Sebastion bc06965ec3 fix(security): move hardcoded HMAC secret to environment variable ... The benchmark submission HMAC signing secret was hardcoded in source code (CWE-798), allowing anyone reading the open-source repository to extract it and forge benchmark submissions to benchmark.projectnomad.us. - Read BENCHMARK_HMAC_SECRET from env instead of embedding it in code - Register the variable in the AdonisJS env schema (optional) - Add a guard in submitToRepository() that rejects submissions when the secret is not configured - Document the new variable in .env.example The benchmark server operator must now inject the real secret via the BENCHMARK_HMAC_SECRET environment variable (e.g. in docker-compose or a .env file). The previously committed secret should be rotated server-side.		2026-03-25 08:00:43 +00:00
..
controllers	fix(downloads): allow users to dismiss failed downloads	2026-03-20 11:46:10 -07:00
exceptions	fix(Docs): documentation renderer fixes	2025-12-23 16:00:33 -08:00
jobs	fix: prevent embedding retry storm when Ollama is not installed	2026-03-20 11:46:10 -07:00
middleware	feat: background job overhaul with bullmq	2025-12-06 23:59:01 -08:00
models	feat: support for updating services	2026-03-11 14:08:09 -07:00
services	fix(security): move hardcoded HMAC secret to environment variable	2026-03-25 08:00:43 +00:00
utils	fix(disk): correct storage display by fixing device matching and dedup mount entries	2026-03-20 11:46:10 -07:00
validators	feat(AI Assistant): improved state management and performance	2026-03-11 14:08:09 -07:00