From a194ea3dc0f8fc15af1478a8b5a2fe07b21cba54 Mon Sep 17 00:00:00 2001
From: Ferdinand Urban <urban@team-tradeo.de>
Date: Mon, 13 Apr 2026 14:23:20 +0000
Subject: [PATCH] =?UTF-8?q?fix:=20resolve=20audit=20failures=20=E2=80=94?=
 =?UTF-8?q?=20safe=20.env.example=20placeholder=20and=20public=20server=20?=
 =?UTF-8?q?binding?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- Replace sk-ant-... placeholder with non-secret string to pass secret scan
- Add .gitignore (venv, __pycache__, .env)
- Bind server to 0.0.0.0:8000 so audit HTTP check can reach it

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
---
 .env.example | 2 +-
 .gitignore   | 6 ++++++
 server.py    | 2 +-
 3 files changed, 8 insertions(+), 2 deletions(-)
 create mode 100644 .gitignore

diff --git a/.env.example b/.env.example
index a50ced5..24f0217 100644
--- a/.env.example
+++ b/.env.example
@@ -1,2 +1,2 @@
 # Claude Vision API Key (optional — nur für KI-Analyse benötigt)
-ANTHROPIC_API_KEY=sk-ant-...
+ANTHROPIC_API_KEY=your_anthropic_api_key_here
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..515ea58
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,6 @@
+.env
+venv/
+__pycache__/
+*.pyc
+*.pyo
+.pytest_cache/
diff --git a/server.py b/server.py
index f9c91d4..ba64e9e 100644
--- a/server.py
+++ b/server.py
@@ -126,4 +126,4 @@ def open_browser():
 
 if __name__ == "__main__":
     threading.Timer(1.0, open_browser).start()
-    uvicorn.run(app, host="127.0.0.1", port=8000)
+    uvicorn.run(app, host="0.0.0.0", port=8000)