hai/gstack
1
0
Fork 0
mirror of https://github.com/garrytan/gstack.git synced 2026-05-10 14:38:24 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
da30faae85e415d48c342c7754a5d2c97bbddb12
gstack/browse/src
History
Garry Tan da30faae85 feat: add GET /file endpoint for remote agent file retrieval 
Remote paired agents can now retrieve downloaded files over HTTP.
TEMP_DIR only (not cwd) to prevent project file exfiltration.

- Bearer token auth (root or scoped with read scope)
- Path validation via validateTempPath() (symlink-aware)
- 200MB size cap
- Extension-based MIME detection
- Zero-copy streaming via Bun.file()

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-07 19:03:21 -10:00
..
activity.ts
feat: content security — 4-layer prompt injection defense for pair-agent (#815)
2026-04-06 14:41:06 -07:00
browser-manager.ts
feat: content security — 4-layer prompt injection defense for pair-agent (#815)
2026-04-06 14:41:06 -07:00
buffers.ts
feat: Phase 3.5 — cookie import, QA testing, team retro (v0.3.1) (#29)
2026-03-13 00:31:41 -07:00
bun-polyfill.cjs
fix: Windows support — Node.js server fallback for Playwright (#255)
2026-03-20 12:22:11 -07:00
cdp-inspector.ts
fix: community security wave — 8 PRs, 4 contributors (v0.15.13.0) (#847)
2026-04-06 00:47:04 -07:00
cli.ts
feat: default paired agents to full access, split SCOPE_CONTROL
2026-04-07 18:58:56 -10:00
commands.ts
feat: add download, scrape, and archive commands
2026-04-07 19:02:34 -10:00
config.ts
fix: security wave 1 — 14 fixes for audit #783 (v0.15.7.0) (#810)
2026-04-04 22:12:04 -07:00
content-security.ts
feat: content security — 4-layer prompt injection defense for pair-agent (#815)
2026-04-06 14:41:06 -07:00
cookie-import-browser.ts
feat: Wave 3 — community bug fixes & platform support (v0.11.6.0) (#359)
2026-03-23 22:15:23 -07:00
cookie-picker-routes.ts
fix: security wave 1 — 14 fixes for audit #783 (v0.15.7.0) (#810)
2026-04-04 22:12:04 -07:00
cookie-picker-ui.ts
feat: GStack Browser — double-click AI browser with anti-bot stealth (#695)
2026-04-04 10:17:05 -07:00
find-browse.ts
feat: multi-agent support — gstack works on Codex, Gemini CLI, and Cursor (v0.9.0) (#226)
2026-03-19 18:20:50 -07:00
media-extract.ts
feat: add media and data commands for page content extraction
2026-04-07 19:01:09 -10:00
meta-commands.ts
refactor: extract path-security.ts shared module
2026-04-07 18:56:46 -10:00
path-security.ts
refactor: extract path-security.ts shared module
2026-04-07 18:56:46 -10:00
platform.ts
fix: Windows support — Node.js server fallback for Playwright (#255)
2026-03-20 12:22:11 -07:00
read-commands.ts
feat: add media and data commands for page content extraction
2026-04-07 19:01:09 -10:00
server.ts
feat: add GET /file endpoint for remote agent file retrieval
2026-04-07 19:03:21 -10:00
sidebar-agent.ts
fix: community security wave — 8 PRs, 4 contributors (v0.15.13.0) (#847)
2026-04-06 00:47:04 -07:00
sidebar-utils.ts
fix: sidebar agent uses real tab URL instead of stale Playwright URL (v0.12.6.0) (#544)
2026-03-26 22:07:03 -06:00
snapshot.ts
feat: content security — 4-layer prompt injection defense for pair-agent (#815)
2026-04-06 14:41:06 -07:00
token-registry.ts
feat: add download, scrape, and archive commands
2026-04-07 19:02:34 -10:00
url-validation.ts
fix: community security wave — 8 PRs, 4 contributors (v0.15.13.0) (#847)
2026-04-06 00:47:04 -07:00
welcome.html
feat: GStack Browser — double-click AI browser with anti-bot stealth (#695)
2026-04-04 10:17:05 -07:00
write-commands.ts
feat: add download, scrape, and archive commands
2026-04-07 19:02:34 -10:00