:52 -07:00
go.mod	feat(platform): wire github-app-auth plugin for per-installation tokens	2026-04-16 12:52:20 -07:00
go.sum	feat(platform): wire github-app-auth plugin for per-installation tokens	2026-04-16 12:52:20 -07:00