wraith

History

Vantz Stockwell 39825f5295 fix(security): terminal logging cleanup, session ownership, host key verification, shell injection opt-in - H-5: Redact keystroke data from WS message logs — log type/sessionId/bytes only - H-4: Remove private key content/length/passphrase logging, replace with safe single line - H-14: Remove username@hostname from password auth log, use hostId only - M-1: Enforce session ownership in data/resize/disconnect handlers via clientSessions map - C-5: Real host key verification flow — MITM protection blocks changed keys immediately, new hosts ask user via host-key-verify WS message with 30s timeout, pending map resolves on host-key-accept/host-key-reject response - H-13: Shell PROMPT_COMMAND/precmd injection is now opt-in via options.enableCwdTracking Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>		2026-03-14 14:15:23 -04:00
..
prisma	feat: multi-user isolation with admin/user roles	2026-03-14 12:57:38 -04:00
src	fix(security): terminal logging cleanup, session ownership, host key verification, shell injection opt-in	2026-03-14 14:15:23 -04:00
test	feat: AES-256-GCM encryption service + auth module (JWT, guards, seed)	2026-03-12 17:07:14 -04:00
nest-cli.json	feat: project scaffold — Docker, NestJS, Nuxt 3, Prisma config	2026-03-12 17:05:37 -04:00
package-lock.json	feat(security): Argon2id key derivation for vault encryption	2026-03-14 13:40:41 -04:00
package.json	fix(security): infrastructure hardening — guacd network isolation, drop DB port, helmet, non-root container	2026-03-14 14:13:28 -04:00
seed.js	feat: multi-user isolation with admin/user roles	2026-03-14 12:57:38 -04:00
tsconfig.build.json	feat: project scaffold — Docker, NestJS, Nuxt 3, Prisma config	2026-03-12 17:05:37 -04:00
tsconfig.json	feat: project scaffold — Docker, NestJS, Nuxt 3, Prisma config	2026-03-12 17:05:37 -04:00