johan
/
clavitor
1
0
Fork 0
Code Issues Pull Requests 3 Packages Projects Releases Wiki Activity
Imported from bare git on Zurich
44 Commits 9 Branches 0 Tags 389 MiB
Go 48.4%
HTML 20.5%
JavaScript 12%
C 9%
CSS 7%
Other 3.1%
Go to file
James fa7541bd4d Security review: Replication functionality (Commercial Only) 
Comprehensive security audit of event-driven replication.

CRITICAL issues (5):
1. Inter-POP authentication not implemented (stub TODO)
2. Backup-side request authentication missing
3. Backup mode uses env var (should be config-only)
4. No replay attack protection (need nonces + signatures)
5. Weak token validation (only checks existence, not entropy)

HIGH issues (4):
6. HTTPS cert validation concern
7. No audit logging of replication attempts
8. Cascade replication not prevented
9. Information disclosure in error messages

Status: NOT PRODUCTION READY - security TODO stubs present
 		2026-04-02 01:02:36 -04:00
clavis Security review: Replication functionality (Commercial Only) 2026-04-02 01:02:36 -04:00
clavitor.ai Replication v2: Active-Passive with Async Sync (Commercial Only) 2026-04-02 00:50:20 -04:00
design-system chore: auto-commit uncommitted changes 2026-03-24 06:02:53 -04:00
docs docs: add Futurepedia listing content for clavitor.ai (TASK-074) 2026-03-29 07:36:12 -04:00
marketing chore: auto-commit uncommitted changes 2026-03-24 06:02:53 -04:00
operations Replication v2: Active-Passive with Async Sync (Commercial Only) 2026-04-02 00:50:20 -04:00
.DS_Store chore: auto-commit uncommitted changes 2026-03-27 00:01:22 -04:00
._.DS_Store chore: auto-commit uncommitted changes 2026-03-24 06:02:53 -04:00
CLAUDE.md chore: auto-commit uncommitted changes 2026-03-26 06:03:15 -04:00