ALwrity

Files

ajaysi b894bc0abb fix: GHSA-426f-p74m-73fv — JWT JWKS issuer confusion auth bypass (CVSS 9.4)

Pin issuer and JWKS URL at startup from CLERK_PUBLISHABLE_KEY.
Validate token iss claim before any JWKS fetch.
Add issuer= to jwt.decode() with verify_iss=True.

2026-06-05 12:07:22 +05:30

__init__.py

feat(seo-copilot): caching + freshness UI; glassomorphic styling; CopilotKit HITL modular actions; provider fixes; DB sessions & action types; seed 17 actions

2025-08-30 16:12:41 +05:30

api_key_injection_middleware.py

Adjust missing API-key logging in injection middleware

2026-03-31 07:33:42 +05:30

auth_middleware.py

fix: GHSA-426f-p74m-73fv — JWT JWKS issuer confusion auth bypass (CVSS 9.4)

2026-06-05 12:07:22 +05:30

logging_middleware.py

Enforce runtime-only workspace directory creation policy

2026-03-12 15:00:59 +05:30

stability_middleware.py

Alpha Subscription Implementation Plan

2025-09-24 14:44:42 +05:30