Hiddenden/AegisGitea-MCP
3
0
Fork 0
Code Issues 2 Pull Requests Actions Packages Projects Releases 1 Wiki Activity
Files
90df37366fdf6411c3fa1d47303f501149098744
AegisGitea-MCP/src/aegis_gitea_mcp
T
History
Latte b8217dce8a
docker / test (pull_request) Successful in 24s
Details
lint / lint (pull_request) Successful in 37s
Details
lint / lint (push) Successful in 1m26s
Details
test / test (push) Successful in 1m40s
Details
test / test (pull_request) Successful in 34s
Details
docker / lint (pull_request) Successful in 1m59s
Details
docker / docker-test (pull_request) Successful in 14s
Details
docker / docker-publish (pull_request) Has been skipped
Details
feat: harden OAuth state secret validation, DCR file permissions, and policy defaults 
- Enforce 32-char minimum on OAUTH_STATE_SECRET at startup (config.py)
- Write DCR client registry with owner-only (0o600) permissions before atomic replace
- Flip policy.yaml default write action from allow → deny
- Add CLAUDE.md with architecture, commands, and AGENTS.md contract summary
- Add .pre-commit-config.yaml mirroring `make lint` checks
- Update .gitignore: add .venv, .claude, .mypy_cache, .ruff_cache, .coverage.*
- Extend docs: audit log rotation guidance, OAUTH_STATE_SECRET and DCR_STORAGE_PATH notes
- Tests: short-secret rejection, 32-char acceptance, POSIX permission check for DCR store

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-06-14 14:13:22 +02:00
..
tools
feat: harden Claude MCP OAuth transport
2026-06-13 21:05:11 +02:00
__init__.py
feat: harden gateway with policy engine, secure tools, and governance docs
2026-02-14 16:06:43 +01:00
audit.py
feat: harden gateway with policy engine, secure tools, and governance docs
2026-02-14 16:06:43 +01:00
auth.py
feat: harden gateway with policy engine, secure tools, and governance docs
2026-02-14 16:06:43 +01:00
automation.py
Add OAuth2/OIDC per-user Gitea authentication
2026-02-25 16:54:01 +01:00
cache.py
refactor: lifespan handlers, module-level imports, bounded scope cache
2026-06-12 18:39:06 +02:00
config.py
feat: harden OAuth state secret validation, DCR file permissions, and policy defaults
2026-06-14 14:13:22 +02:00
gitea_client.py
Add OAuth2/OIDC per-user Gitea authentication
2026-02-25 16:54:01 +01:00
logging_utils.py
feat: harden gateway with policy engine, secure tools, and governance docs
2026-02-14 16:06:43 +01:00
mcp_protocol.py
feat: harden Claude MCP OAuth transport
2026-06-13 21:05:11 +02:00
oauth_flow.py
feat: harden OAuth state secret validation, DCR file permissions, and policy defaults
2026-06-14 14:13:22 +02:00
oauth.py
feat: harden Claude MCP OAuth transport
2026-06-13 21:05:11 +02:00
observability.py
Fix Prometheus metric f-string and add YAML helper
2026-02-27 16:08:17 +01:00
policy.py
feat: add opt-in write access for all token-visible repos
2026-02-14 16:35:03 +01:00
rate_limit.py
feat: harden gateway with policy engine, secure tools, and governance docs
2026-02-14 16:06:43 +01:00
request_context.py
Add OAuth2/OIDC per-user Gitea authentication
2026-02-25 16:54:01 +01:00
response_limits.py
feat: harden gateway with policy engine, secure tools, and governance docs
2026-02-14 16:06:43 +01:00
security.py
feat: harden gateway with policy engine, secure tools, and governance docs
2026-02-14 16:06:43 +01:00
server.py
feat: harden Claude MCP OAuth transport
2026-06-13 21:05:11 +02:00