Gandalf/sofarr
1
0
Fork 0
Code Issues 1 Pull Requests Actions 1 Packages Projects Releases 15 Wiki Activity
86 Commits 17 Branches 15 Tags
bdfb042527884e24b9fdc350f0f4ee7b6e887a1a
Commit Graph

10 Commits

Author SHA1 Message Date
Gronod
b608fa0337 fix(security #12): add helmet security response headers 
Adds X-DNS-Prefetch-Control, X-Frame-Options, X-Content-Type-Options,
Referrer-Policy, X-XSS-Protection, HSTS (in prod) and others.
CSP disabled for now as the SPA uses inline scripts/styles; a
nonce/hash-based policy is a future hardening step.
 2026-05-16 16:23:47 +01:00
Gronod
1f41114482 fix(security #11): remove unused node-cron dependency 
node-cron was listed in dependencies but never imported anywhere in
the codebase. Removed via npm uninstall.
 2026-05-16 16:22:36 +01:00
Gronod
1eadb30481 fix(security #6): add rate limiting to POST /api/auth/login 
Uses express-rate-limit@6 (pinned for Node 12 dev compat; Node 18
in prod container is unaffected). Limits each IP to 10 attempts per
15-minute window. Returns 429 with a safe error message on breach.
 2026-05-16 16:18:34 +01:00
Gronod
0ddb7a407e chore: bump version to 0.1.4
All checks were successful
Build and Push Docker Image / build (push) Successful in 30s
Details
2026-05-16 14:58:17 +01:00
Gronod
fdecdd979b chore: bump version to 0.1.3
All checks were successful
Build and Push Docker Image / build (push) Successful in 25s
Details
2026-05-16 00:32:16 +01:00
Gronod
faaca310e9 chore: bump version to 0.1.2
All checks were successful
Build and Push Docker Image / build (push) Successful in 4m20s
Details
Create Release / release (push) Successful in 1m47s
Details
2026-05-15 20:48:40 +01:00
Gronod
bd9868b4e1 chore: bump version to 0.1.1
All checks were successful
Build and Push Docker Image / build (push) Successful in 2m8s
Details
Create Release / release (push) Successful in 1m29s
Details
2026-05-15 17:30:46 +01:00
Gronod
d90908c1da chore: set version to 0.1.0 2026-05-15 15:10:00 +01:00
Gronod
f500f4db3b feat: fix download-to-user matching, add cover art to downloads 
- Fix seriesMap key (use Sonarr internal id, not tvdbId)
- Fix Sonarr tag resolution (use tag map like Radarr)
- Use sourceTitle for history record matching
- Fall back to embedded movie/series objects when API timeouts
- Add includeMovie/includeSeries params to queue/history API calls
- Add coverArt field to all download responses (TMDB poster URLs)
- Add cover art display to frontend download cards
- Fix user-summary route to use instance config and tag maps
 2026-05-15 14:54:21 +01:00
Gronod
5d04d2796b Initial commit: Media Download Dashboard with SABnzbd, Sonarr, Radarr, and Emby integration 2026-05-15 10:36:29 +01:00