alkdev/reverse-proxy
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
54f1725173655e82d04806e181b63b7dd67b92ef
reverse-proxy/tasks/fix
History
glm-5.1 54f1725173 Decompose security review #003 findings into 17 fix tasks and 1 review task 
Address 4 critical, 8 warning, and 5 suggestion findings from the
security and bug review by creating atomic, dependency-ordered tasks:

Critical fixes (C1-C4): rate limiter IP source (ADR-025), InFlightCounter
increment + drain interval, connector timeout ceiling (ADR-026), JSON format
without log file.

Validation tightening (W1, W2): upstream host validation, ACME contact email
validation.

Robustness (W3, W4, W5, W12): upstream URI error handling (502 not silent
drop), admin socket resource limits (ADR-027), TlsMode wildcard mismatch,
http_port u32→u16.

Code quality (W6, W10, W11, S1, S3, W8/W9): config type consolidation,
TokenBucket field visibility, reload_mutex #[cfg(test)], dead code removal,
root cert count logging, misleading test names.

Test coverage (S10): rate limiter ConnectInfo tests (depends on C1 fix).

Review: post-security-fix-review checkpoint covering all critical fixes
and sensitive config consolidation path.
2026-06-12 13:42:37 +00:00
..
access-logging.md
Mark Batch 2 tasks as completed (remove-health, access-logging, acme-contact)
2026-06-12 04:46:34 +00:00
acme-contact-and-challenge.md
Mark Batch 2 tasks as completed (remove-health, access-logging, acme-contact)
2026-06-12 04:46:34 +00:00
acme-contact-validation.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
add-code-comments.md
Mark fix/add-code-comments as completed
2026-06-12 05:05:36 +00:00
admin-socket-reload-mutex-visibility.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
admin-socket-resource-limits.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
clean-dead-code.md
Mark fix/clean-dead-code as completed
2026-06-12 05:13:10 +00:00
config-reload-static-drift.md
Mark fix/config-reload-static-drift as completed
2026-06-12 04:36:34 +00:00
connect-timeout.md
Mark fix/connect-timeout as completed
2026-06-12 05:02:41 +00:00
connector-timeout-ceiling.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
consolidate-config-types.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
fragile-error-detection.md
Mark fix/fragile-error-detection as completed
2026-06-12 04:25:49 +00:00
graceful-shutdown.md
Mark fix/graceful-shutdown as completed
2026-06-12 05:00:28 +00:00
http-port-type-u16.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
http-port-validation.md
Mark fix/http-port-validation as completed
2026-06-12 04:29:02 +00:00
inflight-counter-increment.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
integration-test-toml.md
Mark fix/integration-test-toml as completed
2026-06-12 04:23:27 +00:00
json-format-without-logfile.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
log-root-cert-count.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
logging-test-global-subscriber.md
Mark fix/logging-test-global-subscriber as completed
2026-06-12 04:29:48 +00:00
normalize-host-ipv6.md
Mark fix/normalize-host-ipv6 as completed
2026-06-12 04:41:52 +00:00
rate-limiter-connectinfo-tests.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
rate-limiter-ip-source.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
remove-dead-code-remnants.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
remove-health-and-hardcode-https.md
Mark Batch 2 tasks as completed (remove-health, access-logging, acme-contact)
2026-06-12 04:46:34 +00:00
rename-misleading-test.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
request-timeout-scope.md
Mark fix/request-timeout-scope as completed
2026-06-12 04:47:15 +00:00
tls-mode-wildcard-mismatch.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
token-bucket-field-visibility.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
token-bucket-nanosecond.md
Mark fix/token-bucket-nanosecond as completed
2026-06-12 04:22:35 +00:00
upstream-host-validation.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00
upstream-uri-error-handling.md
Decompose security review #003 findings into 17 fix tasks and 1 review task
2026-06-12 13:42:37 +00:00