Reference
Security
Threat model, 0% data egress guarantee, vulnerability disclosure, audit log for gov/finance compliance.
Threat model
- Single-user localhost mode (HTTP Basic auth via UI_PASS)
- 0% data egress guarantee — kod nigdy nie opuszcza Twojej sieci (z local Ollama lub on-prem GPU)
- Token vault: Fernet (AES-128) encrypted at rest, klucz master derivowany przez PBKDF2-HMAC-SHA256 z 480k iteracji
- SQL injection protection: wszystkie queries do tokens DB używają parameterized binds
- Path traversal protection: session IDs filtered przez regex
^[A-Za-z0-9_:.\-]+$+Path.resolve().relative_to()check - XSS protection: wszystkie user-controlled values escaped przez
html.escape(quote=True)przed HTML render
Past audit log
Wszystkie znalezione issues + fixes dostępne w git log. Sumaryzacja:
| Date | Severity | Issue | Status |
|---|---|---|---|
| 2026-05-27 | HIGH | XSS via label reflected unescaped in HTMLResponse (settings router) | ✓ Fixed (commit a8e4af3) |
| 2026-05-27 | CRITICAL | _cache_put silently swallowing TypeError | ✓ Fixed |
| 2026-05-27 | CRITICAL | _reader() outer Exception losing traceback | ✓ Fixed |
| 2026-05-27 | HIGH | _maybe_post_comment unexpected exception | ✓ Fixed |
| 2026-05-27 | HIGH | settings.py bare Exception masking DB errors | ✓ Fixed (narrowed do VaultError) |
| 2026-05-27 | HIGH | kill_job bare except pass | ✓ Fixed (log.warning) |
| 2026-05-26 | MEDIUM (×5) | UI Task 17 audit (2 CRIT + 5 HIGH) | ✓ All fixed |
Vulnerability disclosure
Do NOT open public GitHub issue for security vulnerabilities.
- Email: filipiuk.bartek@gmail.com
- Subject:
[SECURITY]+ krótki opis - PGP key na request
- Response w 72h, fix target 14 dni dla high/critical
Compliance (Enterprise tier)
- SOC2 Type II docs pack dostępny dla Enterprise self-hosted ($18k+/yr)
- GDPR DPA template dla EU customers
- HIPAA-friendly deployment (no PHI w training/RAG)
- Air-gapped install (offline tar.gz z bundled GGUF models) — Enterprise only
- PDF audit reports z findings + reviewer signature — Enterprise only
Why "0% data egress" matters
Drupal jest często used dla:
- Government portals (regulatory requirements re: data residency)
- University research (FERPA, GDPR)
- Finance / banking (PCI DSS, SOC2)
- Healthcare (HIPAA, MDR)
Generic AI tools (CodeRabbit, Copilot, Greptile) wysyłają kod do US/cloud APIs — niemożliwe dla tych branż. DCR działa na Twoim hardware, no API calls leave VPC.
Full security policy: SECURITY.md on GitHub