jyapayne/kaboot
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update docker file

Browse source
This commit is contained in:
Joey Yakimowich-Payne 2026-02-03 09:09:28 -07:00
commit a00cc7e3aa
2 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

2
docs/SECURITY_PLAN.md
View file

@ -79,7 +79,7 @@ This plan turns the audit findings into a tracked, testable remediation roadmap.
### 1) Games Endpoint Risk Reduction
- [x] Increase PIN entropy or move to a join token.
- [ ] Require host proof (secret or auth) for state mutation endpoints.
- [x] Require host proof (secret or auth) for state mutation endpoints.
- [ ] Add per-endpoint throttling for public lookups.
### 2) Logging and Error Hygiene

4
server/sandbox/Dockerfile
View file

@ -1,8 +1,8 @@
FROM node:22-alpine
RUN apk add --no-cache libreoffice curl \
&& addgroup -g 1000 sandbox \
&& adduser -u 1000 -G sandbox -s /bin/sh -D sandbox \
&& addgroup -S sandbox \
&& adduser -S -G sandbox -s /bin/sh -D sandbox \
&& mkdir -p /app /tmp/convert \
&& chown -R sandbox:sandbox /app /tmp/convert