Security, code quality and frontend improvements

- Move SECRET_KEY out of docker-compose into .env (env_file), add .env.example
- Add flask-limiter with 10 req/min on login route; introduce util/limiter.py
- Replace direct mysql.connector.connect() calls with MySQLConnectionPool via util/db_pool.py
- Fix deprecated datetime.utcnow() -> datetime.now(timezone.utc) in auth/login.py
- Remove dead /api/scripts 410 route from admin.py
- Add MD5 security warning in Md5Tool.jsx
- Add ErrorBoundary component and wrap App.jsx
- Expand README with setup guide, screenshot and project structure

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

This commit is contained in:

Nirodan

2026-04-24 13:52:53 +02:00

parent 8e2c2d740e

commit 80ec5eca7b

12 changed files with 232 additions and 75 deletions

backend/requirements.txt

View File

@@ -1,5 +1,6 @@
 flask
 flask-cors
 flask-limiter
 mysql-connector-python
 werkzeug>=2.3
 PyJWT