22518679443
84%
master: 84%

Ran 28 Feb 2026 10:12AM UTC

Jobs 1

Files 50

Run time 1min

Badge

Embed ▾

Committed 28 Feb 2026 10:09AM UTC coverage: 84.394%. First build

Build # 22518679443

Build Type

Pull #2016

github

Committed by

umputun

Commit Message

fix: IPv6 address truncation and image proxy SSRF vulnerabilities

Replace strings.Split(RemoteAddr, ":") with net.SplitHostPort for correct
IPv6 address extraction in vote deduplication and comment IP tracking.

Harden image proxy: add SSRF-safe transport blocking private/reserved IPs
at connection time with DNS rebinding protection, sanitize error messages
to prevent information leakage, add response size limit via io.LimitReader.

Fix shadowed error variables in BlockedUsers, SetTitle, and Delete methods.
Exclude gosec taint analysis false positives at linter config level.

Pull Request Pull Request #2016: fix: IPv6 address truncation and image proxy SSRF vulnerabilities

Run Details

71 of 96 new or added lines in 7 files covered. (73.96%)

6165 of 7305 relevant lines covered (84.39%)

34.74 hits per line

New Missed Lines in Diff

Lines	Coverage	File
3	92.03	backend/app/store/service/service.go
6	64.29	backend/app/store/service/tree.go
16	80.45	backend/app/rest/proxy/image.go

Jobs

ID	Job ID	Ran	Files	Coverage
1	22518679443.1	28 Feb 2026 10:12AM UTC	50	84.39	GitHub Action Run

umputun / remark42 / 22518679443
84%
master: 84%

README BADGES
x

Markdown

Textile

RDoc

HTML

Rst

New Missed Lines in Diff

Jobs

Source Files on build 22518679443

umputun / remark42 / 22518679443 84% master: 84%

README BADGES x

Markdown

Textile

RDoc

HTML

Rst

New Missed Lines in Diff

Jobs

Source Files on build 22518679443

umputun / remark42 / 22518679443
84%
master: 84%

README BADGES
x