anubis-mirror

mirror of https://github.com/TecharoHQ/anubis.git synced 2026-04-09 18:18:49 +00:00

Author	SHA1	Message	Date
dependabot[bot]	3acf8ee387	build(deps): bump the npm group with 5 updates (#1531 ) Bumps the npm group with 5 updates: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [preact](https://github.com/preactjs/preact) \| `10.28.4` \| `10.29.0` \| \| [@commitlint/cli](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/cli) \| `20.4.3` \| `20.5.0` \| \| [@commitlint/config-conventional](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/config-conventional) \| `20.4.3` \| `20.5.0` \| \| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) \| `2.10.0` \| `2.10.8` \| \| [esbuild](https://github.com/evanw/esbuild) \| `0.27.3` \| `0.27.4` \| Updates `preact` from 10.28.4 to 10.29.0 - [Release notes](https://github.com/preactjs/preact/releases) - [Commits](https://github.com/preactjs/preact/compare/10.28.4...10.29.0) Updates `@commitlint/cli` from 20.4.3 to 20.5.0 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/cli/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v20.5.0/@commitlint/cli) Updates `@commitlint/config-conventional` from 20.4.3 to 20.5.0 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/config-conventional/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v20.5.0/@commitlint/config-conventional) Updates `baseline-browser-mapping` from 2.10.0 to 2.10.8 - [Release notes](https://github.com/web-platform-dx/baseline-browser-mapping/releases) - [Commits](https://github.com/web-platform-dx/baseline-browser-mapping/compare/v2.10.0...v2.10.8) Updates `esbuild` from 0.27.3 to 0.27.4 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.27.3...v0.27.4) --- updated-dependencies: - dependency-name: preact dependency-version: 10.29.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: npm - dependency-name: "@commitlint/cli" dependency-version: 20.5.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm - dependency-name: "@commitlint/config-conventional" dependency-version: 20.5.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm - dependency-name: baseline-browser-mapping dependency-version: 2.10.8 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm - dependency-name: esbuild dependency-version: 0.27.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-03-24 15:54:04 +00:00
dependabot[bot]	a2a4cdebd6	build(deps): bump the npm group across 1 directory with 6 updates (#1512 ) Bumps the npm group with 6 updates in the / directory: \| Package \| From \| To \| \| --- \| --- \| --- \| \| [preact](https://github.com/preactjs/preact) \| `10.28.3` \| `10.28.4` \| \| [@commitlint/cli](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/cli) \| `20.4.1` \| `20.4.3` \| \| [@commitlint/config-conventional](https://github.com/conventional-changelog/commitlint/tree/HEAD/@commitlint/config-conventional) \| `20.4.1` \| `20.4.3` \| \| [baseline-browser-mapping](https://github.com/web-platform-dx/baseline-browser-mapping) \| `2.9.19` \| `2.10.0` \| \| [cssnano](https://github.com/cssnano/cssnano) \| `7.1.2` \| `7.1.3` \| \| [cssnano-preset-advanced](https://github.com/cssnano/cssnano) \| `7.0.10` \| `7.0.11` \| Updates `preact` from 10.28.3 to 10.28.4 - [Release notes](https://github.com/preactjs/preact/releases) - [Commits](https://github.com/preactjs/preact/compare/10.28.3...10.28.4) Updates `@commitlint/cli` from 20.4.1 to 20.4.3 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/cli/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v20.4.3/@commitlint/cli) Updates `@commitlint/config-conventional` from 20.4.1 to 20.4.3 - [Release notes](https://github.com/conventional-changelog/commitlint/releases) - [Changelog](https://github.com/conventional-changelog/commitlint/blob/master/@commitlint/config-conventional/CHANGELOG.md) - [Commits](https://github.com/conventional-changelog/commitlint/commits/v20.4.3/@commitlint/config-conventional) Updates `baseline-browser-mapping` from 2.9.19 to 2.10.0 - [Release notes](https://github.com/web-platform-dx/baseline-browser-mapping/releases) - [Commits](https://github.com/web-platform-dx/baseline-browser-mapping/compare/v2.9.19...v2.10.0) Updates `cssnano` from 7.1.2 to 7.1.3 - [Release notes](https://github.com/cssnano/cssnano/releases) - [Commits](https://github.com/cssnano/cssnano/compare/cssnano@7.1.2...cssnano@7.1.3) Updates `cssnano-preset-advanced` from 7.0.10 to 7.0.11 - [Release notes](https://github.com/cssnano/cssnano/releases) - [Commits](https://github.com/cssnano/cssnano/compare/cssnano-preset-advanced@7.0.10...cssnano-preset-advanced@7.0.11) --- updated-dependencies: - dependency-name: preact dependency-version: 10.28.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm - dependency-name: "@commitlint/cli" dependency-version: 20.4.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm - dependency-name: "@commitlint/config-conventional" dependency-version: 20.4.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm - dependency-name: baseline-browser-mapping dependency-version: 2.10.0 dependency-type: direct:development update-type: version-update:semver-minor dependency-group: npm - dependency-name: cssnano dependency-version: 7.1.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm - dependency-name: cssnano-preset-advanced dependency-version: 7.0.11 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-03-16 10:48:22 +00:00
Xe Iaso	35b5e78a0d	chore: tag v1.25.0 Signed-off-by: Xe Iaso <me@xeiaso.net>	2026-02-18 15:56:28 +00:00
dependabot[bot]	c34ec67777	build(deps): bump the npm group across 1 directory with 2 updates (#1452 ) Bumps the npm group with 2 updates in the / directory: [preact](https://github.com/preactjs/preact) and [esbuild](https://github.com/evanw/esbuild). Updates `preact` from 10.28.2 to 10.28.3 - [Release notes](https://github.com/preactjs/preact/releases) - [Commits](https://github.com/preactjs/preact/compare/10.28.2...10.28.3) Updates `esbuild` from 0.27.2 to 0.27.3 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.27.2...v0.27.3) --- updated-dependencies: - dependency-name: preact dependency-version: 10.28.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm - dependency-name: esbuild dependency-version: 0.27.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-02-15 10:32:07 -05:00
Xe Iaso	bf5d66222c	chore: set up commitlint, husky, and prettier (#1451 ) * chore: add prettier configuration Signed-off-by: Xe Iaso <me@xeiaso.net> * format: run prettier tree-wide Signed-off-by: Xe Iaso <me@xeiaso.net> * chore(prettier): ignore intentionally ungrammatical files Signed-off-by: Xe Iaso <me@xeiaso.net> * ci: add PR title lint rule Signed-off-by: Xe Iaso <me@xeiaso.net> * ci: add DCO check Signed-off-by: Xe Iaso <me@xeiaso.net> * chore: add commitlint and husky Signed-off-by: Xe Iaso <me@xeiaso.net> * chore: add CONTRIBUTING guidelines Signed-off-by: Xe Iaso <me@xeiaso.net> * chore: set SKIP_INTEGRATION in precommit tests Signed-off-by: Xe Iaso <me@xeiaso.net> * chore: update spelling Signed-off-by: Xe Iaso <me@xeiaso.net> * ci(dco): remove reopened trigger Signed-off-by: Xe Iaso <me@xeiaso.net> * chore: remove dead file Signed-off-by: Xe Iaso <me@xeiaso.net> * chore(prettier): don't format nginx includes Signed-off-by: Xe Iaso <me@xeiaso.net> --------- Signed-off-by: Xe Iaso <me@xeiaso.net>	2026-02-15 08:19:12 -05:00
dependabot[bot]	d622675edc	build(deps): bump preact from 10.28.1 to 10.28.2 in the npm group (#1412 ) Bumps the npm group with 1 update: [preact](https://github.com/preactjs/preact). Updates `preact` from 10.28.1 to 10.28.2 - [Release notes](https://github.com/preactjs/preact/releases) - [Commits](https://github.com/preactjs/preact/compare/10.28.1...10.28.2) --- updated-dependencies: - dependency-name: preact dependency-version: 10.28.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Jason Cameron <git@jsn.cam>	2026-01-22 09:50:34 -05:00
dependabot[bot]	149e864786	build(deps): bump preact from 10.28.0 to 10.28.1 in the npm group (#1387 ) Bumps the npm group with 1 update: [preact](https://github.com/preactjs/preact). Updates `preact` from 10.28.0 to 10.28.1 - [Release notes](https://github.com/preactjs/preact/releases) - [Commits](https://github.com/preactjs/preact/compare/10.28.0...10.28.1) --- updated-dependencies: - dependency-name: preact dependency-version: 10.28.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Jason Cameron <git@jasoncameron.dev>	2026-01-05 21:44:28 -05:00
dependabot[bot]	f5728e96a1	build(deps-dev): bump esbuild from 0.27.1 to 0.27.2 in the npm group (#1368 ) Co-authored-by: Jason Cameron <git@jsn.cam>	2025-12-28 22:07:44 -05:00
dependabot[bot]	988906bb79	build(deps): bump the npm group with 2 updates (#1339 ) Co-authored-by: Jason Cameron <git@jasoncameron.dev>	2025-12-14 21:29:42 -05:00
Xe Iaso	9c54aa852f	chore: v1.24.0-pre1 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-12-02 07:58:29 -05:00
dependabot[bot]	c70b939651	build(deps-dev): bump esbuild from 0.25.12 to 0.27.0 in the npm group (#1260 ) Co-authored-by: Jason Cameron <git@jasoncameron.dev>	2025-11-16 19:13:00 -05:00
Xe Iaso	b836506785	chore: v1.23.1 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-11-07 19:39:07 -05:00
dependabot[bot]	4d1d7c39eb	build(deps-dev): bump the npm group across 1 directory with 3 updates (#1238 ) Co-authored-by: Jason Cameron <git@jasoncameron.dev>	2025-11-02 20:14:51 -05:00
Xe Iaso	62c1b80189	chore: tag v1.23.0 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-10-29 20:38:34 -04:00
Xe Iaso	ab8b91fc0c	chore: v1.23.0-pre2 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-10-26 19:23:16 -04:00
Xe Iaso	2fc3765340	chore: tag v1.23.0-pre1 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-10-22 14:35:23 +00:00
dependabot[bot]	5731477e0a	build(deps-dev): bump esbuild from 0.25.9 to 0.25.10 in the npm group (#1147 ) Bumps the npm group with 1 update: [esbuild](https://github.com/evanw/esbuild). Updates `esbuild` from 0.25.9 to 0.25.10 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.25.9...v0.25.10) --- updated-dependencies: - dependency-name: esbuild dependency-version: 0.25.10 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-09-27 13:46:12 -04:00
dependabot[bot]	03299024c5	build(deps): bump the npm group with 2 updates (#1117 ) Bumps the npm group with 2 updates: [preact](https://github.com/preactjs/preact) and [postcss-import-url](https://github.com/unlight/postcss-import-url). Updates `preact` from 10.27.1 to 10.27.2 - [Release notes](https://github.com/preactjs/preact/releases) - [Commits](https://github.com/preactjs/preact/compare/10.27.1...10.27.2) Updates `postcss-import-url` from 1.0.0 to 7.2.0 - [Release notes](https://github.com/unlight/postcss-import-url/releases) - [Changelog](https://github.com/unlight/postcss-import-url/blob/master/CHANGELOG.md) - [Commits](https://github.com/unlight/postcss-import-url/commits/v7.2.0) --- updated-dependencies: - dependency-name: preact dependency-version: 10.27.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: npm - dependency-name: postcss-import-url dependency-version: 7.2.0 dependency-type: direct:development update-type: version-update:semver-major dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-09-15 18:23:15 -04:00
Xe Iaso	8b9dafac51	security: npm audit fix for GHSA-hfm8-9jrf-7g9w et. al (#1098 ) * security: npm audit fix for GHSA-hfm8-9jrf-7g9w et. al Closes #1097 I'm not sure that this is required, but I'd sleep better at night not finding out that it is required the hard way. Signed-off-by: Xe Iaso <me@xeiaso.net> * chore: bump postcss version Signed-off-by: Xe Iaso <me@xeiaso.net> --------- Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-09-08 14:17:59 -04:00
Xe Iaso	5d5c39e123	chore: v1.22.0 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-09-06 11:54:36 -04:00
Xe Iaso	489abb6b4d	chore: release v1.22.0-pre2 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-09-02 21:31:17 -04:00
Xe Iaso	0e0847cbeb	feat: add 'proof of React' challenge (#1038 ) * feat: add 'proof of React' challenge Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(challenge/preact): use JSX fragments Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(challenge/preact): ensure that the client waits as long as it needs to Signed-off-by: Xe Iaso <me@xeiaso.net> * docs: fix spelling Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(challenges/xeact): add noscript warning Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(challenges/xeact): add default loading message Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(challenges/xeact): make a UI render without JS Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(challenges/xeact): use %s here, not %w Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(test/healthcheck): run asset build Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(challenge/preact): fix build in ci Signed-off-by: Xe Iaso <me@xeiaso.net> --------- Signed-off-by: Xe Iaso <me@xeiaso.net> Signed-off-by: Xe Iaso <xe.iaso@techaro.lol>	2025-08-29 16:09:27 -04:00
dependabot[bot]	fb8ce508ee	build(deps-dev): bump the npm group across 1 directory with 3 updates (#1032 ) Bumps the npm group with 3 updates in the / directory: [cssnano](https://github.com/cssnano/cssnano), [cssnano-preset-advanced](https://github.com/cssnano/cssnano) and [esbuild](https://github.com/evanw/esbuild). Updates `cssnano` from 7.1.0 to 7.1.1 - [Release notes](https://github.com/cssnano/cssnano/releases) - [Commits](https://github.com/cssnano/cssnano/compare/cssnano@7.1.0...cssnano@7.1.1) Updates `cssnano-preset-advanced` from 7.0.8 to 7.0.9 - [Release notes](https://github.com/cssnano/cssnano/releases) - [Commits](https://github.com/cssnano/cssnano/compare/cssnano-preset-advanced@7.0.8...cssnano-preset-advanced@7.0.9) Updates `esbuild` from 0.25.8 to 0.25.9 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.25.8...v0.25.9) --- updated-dependencies: - dependency-name: cssnano dependency-version: 7.1.1 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm - dependency-name: cssnano-preset-advanced dependency-version: 7.0.9 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm - dependency-name: esbuild dependency-version: 0.25.9 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-08-25 00:33:44 +00:00
Xe Iaso	f5afe8b6c8	chore: release v1.22.0-pre1 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-08-24 02:38:54 +00:00
Xe Iaso	0dccf2e009	refactor(web): redo proof of work web worker logic (#941 ) * chore(web/js): delete proof-of-work-slow.mjs This code has served its purpose and now needs to be retired to the great beyond. There is no replacement for this, the fast implementation will be used instead. Signed-off-by: Xe Iaso <me@xeiaso.net> * chore(web): handle building multiple JS entrypoints and web workers Signed-off-by: Xe Iaso <me@xeiaso.net> * feat(web): rewrite frontend worker handling This completely rewrites how the proof of work challenge works based on feedback from browser engine developers and starts the process of making the proof of work function easier to change out. - Import @aws-crypto/sha256-js to use in Firefox as its implementation of WebCrypto doesn't jump directly from highly optimized browser internals to JIT-ed JavaScript like Chrome's seems to. - Move the worker code to `web/js/worker/` with each worker named after the hashing method and hash method implementation it uses. - Update bench.mjs to import algorithms the new way. - Delete video.mjs, it was part of a legacy experiment that I never had time to finish. - Update LibreJS comment to add info about the use of @aws-crypto/sha256-js. - Also update my email to my @techaro.lol address. Signed-off-by: Xe Iaso <me@xeiaso.net> fix(web): don't hard dep webcrypto anymore Signed-off-by: Xe Iaso <me@xeiaso.net> * chore(lib/policy): start the deprecation process for slow This mostly adds a warning, but the "slow" method is in the process of being removed. Warn admins with slog.Warn. Signed-off-by: Xe Iaso <me@xeiaso.net> * docs: update CHANGELOG Signed-off-by: Xe Iaso <me@xeiaso.net> * feat(web/js): allow running Anubis in non-secure contexts Signed-off-by: Xe Iaso <me@xeiaso.net> * Update metadata check-spelling run (pull_request) for Xe/purge-slow Signed-off-by: check-spelling-bot <check-spelling-bot@users.noreply.github.com> on-behalf-of: @check-spelling <check-spelling-bot@check-spelling.dev> --------- Signed-off-by: Xe Iaso <me@xeiaso.net> Signed-off-by: check-spelling-bot <check-spelling-bot@users.noreply.github.com>	2025-08-02 11:27:26 -04:00
Xe Iaso	958992a69a	chore: release v1.21.3 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-07-25 10:30:44 -04:00
Xe Iaso	5700512da5	chore: release v1.21.2 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-07-24 10:47:32 -04:00
Xe Iaso	1a19d7eee4	chore: release v1.21.1 (#887 ) Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-07-22 16:32:06 -04:00
dependabot[bot]	eb78ccc30c	build(deps-dev): bump the npm group with 3 updates (#872 ) Co-authored-by: Jason Cameron <git@jasoncameron.dev>	2025-07-20 20:56:02 -04:00
Xe Iaso	4d6b578f93	chore: release v1.21.0 (#844 ) Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-07-16 21:21:20 -04:00
dependabot[bot]	2cb57fc247	build(deps-dev): bump esbuild from 0.25.5 to 0.25.6 in the npm group (#825 ) Bumps the npm group with 1 update: [esbuild](https://github.com/evanw/esbuild). Updates `esbuild` from 0.25.5 to 0.25.6 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.25.5...v0.25.6) --- updated-dependencies: - dependency-name: esbuild dependency-version: 0.25.6 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: Jason Cameron <git@jasoncameron.dev>	2025-07-13 21:28:29 -04:00
Xe Iaso	25d75b352a	chore: release v1.21.0-pre3	2025-07-12 17:29:18 -04:00
Xe Iaso	de17823bc7	chore: release v1.21.0-pre2 (#816 ) * chore: release v1.21.0-pre2 * chore: disable automated stable package builds for now Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-07-12 16:57:08 -04:00
Xe Iaso	ea2e76c6ee	chore: tag version 1.21.0-pre1 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-07-06 19:35:06 -04:00
Xe Iaso	c2423d0688	chore: release v1.20.0 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-06-27 12:06:22 -04:00
Jason Cameron	1562f88c35	chore: Remove unused/dead code (#703 ) * chore(xess): remove unused xess templates Signed-off-by: Jason Cameron <git@jasoncameron.dev> * chore(checker): remove unused staticHashChecker implementation Signed-off-by: Jason Cameron <git@jasoncameron.dev> * feat: add pinact and deadcode to go tools (pinact is used for the gha pinning) Signed-off-by: Jason Cameron <git@jasoncameron.dev> * chore: update Docker and kubectl actions to latest versions Signed-off-by: Jason Cameron <git@jasoncameron.dev> * chore: update Homebrew action from master to main in workflow files See `df537ec97f` Signed-off-by: Jason Cameron <git@jasoncameron.dev> * chore: remove unused go-colorable and tools dependencies from go.sum Signed-off-by: Jason Cameron <git@jasoncameron.dev> * chore: update postcss-import and other dependencies to latest versions Signed-off-by: Jason Cameron <git@jasoncameron.dev> * chore: update Docusaurus dependencies to version 3.8.1 Signed-off-by: Jason Cameron <git@jasoncameron.dev> * chore: downgrade playwright and playwright-core to version 1.52.0 Signed-off-by: Jason Cameron <git@jasoncameron.dev> --------- Signed-off-by: Jason Cameron <git@jasoncameron.dev>	2025-06-25 09:31:33 -04:00
Xe Iaso	f9259299b9	chore: release v1.20.0-pre2 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-06-23 15:17:13 -04:00
Xe Iaso	ecc716940e	chore: release v1.20.0-pre1 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-06-19 19:32:49 -04:00
dependabot[bot]	8d19eed200	build(deps-dev): bump esbuild from 0.25.4 to 0.25.5 in the npm group (#600 ) Bumps the npm group with 1 update: [esbuild](https://github.com/evanw/esbuild). Updates `esbuild` from 0.25.4 to 0.25.5 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.25.4...v0.25.5) --- updated-dependencies: - dependency-name: esbuild dependency-version: 0.25.5 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-06-01 23:38:45 -04:00
Xe Iaso	ec733e93a5	v1.19.1 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-06-01 17:17:24 -04:00
Xe Iaso	44d5ec0b6e	chore: release version v1.19.0 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-06-01 16:35:03 -04:00
Xe Iaso	fa1f2355ea	v1.19.0-pre1 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-05-25 14:10:22 -04:00
dependabot[bot]	9009596ded	build(deps-dev): bump the npm group with 3 updates (#496 ) Bumps the npm group with 3 updates: [cssnano](https://github.com/cssnano/cssnano), [cssnano-preset-advanced](https://github.com/cssnano/cssnano) and [esbuild](https://github.com/evanw/esbuild). Updates `cssnano` from 7.0.6 to 7.0.7 - [Release notes](https://github.com/cssnano/cssnano/releases) - [Commits](https://github.com/cssnano/cssnano/compare/cssnano@7.0.6...cssnano@7.0.7) Updates `cssnano-preset-advanced` from 7.0.6 to 7.0.7 - [Release notes](https://github.com/cssnano/cssnano/releases) - [Commits](https://github.com/cssnano/cssnano/compare/cssnano-preset-advanced@7.0.6...cssnano-preset-advanced@7.0.7) Updates `esbuild` from 0.25.3 to 0.25.4 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.25.3...v0.25.4) --- updated-dependencies: - dependency-name: cssnano dependency-version: 7.0.7 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm - dependency-name: cssnano-preset-advanced dependency-version: 7.0.7 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm - dependency-name: esbuild dependency-version: 0.25.4 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-05-12 00:19:52 -04:00
Xe Iaso	8c7640aa09	v1.18.0: Varis zos Galvus The big ticket feature in this release is [CEL expression matching support](https://anubis.techaro.lol/docs/admin/configuration/expressions). This allows you to tailor your approach for the individual services you are protecting. These can be as simple as: ```yaml - name: allow-api-requests action: ALLOW expression: all: - '"Accept" in headers' - 'headers["Accept"] == "application/json"' - 'path.startsWith("/api/")' ``` Or as complicated as: ```yaml - name: allow-git-clients action: ALLOW expression: all: - >- ( userAgent.startsWith("git/") \|\| userAgent.contains("libgit") \|\| userAgent.startsWith("go-git") \|\| userAgent.startsWith("JGit/") \|\| userAgent.startsWith("JGit-") ) - '"Git-Protocol" in headers' - headers["Git-Protocol"] == "version=2" ``` The docs have more information, but here's a tl;dr of the variables you have access to in expressions: \| Name \| Type \| Explanation \| Example \| \| :-------------- \| :-------------------- \| :---------------------------------------------------------------------------------------------------------------------------------------- \| :----------------------------------------------------------- \| \| `headers` \| `map[string, string]` \| The [headers](https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers) of the request being processed. \| `{"User-Agent": "Mozilla/5.0 Gecko/20100101 Firefox/137.0"}` \| \| `host` \| `string` \| The [HTTP hostname](https://web.dev/articles/url-parts#host) the request is targeted to. \| `anubis.techaro.lol` \| \| `method` \| `string` \| The [HTTP method](https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Methods) in the request being processed. \| `GET`, `POST`, `DELETE`, etc. \| \| `path` \| `string` \| The [path](https://web.dev/articles/url-parts#pathname) of the request being processed. \| `/`, `/api/memes/create` \| \| `query` \| `map[string, string]` \| The [query parameters](https://web.dev/articles/url-parts#query) of the request being processed. \| `?foo=bar` -> `{"foo": "bar"}` \| \| `remoteAddress` \| `string` \| The IP address of the client. \| `1.1.1.1` \| \| `userAgent` \| `string` \| The [`User-Agent`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/User-Agent) string in the request being processed. \| `Mozilla/5.0 Gecko/20100101 Firefox/137.0` \| This will be made more elaborate in the future. Give me time. This is a [simple, lovable, and complete](https://longform.asmartbear.com/slc/) implementation of this feature so that administrators can get hacking ASAP. Other changes: - Use CSS variables to deduplicate styles - Fixed native packages not containing the stdlib and botPolicies.yaml - Change import syntax to allow multi-level imports - Changed the startup logging to use JSON formatting as all the other logs do. - Added the ability to do [expression matching with CEL](./admin/configuration/expressions.mdx) - Add a warning for clients that don't store cookies - Disable Open Graph passthrough by default ([#435](https://github.com/TecharoHQ/anubis/issues/435)) - Clarify the license of the mascot images ([#442](https://github.com/TecharoHQ/anubis/issues/442)) - Started Suppressing 'Context canceled' errors from http in the logs ([#446](https://github.com/TecharoHQ/anubis/issues/446)) Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-05-09 12:24:23 -04:00
Xe Iaso	b1c276db9f	Revert "fix(js): use pure JS SHA256 library, refactor (#471 )" (#475 ) This reverts commit `7b84904d15`.	2025-05-08 22:22:08 +00:00
Xe Iaso	7b84904d15	fix(js): use pure JS SHA256 library, refactor (#471 ) * fix(js): use pure JS SHA256 library, refactor Closes #458 Additionally, I made a horrifying discovery: Firefox seems to actively hinder performance if you are using more than one Worker per page. It does not spread the load out across cores like I expected. Instead it seems to make that one Worker thrash and have to constantly context switch, which caused a lot of slowdown. The benchmarks in #155 continue to be the best contribution ever made to Anubis. What clued me into there being a problem here was the fact that the "slow" algorithm was faster than the "fast" algorithm on my laptop. This made no intuitive sense to me so I dug further. Either way I think this is a Firefox bug at its core, but for now we have to work around it by doing the hacky terrible thing that I hate. I also swapped the SHA256 operations to @aws-crypto/sha256-js on the advice of a trusted cryptography expert. I don't know what performance differences this makes, but I'm getting 150-225 kilohashes per second, which is pretty dang good. Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(js): apply suggestions from code review Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com> Signed-off-by: Xe Iaso <me@xeiaso.net> * fix(js): use fast algo for fast worker Signed-off-by: Xe Iaso <me@xeiaso.net> --------- Signed-off-by: Xe Iaso <me@xeiaso.net> Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>	2025-05-08 17:38:51 -04:00
dependabot[bot]	2e54e839f1	build(deps): bump the gomod group across 1 directory with 4 updates (#457 ) * build(deps): bump the gomod group across 1 directory with 4 updates Bumps the gomod group with 4 updates in the / directory: [github.com/a-h/templ](https://github.com/a-h/templ), [github.com/playwright-community/playwright-go](https://github.com/playwright-community/playwright-go), [golang.org/x/net](https://github.com/golang/net) and [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery). Updates `github.com/a-h/templ` from 0.3.857 to 0.3.865 - [Release notes](https://github.com/a-h/templ/releases) - [Changelog](https://github.com/a-h/templ/blob/main/.goreleaser.yaml) - [Commits](https://github.com/a-h/templ/compare/v0.3.857...v0.3.865) Updates `github.com/playwright-community/playwright-go` from 0.5101.0 to 0.5200.0 - [Release notes](https://github.com/playwright-community/playwright-go/releases) - [Commits](https://github.com/playwright-community/playwright-go/compare/v0.5101.0...v0.5200.0) Updates `golang.org/x/net` from 0.39.0 to 0.40.0 - [Commits](https://github.com/golang/net/compare/v0.39.0...v0.40.0) Updates `k8s.io/apimachinery` from 0.32.3 to 0.33.0 - [Commits](https://github.com/kubernetes/apimachinery/compare/v0.32.3...v0.33.0) --- updated-dependencies: - dependency-name: github.com/a-h/templ dependency-version: 0.3.865 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: gomod - dependency-name: github.com/playwright-community/playwright-go dependency-version: 0.5200.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: golang.org/x/net dependency-version: 0.40.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: k8s.io/apimachinery dependency-version: 0.33.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod ... Signed-off-by: dependabot[bot] <support@github.com> * chore: go mod tidy && npm run assets Signed-off-by: Xe Iaso <me@xeiaso.net> * ci: use playwright managed by npm Signed-off-by: Xe Iaso <me@xeiaso.net> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Xe Iaso <me@xeiaso.net> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Xe Iaso <me@xeiaso.net>	2025-05-07 17:48:10 -04:00
Xe Iaso	e64987ef90	Pre-release: v1.18.0-pre1 Signed-off-by: Xe Iaso <me@xeiaso.net>	2025-05-05 17:07:10 -04:00
dependabot[bot]	6daf08216e	build(deps-dev): bump esbuild from 0.25.2 to 0.25.3 in the npm group (#388 ) Bumps the npm group with 1 update: [esbuild](https://github.com/evanw/esbuild). Updates `esbuild` from 0.25.2 to 0.25.3 - [Release notes](https://github.com/evanw/esbuild/releases) - [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG.md) - [Commits](https://github.com/evanw/esbuild/compare/v0.25.2...v0.25.3) --- updated-dependencies: - dependency-name: esbuild dependency-version: 0.25.3 dependency-type: direct:development update-type: version-update:semver-patch dependency-group: npm ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2025-04-27 22:01:37 -04:00
Henri Vasserman	20f1d40b61	dev: Improvements to build scripts (#232 ) * dev: make sure that stuff is building properly * chore: changelog * remove npx	2025-04-11 22:00:48 -04:00

1 2

52 Commits