This website requires JavaScript.
Explore
Help
Sign In
devs
/
cproof
Watch
1
Star
2
Fork
1
You've already forked cproof
Code
Issues
43
Pull Requests
6
Actions
Packages
Projects
1
Releases
Wiki
Activity
Labels
Milestones
New Issue
Plans (2025-2026)
Label
Show archived labels
Use
alt
+
click/enter
to exclude labels
All labels
No label
Compat/Breaking
Kind/Bug
Kind/Documentation
Kind/Enhancement
Kind/Feature
Kind/Security
Kind/Testing
Priority
Critical
1
Priority
High
2
Priority
Low
4
Priority
Medium
3
Reviewed
Confirmed
1
Reviewed
Duplicate
2
Reviewed
Invalid
3
Reviewed
Won't Fix
3
Status
Abandoned
3
Status
Blocked
1
Status
Need More Info
2
Assignee
Assigned to nobody
Assigned to anybody
admin
jabber.developer
jabber.developer2
8
Backlog
Security compliance: assessment, planning
#144 opened
2026-06-29 17:11:39 +00:00
by
jabber.developer
Kind/Security
Priority
Medium
3
Status
Need More Info
2
[Security] Harden the AI/LLM client — block cleartext egress, enforce TLS verification, add timeouts
#145 opened
2026-07-03 10:26:46 +00:00
by
jabber.developer2
0 / 3
Kind/Security
Priority
Medium
3
[Security] Protect local data at rest — owner-only file permissions, DB integrity checks, secret-free logs
#146 opened
2026-07-03 10:27:30 +00:00
by
jabber.developer2
0 / 5
Kind/Security
Priority
Medium
3
[Security] E2EE & transport correctness — TLS policy floor, OMEMO/OTR/PGP fixes, downgrade/cert-failure visibility
#147 opened
2026-07-03 10:28:09 +00:00
by
jabber.developer2
0 / 12
Kind/Security
Priority
Medium
3
[Security] Harden untrusted-input handling — remote-DoS guards, memory safety, injection defenses
#148 opened
2026-07-03 10:28:45 +00:00
by
jabber.developer2
0 / 9
Kind/Security
Priority
Medium
3
[Security] Build & supply-chain security — blocking CI security gates, toolchain hardening, source/dependency pinning
#149 opened
2026-07-03 10:29:21 +00:00
by
jabber.developer2
0 / 14
Kind/Security
Priority
Medium
3
[Security] Credential & plugin trust — safe secret handling and plugin signature verification before dlopen
#150 opened
2026-07-03 10:29:59 +00:00
by
jabber.developer2
0 / 4
Kind/Security
Priority
Medium
3
[Security] Security process & documentation — vulnerability disclosure, release security gate, policies
#151 opened
2026-07-03 10:30:31 +00:00
by
jabber.developer2
0 / 8
Kind/Security
Priority
Medium
3
0
To Do
0
In Progress
0
Verification
5
Done
Increase software and version privacy
#165 by
jabber.developer
was closed
2026-07-10 10:39:27 +00:00
feat: obfuscate client identity and improve privacy (#165)
#166
Kind/Enhancement
Kind/Security
Priority
High
2
Reviewed
Confirmed
1
PGP messages are not being encrypted if key is expired
#142 by
jabber.developer
was closed
2026-06-29 15:37:43 +00:00
fix(pgp): prevent plaintext fallback in PGP/OX encryption
#143
Kind/Bug
Kind/Security
Priority
Critical
1
Reviewed
Confirmed
1
Make security audit for CWE-134
#85 by
jabber.developer
was closed
2026-03-07 10:58:04 +00:00
fix: CWE-134 format string vulnerability and compiler flags audit
#98
[#49] harden NULL handling and resource lifecycle across UI and SQLite
#47
Kind/Security
Priority
Critical
1
Reviewed
Confirmed
1
Unsafe code
#49 by
jabber.developer
was closed
2026-02-07 10:09:39 +00:00
[#49] harden NULL handling and resource lifecycle across UI and SQLite
#47
Kind/Security
Priority
High
2
Reviewed
Confirmed
1
ci security: Remove
-c http.sslverify=false
from
git clone
commands
#74 by
jabber.developer
was closed
2026-01-21 17:55:14 +00:00
fix: secure git clones by removing insecure sslverify flag (#74)
#75
Kind/Security
Priority
Low
4
Reviewed
Confirmed
1