oib/aitbc
1
0
Fork 0
Code Issues Pull Requests Actions 21 Packages Projects Releases Wiki Activity
Files
13ada12b49cca9a8bb5f0c35f1de1cc8b7531b9c
aitbc/apps/blockchain-node
History
aitbc 13ada12b49 Security fixes: wildcard CORS, JWT auth, zero-address fallback 
Phase 1 security remediation from codebase analysis:

CORS fixes:
- Replace wildcard CORS with safe localhost defaults in agent-coordinator
- Replace wildcard CORS with safe localhost defaults in marketplace
- Fix 8 additional wildcard CORS instances in coordinator-api apps:
  - hermes_enhanced_app.py
  - api_gateway.py
  - modality_optimization_app.py
  - multimodal_app.py
  - gpu_multimodal_app.py
  - marketplace_enhanced_app.py
  - advanced_ai_service.py
  - adaptive_learning_app.py
- Add CORS configuration security tests

Blockchain-node auth fixes:
- JWT authentication now fails closed with clear error message
- X-Wallet-Address already gated behind TRUST_X_WALLET_ADDRESS env var
- Remove zero-address fallback from arbitration vote submission
- Add regression test for zero-address rejection in arbitration

Tests:
- Update dispute auth tests to reflect new JWT error message
- Add test_arbitration_vote_zero_address_rejected
- Add test_cors_configuration.py with 5 CORS validation tests
2026-05-24 19:31:26 +02:00
..
docs
chore: normalize file permissions across repository
2026-03-08 11:26:18 +01:00
migrations
Add __init__.py files to bare Python packages
2026-04-30 10:34:11 +02:00
observability
chore: normalize file permissions across repository
2026-03-08 11:26:18 +01:00
scripts
fix: use current UTC timestamp for genesis blocks and fix lambda closure bugs
2026-05-19 16:49:17 +02:00
src
Security fixes: wildcard CORS, JWT auth, zero-address fallback
2026-05-24 19:31:26 +02:00
tests
fix: replace datetime.UTC with timezone.utc for Python 3.12+ compatibility
2026-05-09 12:03:26 +02:00
.env.example
Add default_peer_rpc_url to blockchain node configuration and refactor env setup scripts
2026-05-02 15:35:34 +02:00
alembic.ini
chore: normalize file permissions across repository
2026-03-08 11:26:18 +01:00
create_enhanced_genesis.py
refactor: update database schema and fix chain_id handling across components
2026-03-23 12:11:34 +01:00
create_genesis.py
fix: replace datetime.UTC with timezone.utc for Python 3.12+ compatibility
2026-05-09 12:03:26 +02:00
fix_accounts.py
fix: replace datetime.UTC with timezone.utc for Python 3.12+ compatibility
2026-05-09 12:03:26 +02:00
fix_block_metadata2.py
feat: major infrastructure refactoring and optimization
2026-03-29 11:52:37 +02:00
fix_block_metadata.py
feat: major infrastructure refactoring and optimization
2026-03-29 11:52:37 +02:00
fix_db.py
feat: implement all placeholder implementations from codemap
2026-05-03 23:30:57 +02:00
fix_env_path.py
Update fix_env_path.py to use blockchain.env instead of legacy .env
2026-05-09 19:48:48 +02:00
fix_tx_metadata2.py
feat: major infrastructure refactoring and optimization
2026-03-29 11:52:37 +02:00
fix_tx_metadata.py
feat: major infrastructure refactoring and optimization
2026-03-29 11:52:37 +02:00
get_env.py
refactor: update database schema and fix chain_id handling across components
2026-03-23 12:11:34 +01:00
init_genesis.py
chore: update file permissions to executable across repository
2026-03-06 22:17:54 +01:00
poetry.lock
security: update poetry.lock files for blockchain-node and wallet
2026-04-23 17:12:51 +02:00
pyproject.toml
Remove duplicate dependencies from app-specific pyproject.toml files
2026-04-30 10:47:50 +02:00
README.md
Move blockchain app READMEs to centralized documentation
2026-04-23 12:24:48 +02:00

README.md

Blockchain Node

Documentation has moved to: docs/apps/blockchain/blockchain-node.md

This file has been migrated to the central documentation location. Please update your bookmarks and references to point to the new location.

For the complete documentation including architecture, setup, API reference, and troubleshooting, see the Blockchain Node documentation.