mirror of
https://github.com/reconurge/flowsint.git
synced 2026-07-15 21:23:01 -05:00
pip-audit reported 27 vulnerabilities across 12 packages, including cryptography PYSEC-2026-36 (CVSS 9.8) used by the vault, a starlette Host-header path bypass, and python-multipart arbitrary file write. - cryptography 45.0.7 -> 46.0.7 (pin was capped at <46) - fastapi 0.115 -> 0.136, pulling starlette 0.46 -> 1.2 - python-multipart 0.0.20 -> 0.0.32 - pyjwt, urllib3, aiohttp, lxml, idna, mako and transitive bumps - dev tools: pytest 8 -> 9 (requires pytest-httpx >=0.36), black 25 -> 26 All four module test suites pass (458 tests). pip-audit now reports no known vulnerabilities.
flowsint-core
The repository containing the core components for flowsint.
It contains:
- Celery tasks
- Authentication
- NEO4J database connectors
- POSTGRESQL database connectors
- Enricher base class
- Enricher orchestrator
- Enricher registry
- Encrypted vault
Testing
uv run pytest
⚠️ 🚧 Work in progress !.