duffyduck

0 Followers · 0 Following

• Joined on 2024-03-24

Repositories

2

Projects Packages Public Activity Starred Repositories

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-18 18:06:20 +00:00

48fe69cdab Security-Hardening Runde 17: JWT-TTL + Pentest-Marker-Detection

duffyduck pushed to main at Hacker-Software/imap-mail-filter-service 2026-05-18 17:55:04 +00:00

7e7ec67e58 safe move + sqlite WAL + log indexes + backup with logs

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-18 16:44:02 +00:00

373fab8e83 Security-Hardening Runde 16: KRITISCH – Update-Responses sanitisieren

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-18 13:57:35 +00:00

5ffd1a4d2c fix: prisma.ts baut DATABASE_URL aus DB_*-Vars (für docker exec)

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-18 13:54:06 +00:00

7b9a1981a7 fix: src/ ins Runtime-Image, damit prisma/*.ts-Wartungsskripte laufen

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-18 13:47:16 +00:00

3dda83314a Admin-Rescue: PW-Reset direkt in DB + Rate-Limit-Reset

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-18 13:20:31 +00:00

3e1fc3eab2 Mitarbeiter-Passwörter auf 25 Zeichen (BSI-Empfehlung)

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-18 13:10:06 +00:00

cf8c6c84c2 Security-Hardening Runde 15: Pentest Runde 12 Folge-Fixes

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-18 03:23:44 +00:00

d545790a69 Security-Hardening Runde 14: Factory-Reset, Settings-Whitelist, Prisma-Leak, XSS-Strip

duffyduck pushed to main at Hacker-Software/ARIA-AGENT 2026-05-17 21:02:14 +00:00

f5243b1abb fix(proxy): Idle-Watchdog statt Hard-Timeout fuer lange Agent-Sessions

duffyduck pushed to main at Hacker-Software/ARIA-AGENT 2026-05-17 19:56:52 +00:00

eb5c178139 fix(proxy): tool_result Events ueber generic 'message' statt nicht-existentem 'user'

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-17 19:48:10 +00:00

ef238b0145 Security-Hardening Runde 13: Live-Vollmacht-Konsistenz + embedded DTOs

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-17 07:33:50 +00:00

7b6b586033 fix: PortalPrivacy weiße Seite – Hooks-Reihenfolge nach early-return

duffyduck pushed to main at Hacker-Software/ARIA-AGENT 2026-05-17 07:23:24 +00:00

31b0bfaac1 feat(diagnostic): ARIA-Live (read-only Terminal-Mirror) + Not-Aus statt SSH-Tab

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-17 07:22:07 +00:00

3dea381983 fix: UUID-Hashes (Datenschutz-Link) nicht als truncated-ID blocken

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-17 06:52:19 +00:00

28c91759df Security-Hardening Runde 12: Information-Disclosure + Input-Validation

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-16 23:26:26 +00:00

c744eebfa3 Rate-Limit-Liste: bereits freigegebene IPs ausblenden

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-16 23:21:03 +00:00

956bc394b8 Rate-Limit-Sperren: Admin-UI zum Freigeben

duffyduck pushed to main at Hacker-Software/opencrm 2026-05-16 22:42:16 +00:00

69b9a35674 Security-Hardening Runde 11: Pentest Runde 7 (Portal-PW + Download-Tokens)

duffyduck pushed to main at Hacker-Software/ARIA-AGENT 2026-05-16 22:37:34 +00:00

1d3c45fdda fix(flux): Torch 2.5.1 — 2.4 crasht in transformers MoE custom_op-Registrierung