lundberg

0 followers · 0 following

• Joined on 2025-03-25

Repositories

3

Projects Packages Public activity Starred repositories

lundberg pushed to main at lundberg/porchlight 2026-06-29 07:23:49 +00:00

aff22eb2f4 dev config

8e8c33a407 reference RP

850240ab97 more agent config, mostly about beads

8143db5aea implement ACCR aware authentications

7d06d747d6 add config file to compose

Compare 8 commits »

lundberg pushed to main at SawatoMosswartsEn.../metas 2026-06-26 20:37:23 +00:00

57d348aede set no loot instead of trying to loot key, third attempt

lundberg pushed to main at SawatoMosswartsEn.../metas 2026-06-26 19:59:01 +00:00

b0ba0f3566 set no loot instead of trying to loot key, second attempt

lundberg pushed to main at SawatoMosswartsEn.../metas 2026-06-26 19:54:24 +00:00

fa6b445173 set no loot instead of trying to loot key

lundberg created branch main in lundberg/scriptherder-rs 2026-06-26 12:26:02 +00:00

lundberg pushed to main at lundberg/scriptherder-rs 2026-06-26 12:26:02 +00:00

e300745809 set static build target

ad2bda6b59 remove unused env_logger

5637a552ea support --exclude for job name

f825488351 init port

lundberg created repository lundberg/scriptherder-rs 2026-06-26 12:23:09 +00:00

lundberg pushed to main at lundberg/porchlight 2026-06-10 11:08:58 +00:00

3c5451b9c2 fix(csrf): replay request body consumed during token validation

lundberg deleted branch fix/csrf-body-replay from lundberg/porchlight 2026-06-10 11:08:58 +00:00

lundberg merged pull request lundberg/porchlight#1 2026-06-10 11:08:57 +00:00

fix(csrf): replay request body consumed during token validation

lundberg created pull request lundberg/porchlight#1 2026-06-10 11:07:49 +00:00

fix(csrf): replay request body consumed during token validation

lundberg pushed to fix/csrf-body-replay at lundberg/porchlight 2026-06-10 11:07:22 +00:00

3c5451b9c2 fix(csrf): replay request body consumed during token validation

lundberg created branch fix/csrf-body-replay in lundberg/porchlight 2026-06-10 11:05:41 +00:00

lundberg pushed to fix/csrf-body-replay at lundberg/porchlight 2026-06-10 11:05:41 +00:00

2ad66d020f fix(csrf): replay request body consumed during token validation

lundberg pushed to main at lundberg/porchlight 2026-06-10 08:03:19 +00:00

27763d19ea fix(security): don't mint new ID tokens on refresh; confirm offline_access gating

519e3659a1 feat(security): add baseline security-header middleware

c7550cbf09 fix(security): lock down signing-key file permissions

cba63280fb fix(security): set an explicit session cookie lifetime

Compare 4 commits »

lundberg pushed to main at SawatoMosswartsEn.../metas 2026-06-09 21:06:01 +00:00

5845edfc6e Change to once

lundberg pushed to main at lundberg/porchlight 2026-06-05 12:14:03 +00:00

cf2754f302 fix(security): require a configured session secret in production

c175633980 fix(security): POST WebAuthn login-begin; render JS errors as text

1571706d21 fix(security): reject WebAuthn signature-counter rollback

f03d509eb4 fix(security): enforce globally-unique WebAuthn credential_id

0f04a7daf9 feat(security): make WebAuthn user verification configurable

Compare 5 commits »

lundberg pushed to main at lundberg/porchlight 2026-06-05 11:42:31 +00:00

baef5e0e2e fix(security): require CSRF-protected POST to consume a registration link

efb265a68b fix(security): make rate-limit client IP proxy-aware

aedb451128 fix(security): prevent removing the last active admin

e54764cda9 fix(security): guard admin credential deletion against lockout

1bb76899a5 fix(security): make self-service last-credential guard atomic

Compare 15 commits »

lundberg pushed to main at lundberg/porchlight 2026-06-03 14:36:18 +00:00

2fc2bdcabb test: allow disabling rate limiting for e2e runs

bcfe3a2a15 fix: keep password form visible on validation error

Compare 2 commits »

lundberg pushed to main at SawatoMosswartsEn.../metas 2026-05-23 19:27:12 +00:00

840baab7ba fixed broken nav