GTEdgeAI/gt-ai-os-community
3
0
Fork 0
Code Issues Packages Releases Wiki Activity
Files
a8f84527970cb8f0a57dd1f9948cade46cfa4690
gt-ai-os-community/apps/resource-cluster/pyproject.toml
HackWeasel b9dfb86260 GT AI OS Community Edition v2.0.33 
Security hardening release addressing CodeQL and Dependabot alerts:

- Fix stack trace exposure in error responses
- Add SSRF protection with DNS resolution checking
- Implement proper URL hostname validation (replaces substring matching)
- Add centralized path sanitization to prevent path traversal
- Fix ReDoS vulnerability in email validation regex
- Improve HTML sanitization in validation utilities
- Fix capability wildcard matching in auth utilities
- Update glob dependency to address CVE
- Add CodeQL suppression comments for verified false positives

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-12 17:04:45 -05:00

72 lines
1.6 KiB
TOML
Raw Blame History

[tool.poetry]
name = "gt2-resource-cluster"
version = "1.0.0"
description = "GT 2.0 Resource Cluster - Centralized AI resource management with HA support"
authors = ["GT Edge AI"]
readme = "README.md"
[tool.poetry.dependencies]
python = "^3.11"
[build-system]
requires = ["poetry-core"]
build-backend = "poetry.core.masonry.api"
[tool.pydocstyle]
convention = "google"
add-ignore = ["D100", "D104"] # Allow missing docstrings in __init__.py
match = "(?!test_).*\\.py" # Exclude test files
[tool.pytest.ini_options]
minversion = "7.0"
testpaths = ["tests"]
python_files = ["test_*.py", "*_test.py"]
python_classes = ["Test*"]
python_functions = ["test_*"]
addopts = [
"--cov=app",
"--cov-report=html",
"--cov-report=term-missing",
"--cov-fail-under=80",
"--strict-markers",
"-v",
]
markers = [
"unit: Fast isolated tests (<100ms)",
"integration: Cross-service tests",
"slow: Long-running tests (>1s)",
"security: Security-focused tests",
]
asyncio_mode = "auto"
[tool.black]
line-length = 100
target-version = ['py311']
[tool.mypy]
python_version = "3.11"
ignore_missing_imports = true
strict_optional = true
[tool.coverage.run]
source = ["app"]
omit = [
"*/tests/*",
"*/migrations/*",
"*/venv/*",
"*/env/*",
]
[tool.coverage.report]
exclude_lines = [
"pragma: no cover",
"def __repr__",
"raise AssertionError",
"raise NotImplementedError",
"if __name__ == .__main__.:",
"if TYPE_CHECKING:",
]
[tool.bandit]
exclude_dirs = ["tests", "migrations", "venv", ".venv"]
skips = ["B101", "B601"] # B101=assert_used, B601=shell_injection (for subprocess)
View Git Blame Copy Permalink