git-echo/linux_patch_manager
Private
Public Access
1
0
Fork 0
Code Releases 8 Wiki Activity
Files
80ffb6b62f4f6ad4a608969b5f4aa3cd304c66a5
linux_patch_manager/debian/changelog
Echo 2cc3d0db40
All checks were successful
CI Pipeline / Rust Format Check (push) Successful in 2s
Details
CI Pipeline / Clippy Lints (push) Successful in 1m2s
Details
CI Pipeline / Rust Unit Tests (push) Successful in 1m22s
Details
CI Pipeline / Security Audit (push) Successful in 4s
Details
CI Pipeline / Frontend Lint & Type Check (push) Successful in 16s
Details
CI Pipeline / Build .deb & Release (push) Successful in 4m32s
Details
chore: bump version to 0.1.9 for rate limiting fix release
2026-05-21 02:38:29 +00:00

42 lines
2.0 KiB
Plaintext
Raw Blame History

linux-patch-manager (0.1.9-1) noble; urgency=medium
* Fix: Replace broken DashMap rate limiting with tower-governor middleware
* Fix: Enrollment rate limiting was global (0.0.0.0 fallback) instead of per-IP
* Fix: Use SmartIpKeyExtractor for proper X-Forwarded-For support behind HAProxy
* Add: Configurable rate limit tiers via [rate_limit] in config.toml
* Add: Standard X-RateLimit-* and Retry-After headers on 429 responses
-- Echo <echo@moon-dragon.us> Wed, 21 May 2026 02:38:00 +0000
linux-patch-manager (0.1.7-1) noble; urgency=medium
* Host Self-Enrollment: Added REST API and UI for automated agent enrollment
* Database: Added enrollment_requests table and migration 016
* Security: Implemented IP-based rate limiting on public enrollment endpoints
* Backend: Added background worker to purge expired enrollment requests (24h)
* Frontend: Integrated pending enrollment queue with conflict resolution modal
* Specs: Updated SPEC.md for manager and linux_patch_api self-enrollment workflows
-- Echo <echo@moon-dragon.us> Fri, 16 May 2026 11:44:08 -0500
linux-patch-manager (0.1.6-1) noble; urgency=medium
* Phase 4: Exhaustive analysis fixes, security hardening, and code quality improvements
* Implemented CRL generation and verification for mTLS agent certificates
* Added IP-based rate limiting middleware using governor crate
* Hardened error handling and removed silent unwrap_or_default failures
* Fixed blocking I/O in agent_loader to use async tokio::fs
* Made allow_reboot configurable per job via database column
* Improved audit integrity verification and reporting limits
-- Echo <echo@moon-dragon.us> Fri, 15 May 2026 22:11:45 +0000
linux-patch-manager (1.0.0-1) noble; urgency=medium
* Initial release of Linux Patch Manager
* Full M1-M12 feature set implemented
* MFA, RBAC, mTLS, CA, reporting, audit integrity
* HIPAA/PCI-DSS compliance mapping documented
-- Echo <echo@moon-dragon.us> Thu, 24 Apr 2026 00:00:00 +0000
View Git Blame Copy Permalink