klevze
aaaf59f178
Merge branch 'harden/quarantine-provisioning' into master
CI / build (8.0) (push) Has been cancelled
CI / build (8.1) (push) Has been cancelled
CI / build (8.2) (push) Has been cancelled
CI / build (8.3) (push) Has been cancelled
CI / build (8.4) (push) Has been cancelled
CI / PHP Lint & Basic Checks (matrix) (8.0) (push) Has been cancelled
CI / PHP Lint & Basic Checks (matrix) (8.1) (push) Has been cancelled
CI / PHP Lint & Basic Checks (matrix) (8.2) (push) Has been cancelled
2026-02-12 14:51:57 +01:00
klevze
7c8bccc911
Rename project to UploadShield: update runtime, configs, docs, and provisioning; run lint/tests
2026-02-12 14:48:07 +01:00
klevze
d1310e0844
chore(docs): update docs and script comments to use UploadShield name
2026-02-12 10:47:32 +01:00
klevze
0b32b9c96c
chore: rename project to UploadShield (composer + README)
2026-02-12 10:24:23 +01:00
klevze
d6a19929bf
docs: add CONFIG_REFERENCE.md and CONTRIBUTING.md; update INTEGRATION and README
2026-02-12 10:18:32 +01:00
klevze
1768f61da1
Harden quarantine provisioning; enforce strict permissions and update Ansible and docs
2026-02-12 07:47:48 +01:00
klevze
037b176892
fix(scanner): avoid SVG/XML false positives; add allowlist and .gitignore
...
Relax payload scanner for XML/SVG by passing content-type into checks
Skip JS-style eval() detection when content-type is XML/SVG
Pass request Content-Type through sniff_file_for_php_payload() and raw-body checks
Add common XML/SVG content-types to allowlist.json
Add repository .gitignore (ignore logs, quarantine/, state/, env, vendor, IDE files)
2026-02-07 15:11:15 +01:00
klevze