captain-claude/apps/captain-mobile/captain_api.py at main

Files

ARCHITECT f91485f866 Security and multi-instance improvements

captain_api.py:
- Generate random JWT_SECRET if not configured (with warning)
- Restrict CORS to specific origins
- Add POST /sessions endpoint to create screen sessions
- Sanitize session names (prevent command injection)
- Validate file paths to upload directory only
- Improve JWT error handling
- Set TERM environment for screen sessions

flow-ui: Add multi-instance support with server validation
mindlink: Add multi-instance support with category filtering

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-17 11:13:40 +00:00

20 KiB

Raw Permalink Blame History

View Raw

20 KiB Raw Permalink Blame History

20 KiB

Raw Permalink Blame History