EverShelf

Author	SHA1	Message	Date
morgane	a3a3b54a85	Actualiser api/lib/env.php CI / PHP Syntax Check (push) Has been cancelled Details CI / JavaScript Lint (push) Has been cancelled Details CI / Docker Build Test (push) Has been cancelled Details CI / Validate Translation Files (push) Has been cancelled Details CI / Auto-merge develop → main (push) Has been cancelled Details CI / Create GitHub Release (push) Has been cancelled Details Security Scan (Trivy) / Trivy — Docker image scan (push) Has been cancelled Details Security Scan (Trivy) / Trivy — Filesystem scan (push) Has been cancelled Details	2026-06-17 08:26:35 +00:00
dadaloop82	d33b0ca2fe	Harden security, modularize API bootstrap, and fix scale SSE auth. Block web access to sensitive paths, require API_TOKEN for mutations, encrypt GitHub issue credentials in .env, auto-provision tokens for same-origin clients, and pass api_token in scale relay URLs since EventSource cannot send headers. Co-authored-by: Cursor <cursoragent@cursor.com>	2026-06-03 18:04:19 +00:00