senke/veza - Talas Project: Beyond coding. We Forge.

senke/veza

Fork 0

Commit graph

Author	SHA1	Message	Date
senke	2d3cb18b7c	fix(security): restrict CORS origins in stream-server - Change default ALLOWED_ORIGINS from wildcard () to localhost:5173 in veza-stream-server/docker-compose.yml - Also fixed local .env (untracked) to use specific dev domains Previously, the stream-server docker-compose defaulted to ALLOWED_ORIGINS= which would allow any origin to access the streaming API. Addresses audit finding: A05 (Security Misconfiguration) — HIGH. Co-authored-by: Cursor <cursoragent@cursor.com>	2026-02-11 22:42:04 +01:00
okinrev	a01d7a25ac	adding initial stream server (Rust)	2025-12-03 20:36:56 +01:00

Author

SHA1

Message

Date

senke

2d3cb18b7c

fix(security): restrict CORS origins in stream-server

- Change default ALLOWED_ORIGINS from wildcard (*) to localhost:5173
  in veza-stream-server/docker-compose.yml
- Also fixed local .env (untracked) to use specific dev domains

Previously, the stream-server docker-compose defaulted to ALLOWED_ORIGINS=*
which would allow any origin to access the streaming API.

Addresses audit finding: A05 (Security Misconfiguration) — HIGH.

Co-authored-by: Cursor <cursoragent@cursor.com>

2026-02-11 22:42:04 +01:00

okinrev

a01d7a25ac

adding initial stream server (Rust)

2025-12-03 20:36:56 +01:00

2 commits