ci: prune dangling Docker images after deploy

fix: limit request body size on auth form handlers (gosec G120)
2026-03-11 10:22:55 -10:00 · 2026-03-11 10:19:03 -10:00
2 changed files with 5 additions and 0 deletions
--- a/.gitea/workflows/deploy.yml
+++ b/.gitea/workflows/deploy.yml
@@ -66,3 +66,6 @@ jobs:
          VERSION=$(git describe --tags --always)
          COMMIT=$(git rev-parse --short HEAD)
          VERSION=$VERSION COMMIT=$COMMIT docker compose up -d --build --remove-orphans
+
+      - name: Prune unused images
+        run: docker image prune -f
--- a/features/auth/handlers.go
+++ b/features/auth/handlers.go
@@ -39,6 +39,7 @@ func HandleRegisterPage() http.HandlerFunc {

 func HandleLogin(queries *repository.Queries, sessions *scs.SessionManager) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
+		r.Body = http.MaxBytesReader(w, r.Body, 1024)
 		username := r.FormValue("username")
 		password := r.FormValue("password")

@@ -73,6 +74,7 @@ func HandleLogin(queries *repository.Queries, sessions *scs.SessionManager) http

 func HandleRegister(queries *repository.Queries, sessions *scs.SessionManager) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
+		r.Body = http.MaxBytesReader(w, r.Body, 1024)
 		username := r.FormValue("username")
 		password := r.FormValue("password")
 		confirm := r.FormValue("confirm")
Author	SHA1	Message	Date
Ryan Hamamura	2ad0abaf44	ci: prune dangling Docker images after deploy All checks were successful CI / Deploy / test (push) Successful in 17s Details CI / Deploy / lint (push) Successful in 27s Details CI / Deploy / deploy (push) Successful in 1m27s Details	2026-03-11 10:22:55 -10:00
Ryan Hamamura	b1f754831a	fix: limit request body size on auth form handlers (gosec G120) All checks were successful CI / Deploy / test (push) Successful in 14s Details CI / Deploy / lint (push) Successful in 45s Details CI / Deploy / deploy (push) Successful in 1m34s Details	2026-03-11 10:19:03 -10:00