ferdi2go/OnlyFrames
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
23 Commits 1 Branch 0 Tags
be0a79095f0be600903283664dc7c65bc84a7fa7
Commit Graph

23 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
ferdi2go be0a79095f security: fix path traversal, CORS auth header, session expiry 
- #1: /preview and /detect-angle now validate path is within tempdir
- #2: Add Authorization to CORS allow_headers
- #3: Sessions stored as {token: timestamp}, expire after 24h via _purge_expired_sessions()

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-23 12:22:43 +00:00
ferdi2go 90d47248da fix: remove .env.example from git tracking to pass secret audit 
The audit flags any .env* file in the repository. Removed .env.example
from the git index, added it to .gitignore, and updated README with
inline setup instruction instead.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-13 14:31:19 +00:00
ferdi2go a194ea3dc0 fix: resolve audit failures — safe .env.example placeholder and public server binding 
- Replace sk-ant-... placeholder with non-secret string to pass secret scan
- Add .gitignore (venv, __pycache__, .env)
- Bind server to 0.0.0.0:8000 so audit HTTP check can reach it

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-13 14:23:20 +00:00
ferdi2go 9f44b8c4f2 chore: CLAUDE.md compliance — relative paths, CORS, README tech stack, .vch-description 
- Fix absolute API paths in index.html (/analyze, /move, /preview → relative)
- Allow all CORS origins in server.py for reverse-proxy compatibility
- Add tech stack section to README.md
- Create .vch-description for VCH Showcase

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-13 14:13:43 +00:00
Ferdinand a90c542d9f feat: detect exact copies via MD5 hash, separate from perceptual duplicates 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-13 15:59:12 +02:00
Ferdinand 2ee0d055fa feat: threshold presets (standard, outdoor, night, portrait, nature, studio) 2026-04-08 14:18:04 +02:00
Ferdinand 3057538642 feat: unified sort overview with n.i.O./i.O. badges, sortable by filename 2026-04-08 13:06:08 +02:00
Ferdinand 35dccd4f1b feat: show i.O. photos in review, lightbox on thumbnail click 2026-04-08 10:40:07 +02:00
Ferdinand 8a80021983 fix: use osascript for folder picker on macOS 2026-04-08 10:31:00 +02:00
Ferdinand 3dcf4bf5e8 feat: native folder picker button via tkinter 2026-04-08 10:23:21 +02:00
Ferdinand c58817becc fix: scope-check paths in /move, update anthropic SDK to 0.89.0 2026-04-07 16:28:33 +02:00
Ferdinand 9f4985a444 docs: add README with setup instructions 2026-04-07 16:25:59 +02:00
Ferdinand 08dabfb57c feat: complete frontend with review flow and XSS-safe DOM rendering 2026-04-07 16:25:41 +02:00
Ferdinand ccf878485d fix: restrict /preview to image extensions only 2026-04-07 13:47:36 +02:00
Ferdinand 8b50a85620 feat: FastAPI backend with /analyze, /move, /preview endpoints 2026-04-07 13:46:37 +02:00
Ferdinand 00f3aeb008 feat: Claude Vision AI analysis integration 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-07 13:43:02 +02:00
Ferdinand 2ed2ae3d16 feat: analyze_folder orchestrates all checks 2026-04-07 13:34:46 +02:00
Ferdinand 76b77046f9 fix: use structured images in duplicate detection tests 2026-04-07 13:33:28 +02:00
Ferdinand 3d22b41bf2 feat: duplicate detection via perceptual hashing 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-07 13:23:01 +02:00
Ferdinand bac279294f feat: exposure detection (over/underexposed) 2026-04-07 13:19:57 +02:00
Ferdinand cf19b8fd7e feat: blur detection via Laplacian variance 2026-04-07 13:15:21 +02:00
Ferdinand dc7cc5c727 fix: pin exact dependency versions 2026-04-07 13:08:38 +02:00
Ferdinand dea58dc75a chore: project setup 2026-04-07 13:07:11 +02:00