CodePress

E.Noorlander/CodePress

Fork 0

Commit Graph

Author	SHA1	Message	Date
Edwin Noorlander	bfd6989060	Add comprehensive security hardening and penetration testing suite - Fix XSS vulnerability in language parameter with whitelist validation - Add input sanitization for page parameters (HTML escaping, path traversal protection) - Implement security headers (CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy) - Block PHP execution in content directory via router protection - Add parameter length limits (255 chars max) - Remove X-Powered-By header to prevent version disclosure - Include automated penetration test suite (40+ security tests) - Add comprehensive security documentation and test reports Security improvements protect against XSS, path traversal, code injection, command injection, template injection, and information disclosure attacks. All 30 penetration tests pass with 100/100 security score.	2025-11-24 16:03:22 +01:00
Edwin Noorlander	a86809c243	Refactor: Replace sidebar with horizontal navigation bar - Remove sidebar and toggle functionality - Add Bootstrap navbar with dropdown menus - Move navigation to top between header and content - Update menu rendering for Bootstrap dropdowns - Clean up unused files (header.mustache, sidebar.mustache, sidebar.js) - Add guide link with book icon in footer - Simplify layout structure - Remove duplicate code and fix syntax errors - Add .gitignore for node_modules and other temp files	2025-11-21 14:23:41 +01:00

Author

SHA1

Message

Date

Edwin Noorlander

bfd6989060

Add comprehensive security hardening and penetration testing suite

- Fix XSS vulnerability in language parameter with whitelist validation
- Add input sanitization for page parameters (HTML escaping, path traversal protection)
- Implement security headers (CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy)
- Block PHP execution in content directory via router protection
- Add parameter length limits (255 chars max)
- Remove X-Powered-By header to prevent version disclosure
- Include automated penetration test suite (40+ security tests)
- Add comprehensive security documentation and test reports

Security improvements protect against XSS, path traversal, code injection,
command injection, template injection, and information disclosure attacks.
All 30 penetration tests pass with 100/100 security score.

2025-11-24 16:03:22 +01:00

Edwin Noorlander

a86809c243

Refactor: Replace sidebar with horizontal navigation bar

- Remove sidebar and toggle functionality
- Add Bootstrap navbar with dropdown menus
- Move navigation to top between header and content
- Update menu rendering for Bootstrap dropdowns
- Clean up unused files (header.mustache, sidebar.mustache, sidebar.js)
- Add guide link with book icon in footer
- Simplify layout structure
- Remove duplicate code and fix syntax errors
- Add .gitignore for node_modules and other temp files

2025-11-21 14:23:41 +01:00

2 Commits