shopify-ai-backup

southseact-3d/shopify-ai-backup

Fork 0

Commit Graph

Author	SHA1	Message	Date
southseact-3d	25ee088d6c	test: Add comprehensive test coverage for critical modules - Add tests for chat/encryption.js: encryption/decryption, hashing, token generation - Add tests for chat/tokenManager.js: JWT tokens, device fingerprints, cookie handling - Add tests for chat/prompt-sanitizer.js: security patterns, attack detection, obfuscation - Add tests for admin panel: session management, rate limiting, user/token management - Add tests for OpenCode write tool: file creation, overwrites, nested directories - Add tests for OpenCode todo tools: todo CRUD operations - Add tests for Console billing/account/provider: schemas, validation, price utilities These tests cover previously untested critical paths including: - Authentication and security - Payment processing validation - Admin functionality - Model routing and management - Account management	2026-02-18 16:43:10 +00:00
southseact-3d	0f631dc99a	feat: implement prompt injection protection and OpenRouter paid API key support - Add comprehensive prompt injection security module with 160+ attack pattern detection - Implement security checks in message handling with proper blocking and user feedback - Add OpenRouter paid API key support (OPENROUTER_PAID_API_KEY) for premium models - Update model discovery and chat functions to use paid API key for premium models - Add comprehensive test suite with 434 test cases (98.39% accuracy) - Tests cover legitimate WordPress development queries, injection attacks, obfuscated attempts - Improve builder loading indicators with text-based progress (building/planning) - Replace spinning animations with 'Starting build/planning process' messages	2026-02-08 13:23:59 +00:00

Author

SHA1

Message

Date

southseact-3d

25ee088d6c

test: Add comprehensive test coverage for critical modules

- Add tests for chat/encryption.js: encryption/decryption, hashing, token generation
- Add tests for chat/tokenManager.js: JWT tokens, device fingerprints, cookie handling
- Add tests for chat/prompt-sanitizer.js: security patterns, attack detection, obfuscation
- Add tests for admin panel: session management, rate limiting, user/token management
- Add tests for OpenCode write tool: file creation, overwrites, nested directories
- Add tests for OpenCode todo tools: todo CRUD operations
- Add tests for Console billing/account/provider: schemas, validation, price utilities

These tests cover previously untested critical paths including:
- Authentication and security
- Payment processing validation
- Admin functionality
- Model routing and management
- Account management

2026-02-18 16:43:10 +00:00

southseact-3d

0f631dc99a

feat: implement prompt injection protection and OpenRouter paid API key support

- Add comprehensive prompt injection security module with 160+ attack pattern detection
- Implement security checks in message handling with proper blocking and user feedback
- Add OpenRouter paid API key support (OPENROUTER_PAID_API_KEY) for premium models
- Update model discovery and chat functions to use paid API key for premium models
- Add comprehensive test suite with 434 test cases (98.39% accuracy)
- Tests cover legitimate WordPress development queries, injection attacks, obfuscated attempts
- Improve builder loading indicators with text-based progress (building/planning)
- Replace spinning animations with 'Starting build/planning process' messages

2026-02-08 13:23:59 +00:00

2 Commits