![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
![[site community profile]](https://www.dreamwidth.org/img/comm_staff.png){kind=small}
[dreamwidth/dreamwidth] e2b3b0: Close high-priority Plack gaps: security headers, ...
Branch: refs/heads/main Home: https://github.com/dreamwidth/dreamwidth Commit: e2b3b0b6ee48b93944c0ae60508a57f9df2be34d https://github.com/dreamwidth/dreamwidth/commit/e2b3b0b6ee48b93944c0ae60508a57f9df2be34d Author: Mark Smith mark@dreamwidth.org Date: 2026-02-01 (Sun, 01 Feb 2026)
Changed paths: M app.psgi A cgi-bin/DW/Controller/PalImg.pm A cgi-bin/DW/Controller/VGift.pm A cgi-bin/Plack/Middleware/DW/SecurityHeaders.pm M cgi-bin/Plack/Middleware/DW/SubdomainFunction.pm A t/plack-media.t M t/plack-subdomain.t
Log Message:
Close high-priority Plack gaps: security headers, media controllers, journal subdomains
Add SecurityHeaders middleware (X-Content-Type-Options, HSTS), extract userpic/vgift/palimg serving into DW::Controller modules, add journal subdomain routing and RPC URI handling to app.psgi, and expand subdomain middleware to cover all SUBDOMAIN_FUNCTION types. Includes 48 new/updated integration tests.
Co-Authored-By: Claude Opus 4.5 noreply@anthropic.com
To unsubscribe from these emails, change your notification settings at https://github.com/dreamwidth/dreamwidth/settings/notifications