Kyle rohskiddo
0 Followers · 0 Following
  • Joined on 2025-04-10
Repositories
8
 Projects Packages Public Activity Starred Repositories
rohskiddo pushed to feature/registration-profile-fields at rohskiddo/UMBRA 2026-03-02 11:10:44 +00:00
02efe04fc4 Fix QA critical/warning findings on profile feature
rohskiddo created branch feature/registration-profile-fields in rohskiddo/UMBRA 2026-03-02 11:04:21 +00:00
rohskiddo pushed to feature/registration-profile-fields at rohskiddo/UMBRA 2026-03-02 11:04:21 +00:00
45f3788fb0 Add preferred name + email to registration, profile card to settings
rohskiddo pushed to main at rohskiddo/UMBRA 2026-03-02 10:17:39 +00:00
3e39c709b7 Merge security/pentest-remediation-20260302: production hardening + pentest remediation
dadd19bc30 Auto-derive CORS_ORIGINS from UMBRA_URL in production
cad1ca00c7 Fix SECRET_KEY sentinel in backend/.env.example
c986028f51 Multi-stage Dockerfile: remove gcc/psql from runtime image (PT-11)
ab7e4a7c7e Backend pentest remediation (PT-03/05/06/07)
Compare 9 commits »
rohskiddo pushed to security/pentest-remediation-20260302 at rohskiddo/UMBRA 2026-03-02 09:54:14 +00:00
dadd19bc30 Auto-derive CORS_ORIGINS from UMBRA_URL in production
rohskiddo pushed to security/pentest-remediation-20260302 at rohskiddo/UMBRA 2026-03-02 09:49:23 +00:00
cad1ca00c7 Fix SECRET_KEY sentinel in backend/.env.example
rohskiddo created branch security/pentest-remediation-20260302 in rohskiddo/UMBRA 2026-03-02 09:44:03 +00:00
rohskiddo pushed to security/pentest-remediation-20260302 at rohskiddo/UMBRA 2026-03-02 09:44:03 +00:00
c986028f51 Multi-stage Dockerfile: remove gcc/psql from runtime image (PT-11)
ab7e4a7c7e Backend pentest remediation (PT-03/05/06/07)
7721bf5cec Harden nginx: real client IP, HSTS, custom dotfile 404 (PT-01/02/04)
Compare 3 commits »
rohskiddo pushed to feature/cookie-secure-auto-derive at rohskiddo/UMBRA 2026-03-02 09:21:51 +00:00
ccfc5e151a Fix SECRET_KEY sentinel mismatch in .env.example (W-01)
rohskiddo pushed to feature/cookie-secure-auto-derive at rohskiddo/UMBRA 2026-03-02 09:18:11 +00:00
fee454fc33 Fix 503s behind reverse proxy: add uvicorn --proxy-headers
rohskiddo created branch feature/cookie-secure-auto-derive in rohskiddo/UMBRA 2026-03-02 07:40:31 +00:00
rohskiddo pushed to feature/cookie-secure-auto-derive at rohskiddo/UMBRA 2026-03-02 07:40:31 +00:00
0c7d057654 Auto-derive COOKIE_SECURE from ENVIRONMENT setting
rohskiddo pushed to main at rohskiddo/UMBRA 2026-03-01 11:21:28 +00:00
21aa670a39 Extract real client IP from proxy headers instead of Docker bridge IP
rohskiddo pushed to main at rohskiddo/UMBRA 2026-02-27 19:04:17 +00:00
f8c2df9328 Merge multi-user RBAC with login flow fixes, QA + pentest remediations
a313ce8b32 Update README for multi-user RBAC release
d269742aa2 Fix pentest findings: setup 500 error + password reuse prevention
1aeb725410 Fix issues from QA review: hash upgrade ordering, interceptor scope, guard
c4c06be148 Fix login error vanishing: exclude auth endpoints from 401 interceptor
Compare 33 commits »
rohskiddo pushed to feature/multi-user-rbac at rohskiddo/UMBRA 2026-02-27 18:59:04 +00:00
a313ce8b32 Update README for multi-user RBAC release
rohskiddo pushed to feature/multi-user-rbac at rohskiddo/UMBRA 2026-02-27 18:42:22 +00:00
d269742aa2 Fix pentest findings: setup 500 error + password reuse prevention
rohskiddo pushed to feature/multi-user-rbac at rohskiddo/UMBRA 2026-02-27 18:14:00 +00:00
1aeb725410 Fix issues from QA review: hash upgrade ordering, interceptor scope, guard
rohskiddo pushed to feature/multi-user-rbac at rohskiddo/UMBRA 2026-02-27 17:43:30 +00:00
c4c06be148 Fix login error vanishing: exclude auth endpoints from 401 interceptor
rohskiddo pushed to feature/multi-user-rbac at rohskiddo/UMBRA 2026-02-27 17:38:11 +00:00
5426657b2e Fix login error alert disappearing due to browser autofill
rohskiddo pushed to feature/multi-user-rbac at rohskiddo/UMBRA 2026-02-27 17:21:28 +00:00
b2d81f7015 Block inactive user login + fix login flicker + inline error alerts