tmdinosaurcenter/kiosk-guestbook
1
0
Fork 0
mirror of https://github.com/tmdinosaurcenter/kiosk-guestbook.git synced 2026-06-03 21:59:13 -06:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 613a9dc590 ci: ignore CVE-2026-4878 and CVE-2026-33845 (no fix available) main steve 2026-05-03 16:21:24 -06:00
  • c371b9a04f ci: suppress 3 unfixed Debian CVEs via .trivyignore steve 2026-05-03 09:35:38 -06:00
  • d57ba928c4 chore(deps): bump Werkzeug to >=3.1.8 and Flask-Login to >=0.6.3 steve 2026-04-27 08:53:02 -06:00
  • c1db6ee692 Merge pull request #29 from tmdinosaurcenter/dependabot/pip/flask-limiter-gte-4.1.1 steve 2026-04-27 08:45:17 -06:00
  • 523a9e22c2 Merge pull request #28 from tmdinosaurcenter/dependabot/pip/email-validator-gte-2.3.0 steve 2026-04-27 08:45:09 -06:00
  • f5af8b556f Merge pull request #27 from tmdinosaurcenter/dependabot/pip/flask-wtf-gte-1.3.0 steve 2026-04-27 08:45:05 -06:00
  • 211c94b8c8 Merge pull request #26 from tmdinosaurcenter/dependabot/github_actions/aquasecurity/trivy-action-0.36.0 steve 2026-04-27 08:45:01 -06:00
  • a7350bc3d5 chore(deps): update flask-limiter requirement from >=3.0 to >=4.1.1 dependabot[bot] 2026-04-27 11:57:46 +00:00
  • e3ed22a201 chore(deps): update email-validator requirement from >=2.0 to >=2.3.0 dependabot[bot] 2026-04-27 11:57:43 +00:00
  • d37887fb93 chore(deps): update flask-wtf requirement from >=1.2 to >=1.3.0 dependabot[bot] 2026-04-27 11:57:40 +00:00
  • 519911c8f5 chore(deps): bump aquasecurity/trivy-action from 0.35.0 to 0.36.0 dependabot[bot] 2026-04-27 11:57:26 +00:00
  • b20e118def feat: add offline queue for kiosk form submissions steve 2026-03-29 20:22:25 -06:00
  • 6577a733c6 feat: add /api/csrf endpoint for offline queue token refresh steve 2026-03-29 20:22:07 -06:00
  • 7914ac1ed7 feat: add summary stats bar to admin page steve 2026-03-29 19:48:24 -06:00
  • d1d2065da2 feat: add thank-you confirmation screen after form submission steve 2026-03-29 19:48:15 -06:00
  • 047f57513d feat: add PWA support and mobile admin card layout steve 2026-03-29 19:20:29 -06:00
  • 3057201102 feat: add PWA manifest and service worker routes steve 2026-03-29 19:20:06 -06:00
  • 12bc0cd4a1 fix(ci): update trivy-action to v0.35.0 steve 2026-03-29 07:30:35 -06:00
  • bc8d4f9fe5 fix(github) bumped trivy to latest version v2.4.0 steve 2026-03-28 23:29:00 -06:00
  • aa7fefe497 ci: scan Docker image for CRITICAL/HIGH CVEs with Trivy steve 2026-03-28 23:23:33 -06:00
  • 898441af0c fix: add set -e and gunicorn worker timeout to entrypoint steve 2026-03-28 23:23:14 -06:00
  • 617aa5f028 fix: enforce max input lengths on guestbook form steve 2026-03-28 23:18:11 -06:00
  • ecdcc044b7 feat: add CSRF protection to all POST forms steve 2026-03-28 23:17:26 -06:00
  • 9ad7128619 feat: add security headers, session hardening, and admin cache control steve 2026-03-28 23:16:30 -06:00
  • 61a298a735 fix: rate-limit admin login and API endpoint steve 2026-03-28 23:16:08 -06:00
  • 4d58e0f0a1 fix: abort startup if SECRET_KEY is not set steve 2026-03-28 23:15:51 -06:00
  • 53741a4cbf Merge pull request #25 from tmdinosaurcenter/dependabot/docker/python-3.14-slim steve 2026-03-28 23:09:34 -06:00
  • 4c691ab31a Merge pull request #24 from tmdinosaurcenter/dependabot/github_actions/docker/setup-buildx-action-4 steve 2026-03-28 23:09:32 -06:00
  • 77c377ab51 Merge pull request #23 from tmdinosaurcenter/dependabot/github_actions/actions/checkout-6 steve 2026-03-28 23:09:24 -06:00
  • ae5002d407 Merge pull request #22 from tmdinosaurcenter/dependabot/github_actions/docker/login-action-4 steve 2026-03-28 23:09:21 -06:00
  • 5f71641cf0 Bump python from 3.9-slim to 3.14-slim dependabot[bot] 2026-03-29 05:05:28 +00:00
  • c1206a244c Bump docker/setup-buildx-action from 2 to 4 dependabot[bot] 2026-03-29 05:04:59 +00:00
  • 8230ae1c1c Bump actions/checkout from 4 to 6 dependabot[bot] 2026-03-29 05:04:55 +00:00
  • c55037b37b Bump docker/login-action from 2 to 4 dependabot[bot] 2026-03-29 05:04:51 +00:00
  • 36f8a01999 ci: add Dependabot config and issue templates steve 2026-03-28 23:04:13 -06:00
  • 4f675fe74c feat: display admin timestamps in America/Denver time steve 2026-03-28 22:58:37 -06:00
  • d5eac47ceb feat: apply TMDC brand fonts to guestbook page steve 2026-03-11 18:05:08 -06:00
  • 9ebac80f35 feat: add webhook integration for new guestbook submissions steve 2026-03-11 15:30:31 -06:00
  • 2d4eac6583 refactor: migrate admin auth from HTTP Basic to Flask-Login sessions v2.3.0 steve 2026-03-10 11:41:16 -06:00
  • 94d6690e57 fix: add logout button to admin pages steve 2026-03-10 10:39:10 -06:00
  • 4f0a7df22a feat: add role-based access control with database-backed users v2.2.0 steve 2026-03-10 10:29:42 -06:00
  • b2e7eeb570 feat: add hardened HTTP Basic Auth for admin interface v2.1.0 steve 2026-03-10 10:07:09 -06:00
  • 047f1a8c8b feat: add paginated admin interface for viewing and deleting entries steve 2026-03-10 09:57:28 -06:00
  • c2b6c1b460 fix: add Bearer token authentication to ntfy notification steve 2026-03-09 23:47:01 -06:00
  • e733e7b092 fix: enable verbose curl output for ntfy debugging steve 2026-03-09 23:41:46 -06:00
  • 9fe3bc43d0 chore: add TODO for admin interface steve 2026-03-09 23:37:13 -06:00
  • a0e6042300 feat: add ntfy push notification on successful Docker Hub push steve 2026-03-09 23:16:54 -06:00
  • 05bcf10614 fix: resolve volume permission error for non-root container user steve 2026-03-09 23:07:49 -06:00
  • 78ef3eeb85 refactor: replace init_db with lightweight schema migration system v2.0.0 steve 2026-03-09 21:01:35 -06:00
  • 46dca45e04 fix: correct WORKERS var, export path, and seamless marquee loop steve 2026-03-09 20:52:00 -06:00
  • 2dc276f098 fix: improve profanity filter to catch spacing and embedding bypasses steve 2026-03-09 20:48:26 -06:00
  • e6d742f92e fix: replace regex email validation with email-validator steve 2026-03-09 20:36:54 -06:00
  • e0d72f8057 feat: add rate limiting to form submission steve 2026-03-09 20:29:17 -06:00
  • d98dd1518b Remove CSRF TODO — closed as won't fix in #11 steve 2026-03-09 20:26:42 -06:00
  • 920463b4a7 fix: add database error handling throughout app steve 2026-03-09 20:24:09 -06:00
  • a178e6193b Keep PII logging as intentional — close #8 steve 2026-03-09 20:19:28 -06:00
  • 0c4d3ab15d perf: add DB indexes and cap guest queries at 100 rows steve 2026-03-09 20:17:34 -06:00
  • 3e17574fe6 fix: upgrade to Flask 3.x and replace before_first_request steve 2026-03-09 20:15:14 -06:00
  • 0c8491ce7a feat: run container as non-root user steve 2026-03-09 20:13:21 -06:00
  • 1a0a1371bc fix: correct marquee scroll speed and add code TODOs steve 2026-03-09 19:30:13 -06:00
  • d260bc6f9f docs: remove outdated project structure section from README steve 2025-04-04 18:48:20 -06:00
  • 412d373421 docs: add Portainer setup instructions to README steve 2025-04-04 16:28:34 -06:00
  • bae3ddda32 - make the newsletter checkbox generic - Added LOGO_URL to example.env and index.html template - Rewrote README.md to reflect current methods of installing and configuring 1.1.0 steve 2025-04-04 15:36:12 -06:00
  • 85a0096846 fix: move index.html template to correct Flask templates directory steve 2025-04-04 15:04:46 -06:00
  • d76a95e57b chore: move entrypoint.sh to project root steve 2025-04-04 14:59:05 -06:00
  • 91d4715e19 fix: correct DATABASE_PATH in example.env steve 2025-04-04 14:55:38 -06:00
  • ffa09e3daa Making the header/title are a variable Refactor Dockerfile and entrypoint script; add index.html.template and update example.env steve 2025-04-04 14:46:29 -06:00
  • dfb350f8a8 chore: remove dev Dockerfile and add example docker-compose steve 2025-04-04 14:19:13 -06:00
  • ff175edcf6 chore: remove committed docker-compose.yml steve 2025-04-04 14:20:04 -06:00
  • 2bbe30e1e0 ci: add Docker Hub push step to workflow Steve Dogiakos 2025-04-04 14:07:11 -06:00
  • af3ad37b4c chore: remove committed .env file steve 2025-04-04 13:51:14 -06:00
  • bc9fe0909e Created example.env so I don't have to keep messing with my setup. Steve Dogiakos 2025-04-04 13:49:05 -06:00
  • c04ffaf16d chore: add MIT license steve 2025-04-02 19:47:44 -06:00
  • 5091518bd2 ci: update Docker image workflow steve 2025-04-02 19:36:36 -06:00
  • caf6f9e970 docs: update README steve 2025-04-02 19:28:21 -06:00
  • 20dd611b70 ci: add Docker build GitHub Actions workflow steve 2025-04-02 18:16:53 -06:00
  • ada25eba70 fix: remove duplicate email field introduced in previous commit Steve Dogiakos 2025-04-02 15:48:56 -06:00
  • f34c163a76 Add API to app.py so I can use n8n to export the entries. Added opt-out newsletter checkbox and the appropriate places to insert it to the db. Steve Dogiakos 2025-04-02 15:31:33 -06:00
  • cfcd301eb0 ci: remove Docker Hub push workflow Steve Dogiakos 2025-04-02 09:44:59 -06:00
  • 86529e0728 Rename production.Dockerfile to development.Dockerfile. It was a late night, ok? Updated README.md to include removal of DB from repo. Steve Dogiakos 2025-04-02 08:08:36 -06:00
  • dba4c21a5e ci: add Docker image build workflow steve 2025-04-02 08:38:24 -06:00
  • 1cb9dae204 chore: remove committed database file 1.0.0 steve 2025-04-02 08:05:08 -06:00
  • f528ef6f38 docs: add screenshot to README and update .gitignore Steve Dogiakos 2025-04-02 08:02:47 -06:00
  • c8c9d5ecd6 fix: update guestbook_export.py export logic Steve Dogiakos 2025-04-01 22:17:18 -06:00
  • d126d18fe9 chore: add Python-focused .gitignore Steve Dogiakos 2025-04-01 22:12:24 -06:00
  • 5f5dd41586 docs: update project structure section in README Steve Dogiakos 2025-04-01 22:09:54 -06:00
  • fdc4d098cc docs: revise README to reflect current project state Steve Dogiakos 2025-04-01 22:04:35 -06:00
  • 75e69d5144 chore: lint and update docker-compose.yml Steve Dogiakos 2025-04-01 21:53:25 -06:00
  • 81bf13001a feat: add logo to page header Steve Dogiakos 2025-04-01 21:00:24 -06:00
  • 2cfe3f59fe chore(deps): bump Werkzeug to 3.0.6 Steve Dogiakos 2025-04-01 19:56:39 -06:00
  • 5b5b80a5ef chore(deps): merge Dependabot Flask 2.2.5 bump steve 2025-04-01 19:53:33 -06:00
  • e5cf293adc chore(deps): bump Flask from 2.1.1 to 2.2.5 dependabot[bot] 2025-04-02 01:46:15 +00:00
  • 6b26e22709 feat: reveal comment field dynamically after required fields are filled Steve Dogiakos 2025-04-01 19:19:28 -06:00
  • 62a3bdd222 feat: add MailChimp export script Steve Dogiakos 2025-04-01 18:48:04 -06:00
  • cb9fdc6b79 feat: make email optional and add form instructions Steve Dogiakos 2025-04-01 18:38:39 -06:00
  • f676e4d6ad feat: add scrolling marquee to display recent guests Steve Dogiakos 2025-04-01 18:33:06 -06:00
  • 1175fe2236 feat: add basic application logging Steve Dogiakos 2025-04-01 18:03:33 -06:00
  • 3b28b22627 feat: add server-side input validation Steve Dogiakos 2025-04-01 18:01:58 -06:00
  • 03d83606b7 feat: split name into first/last and simplify form fields Steve Dogiakos 2025-04-01 17:40:08 -06:00
  • 79a28cfd8e chore: merge html-form branch steve 2025-04-01 17:28:27 -06:00