itepechi/akkoma
1
0
Fork 0
Code Issues Pull requests Releases Activity
akkoma/test
History
Oneric 70fe99d196 Prevent key-actor mapping poisoning and key take overs 
Previously there were mainly two attack vectors:
 - for raw keys the owner <-> key mapping wasn't verified at all
 - keys were retrieved with refetching allowed
   and only the top-level ID was sanitised while
   usually keys are but a subobject

This reintroduces public key checks in the user actor,
previously removed in 9728e2f8f7
but now adapted to account for the new mapping mechanism.
2025-02-14 22:10:25 +01:00
..
config remove default emoji file 2022-08-11 19:05:41 +01:00
credo/check/consistency giant massive dep upgrade and dialyxir-found error emporium (#371) 2022-12-14 12:38:48 +00:00
fixtures Prevent key-actor mapping poisoning and key take overs 2025-02-14 22:10:25 +01:00
instance_static URL encode remote emoji pack names (#362) 2023-01-15 18:14:04 +00:00
mix Merge remote-tracking branch 'oneric/varfixes' into develop 2024-10-30 15:15:00 +00:00
pleroma Prevent key-actor mapping poisoning and key take overs 2025-02-14 22:10:25 +01:00
support Prevent key-actor mapping poisoning and key take overs 2025-02-14 22:10:25 +01:00
test_helper.exs Hide logs during test unless a test fails 2024-06-27 18:29:45 +02:00