Lukas
57eacf39ba
TASK-027: The compose.debug.yml file had a publicly known weak session secret as a fallback value. This has been replaced with an explicit requirement via the :? bash parameter expansion pattern, forcing developers to set BANGUI_SESSION_SECRET. Changes: - Changed BANGUI_SESSION_SECRET fallback to use :? pattern with clear error message - Created .env.example with placeholder values and generation instructions - Added first-run setup instructions to Instructions.md - Verified .env is already in .gitignore The error message provides clear guidance: 'BANGUI_SESSION_SECRET must be set — generate with: python -c "import secrets; print(secrets.token_hex(32))"' Severity: Medium - Prevents exposure of session secret in repositories - Ensures each environment has unique secrets - Aligns with production compose.prod.yml which already uses this pattern Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
4.2 KiB
4.2 KiB