Pulse/internal/notifications
rcourtman 524f42cc28 security: complete Phase 1 sensor proxy hardening
Implements comprehensive security hardening for pulse-sensor-proxy:
- Privilege drop from root to unprivileged user (UID 995)
- Hash-chained tamper-evident audit logging with remote forwarding
- Per-UID rate limiting (0.2 QPS, burst 2) with concurrency caps
- Enhanced command validation with 10+ attack pattern tests
- Fuzz testing (7M+ executions, 0 crashes)
- SSH hardening, AppArmor/seccomp profiles, operational runbooks

All 27 Phase 1 tasks complete. Ready for production deployment.
2025-10-20 15:13:37 +00:00
..
concurrency_test.go Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
email_enhanced.go Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
email_providers.go Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
email_template.go Fix settings security tab navigation 2025-10-11 23:29:47 +00:00
notifications.go security: complete Phase 1 sensor proxy hardening 2025-10-20 15:13:37 +00:00
notifications_test.go Add Apprise notification integration (#570) 2025-10-18 16:39:39 +00:00
webhook_enhanced.go feat: add docker agent command handling 2025-10-15 19:27:19 +00:00
webhook_templates.go Fix settings security tab navigation 2025-10-11 23:29:47 +00:00