Merged
Conversation
### Added - Admin email notifications for new user signups and API token requests, notifying all admins listed in `XRAYRADAR_ADMIN_EMAILS`. - New endpoint `/auth/signup-status` to check if new signups are allowed based on a daily cap (`XRAYRADAR_MAX_SIGNUPS_PER_DAY`). - Rate limiting for signups to mitigate brute-force attacks, with a default limit of 10 signups per hour per IP. ### Changed - Updated version to 0.16.0 in relevant files. - Enhanced architecture documentation to include new admin notification features and signup rate limiting details.
…localhost ### Changed - Renamed `_safe_logo_url` to `_logo_png_url` and updated the logo URL to point to `xray-logo.png`. - Introduced a text-based logo fallback for cases where the base URL is empty or points to localhost. - Updated tests to reflect changes in logo handling and ensure proper rendering of emails without external images. - Added `xray-logo.png` to static file serving in the web router.
### Changed - Updated references from `xrayradar-server` to `XrayRadar` across various files for consistent branding. - Added `.env.example` to `.gitignore` to prevent accidental exposure of environment configuration. - Updated `CHANGELOG.md` to include new version 0.17.0 with changes related to email templates and branding. - Enhanced README and documentation to reflect the new project name and structure. - Updated security audit scripts and related documentation to align with the new branding.
### Changed - Updated project version to 0.17.0 in `pyproject.toml`, `main.py`, and web package files. - Added `requests` dependency with version constraint `>=2.33.0,<3.0` in `pyproject.toml` and `uv.lock`. - Updated `requests` version to 2.33.0 in `uv.lock` to align with the new dependency requirement.
### Changed - Introduced a new section in the README for the user dashboard, detailing the signed-in experience for project management and issue triaging. - Added multiple screenshots showcasing the user dashboard, project list, project issues view, and team access configuration. - Updated the description of additional assets in the documentation.
### Changed - Added `requests>=2.33.0,<3.0` dependency in `CHANGELOG.md` and `pyproject.toml` for CVE-2026-25645. - Updated `pygments` to be installed from a specific git commit to address CVE-2026-4539, with a note to revert to PyPI once a patched version is available. - Enhanced README and landing page descriptions to clarify the open-source nature of the project and its SDKs. - Added a new section in the README for Client SDKs, detailing available libraries and their sources. - Updated various meta descriptions in `index.html` to reflect the project's branding and offerings more accurately.
### Changed - Updated `pip-audit` integration in CI and local scripts to include `--ignore-vuln CVE-2026-4539` due to Pygments being installed from git while awaiting a patched PyPI release. - Adjusted documentation in `SECURITY.md` and `DEVELOPERS.md` to reflect the new auditing process and the handling of Pygments. - Updated `CHANGELOG.md` to document the changes related to security auditing and dependency updates. - Added new dependencies in `pyproject.toml` and `uv.lock`, including `pip-audit` and `boolean-py`, along with their respective versions.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.