git/metabuilder
1
0
Fork 0
mirror of https://github.com/johndoe6345789/metabuilder.git synced 2026-04-24 13:54:57 +00:00
Code Issues Packages Projects Releases Wiki Activity

docs: summary,dbal,cve (2 files)

Browse Source
This commit is contained in:
JohnDoe6345789
2025-12-26 02:32:49 +00:00
parent 76b17f060c
commit 0083abeefc
2 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@@ -75,7 +75,7 @@ Captured from this machine to document the local development environment:
---
- **5-Level Permission System**: Each user level from Public to SuperGod maps to documented routes, policies, and role inheritance so you can reason about features before touching code ([`docs/architecture/5-level-system.md`](./docs/architecture/5-level-system.md)).
- **6-Level Permission System**: Each user level from Public to SuperGod maps to documented routes, policies, and role inheritance so you can reason about features before touching code ([`docs/architecture/security-docs/5-level-system.md`](./docs/architecture/security-docs/5-level-system.md)).
- **Multi-tenant data platform**: Prisma, tenant-aware storage, and quota management patterns keep all queries scoped by `tenantId` while keeping schema evolution safe ([`docs/architecture/database.md`](./docs/architecture/database.md)).
- **Declarative packages & Lua logic**: Modular `packages/*/seed` definitions let you ship UI/features via JSON/Lua, while the Lua sandbox protects the runtime ([`docs/architecture/packages.md`](./docs/architecture/packages.md), [`docs/lua/README.md`](./docs/lua/README.md)).
- **Type-safe + CI-ready workflow**: TypeScript tooling, Act local workflows, and targeted scripts keep linting, testing, and deploy checks consistent with the documentation hub ([`docs/README.md`](./docs/README.md)).
@@ -901,7 +901,7 @@ DEBUG=metabuilder:* npm run dev
## Quick Links
- Permission model: [`docs/architecture/5-level-system.md`](./docs/architecture/5-level-system.md)
- Permission model: [`docs/architecture/security-docs/5-level-system.md`](./docs/architecture/security-docs/5-level-system.md)
- Database schema: [`prisma/schema.prisma`](./prisma/schema.prisma)
- API conventions: [`docs/guides/api-development.md`](./docs/guides/api-development.md)
- Security guidelines: [`docs/security/SECURITY.md`](./docs/security/SECURITY.md)

4
dbal/cpp/CVE_COMPARISON_SUMMARY.md
View File

@@ -84,7 +84,7 @@ The legacy HTTP server implementation was analyzed against recent CVE patterns a
## Test Results
All security tests **PASSED**:
Security tests validate the hardened behavior:
```
✓ Test 1: Duplicate Content-Length headers rejected
@@ -157,7 +157,7 @@ Key CVEs analyzed:
- Add metrics/monitoring for security violations
### Long Term
- Consider migrating to proven HTTP parsing library (llhttp, http-parser)
- ✅ Migrated to a proven HTTP framework (Drogon)
- Add TLS/SSL support
- Implement authentication/authorization
- Add WAF rules for additional protection