Antoine Martin 7e3c8b8f28 lohr: validate webhook signature ... Previously lohr was unusable in a production setting, anyone could forge a malicious webhook and either: - mirror a private repo of yours to another remote they own - wipe a repo of yours by forcing mirroring from an empty mirror This is no longer the case!		2021-03-30 11:33:42 +02:00
..
gitea.rs	first working POC	2021-03-29 17:10:53 +02:00
job.rs	job: remove redundant repo name from log	2021-03-29 20:54:19 +02:00
main.rs	lohr: validate webhook signature	2021-03-30 11:33:42 +02:00
settings.rs	lohr: add default and additional remotes	2021-03-29 20:52:04 +02:00
signature.rs	lohr: validate webhook signature	2021-03-30 11:33:42 +02:00