0x5t4l1n/Keylogger
1
0
Fork 0
mirror of https://github.com/0x5t4l1n/Keylogger.git synced 2026-05-26 11:35:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix: resolve codeql-sensitive logging and final review findings

Browse Source 
Agent-Logs-Url: https://github.com/Stalin-143/Keylogger/sessions/cef34b0e-605b-4ab9-8da6-2559d1dd4529

Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
This commit is contained in:
copilot-swe-agent[bot]
2026-04-19 04:47:17 +00:00
committed by GitHub
parent 37ab7a3c67
commit b3e4456f55
1 changed files with 12 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
src/server.py
+12 -5
View File
@@ -38,6 +38,8 @@ CONFIG = {
'api_key': None 'api_key': None
} }
MAX_LOG_PAYLOAD_BYTES = 64 * 1024 MAX_LOG_PAYLOAD_BYTES = 64 * 1024
MIN_PASSWORD_LENGTH = 12
MIN_API_KEY_LENGTH = 24
MIN_API_KEY_UNIQUE_CHARS = 8 MIN_API_KEY_UNIQUE_CHARS = 8
@@ -128,6 +130,8 @@ def has_sufficient_key_entropy(value):
Returns: Returns:
bool: True when key has enough character variety bool: True when key has enough character variety
""" """
if not value:
return False
if len(set(value)) < MIN_API_KEY_UNIQUE_CHARS: if len(set(value)) < MIN_API_KEY_UNIQUE_CHARS:
return False return False
if value.count(value[0]) == len(value): if value.count(value[0]) == len(value):
@@ -373,21 +377,24 @@ def main():
print("ERROR: Default password 'admin' is not allowed.") print("ERROR: Default password 'admin' is not allowed.")
sys.exit(1) sys.exit(1)
if len(CONFIG['password']) < 12 or not is_strong_password(CONFIG['password']): if len(CONFIG['password']) < MIN_PASSWORD_LENGTH or not is_strong_password(CONFIG['password']):
print("ERROR: Weak password detected.") print("ERROR: Weak password detected.")
print("Please use at least 12 characters with uppercase, lowercase, number, and special character.") print(
f"Please use at least {MIN_PASSWORD_LENGTH} characters with uppercase, lowercase, "
"number, and special character."
)
sys.exit(1) sys.exit(1)
if not CONFIG['api_key']: if not CONFIG['api_key']:
print("ERROR: LOG_INGEST_API_KEY is required.") print("ERROR: LOG_INGEST_API_KEY is required.")
sys.exit(1) sys.exit(1)
if len(CONFIG['api_key']) < 24: if len(CONFIG['api_key']) < MIN_API_KEY_LENGTH:
print("ERROR: LOG_INGEST_API_KEY must be at least 24 characters.") print(f"ERROR: LOG_INGEST_API_KEY must be at least {MIN_API_KEY_LENGTH} characters.")
sys.exit(1) sys.exit(1)
if not has_sufficient_key_entropy(CONFIG['api_key']): if not has_sufficient_key_entropy(CONFIG['api_key']):
print(f"ERROR: LOG_INGEST_API_KEY must include at least {MIN_API_KEY_UNIQUE_CHARS} unique characters.") print(f"ERROR: Ingestion API key must include at least {MIN_API_KEY_UNIQUE_CHARS} unique characters.")
sys.exit(1) sys.exit(1)
# Get server settings # Get server settings