b9dfb86260
Security hardening release addressing CodeQL and Dependabot alerts: - Fix stack trace exposure in error responses - Add SSRF protection with DNS resolution checking - Implement proper URL hostname validation (replaces substring matching) - Add centralized path sanitization to prevent path traversal - Fix ReDoS vulnerability in email validation regex - Improve HTML sanitization in validation utilities - Fix capability wildcard matching in auth utilities - Update glob dependency to address CVE - Add CodeQL suppression comments for verified false positives 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
53 lines
1002 B
Plaintext
53 lines
1002 B
Plaintext
# GT 2.0 Resource Cluster Requirements (Production)
|
|
|
|
# FastAPI framework and dependencies
|
|
fastapi==0.121.2
|
|
uvicorn[standard]==0.38.0
|
|
python-multipart==0.0.20
|
|
|
|
# Async and networking
|
|
httpx==0.28.1
|
|
aiohttp==3.13.2
|
|
websockets==12.0
|
|
|
|
# Security and authentication
|
|
python-jose[cryptography]==3.4.0
|
|
passlib[bcrypt]==1.7.4
|
|
bcrypt==4.1.3
|
|
cryptography==44.0.1
|
|
PyJWT==2.10.1
|
|
|
|
# Database
|
|
sqlalchemy==2.0.44
|
|
asyncpg==0.29.0
|
|
|
|
# LLM and AI integrations
|
|
groq==0.34.1
|
|
openai==1.6.1
|
|
transformers>=4.35.0 # BGE-M3 tokenizer for accurate embedding token counting
|
|
|
|
# Document processing
|
|
pypdf==6.4.1
|
|
python-docx==1.1.0
|
|
markdown==3.5.1
|
|
beautifulsoup4==4.12.2
|
|
langchain-text-splitters==0.3.9
|
|
|
|
# Vector processing (numpy needed for transformers)
|
|
numpy==1.24.4
|
|
|
|
# Service discovery and load balancing
|
|
haproxy-stats==1.5
|
|
python-consul==1.1.0
|
|
|
|
# Monitoring and observability
|
|
prometheus-client==0.19.0
|
|
|
|
# Configuration and utilities
|
|
pydantic==2.12.4
|
|
pydantic-settings==2.1.0
|
|
python-dotenv==1.0.0
|
|
pyyaml==6.0.1
|
|
aiofiles==23.2.1
|
|
|