Fork of Misskey for my instance, with a focus on security, observability and reliability.
eternal-flame-AD
8d10b6d846
Some checks failed
Lint / pnpm_install (push) Successful in 1m35s
Publish Docker image / Build (push) Successful in 5m1s
Test (production install and build) / production (22.11.0) (push) Successful in 1m28s
Test (backend) / unit (22.11.0) (push) Failing after 15m43s
Lint / lint (backend) (push) Failing after 2m48s
Lint / lint (frontend-embed) (push) Successful in 2m39s
Lint / lint (frontend) (push) Failing after 3m14s
Lint / lint (frontend-shared) (push) Successful in 2m56s
Lint / lint (misskey-bubble-game) (push) Successful in 2m57s
Lint / lint (misskey-js) (push) Successful in 3m7s
Lint / lint (misskey-reversi) (push) Successful in 2m48s
Lint / lint (sw) (push) Failing after 35s
Lint / typecheck (misskey-js) (push) Successful in 1m51s
Lint / typecheck (backend) (push) Successful in 2m34s
Lint / typecheck (sw) (push) Successful in 2m25s
Signed-off-by: eternal-flame-AD <yume@yumechi.jp> |
||
---|---|---|
.config | ||
.devcontainer | ||
.forgejo | ||
.github | ||
.vscode | ||
assets | ||
chart | ||
cypress | ||
fluent-emojis@cae981eb4c | ||
idea | ||
locales | ||
packages | ||
scripts | ||
yume-mods | ||
.dockerignore | ||
.dockleignore | ||
.editorconfig | ||
.gitattributes | ||
.gitignore | ||
.gitmodules | ||
.node-version | ||
.npmrc | ||
.vsls.json | ||
CHANGELOG.md | ||
CODE_OF_CONDUCT.md | ||
codecov.yml | ||
compose.local-db.yml | ||
compose_example.yml | ||
CONTRIBUTING.md | ||
COPYING | ||
crowdin.yml | ||
cypress.config.ts | ||
Dockerfile | ||
healthcheck.sh | ||
LICENSE | ||
package.json | ||
pnpm-lock.yaml | ||
pnpm-workspace.yaml | ||
Procfile | ||
README.md | ||
ROADMAP.md | ||
SECURITY.md |
ゆめちのくに
YumechiNoKuni is a fork of Misskey, with a focus on security, observability and reliability.
mi.yumechi.jp is running this version.
Main differences
Unique features
- Strict ActivityPub sanitization by whitelisting properties and normalizing all referential properties.
- Strict Content Security Policy.
- Require TLSv1.2+ over port 443 for all ActivityPub requests.
- Strongly-typed inbox filtering in Rust.
- Reduce needless retries by marking more errors as permanent.
- Detailed prometheus metrics for slow requests, DB queries, AP processing, failed auths, etc.
- Disable unauthenticated media processing and use custom AppArmored media proxy.
- Enable active users in nodeinfo back.
- Advertise Git information over nodeinfo for better observability and easy tracking of the actual code running.
- Logical replication for the database over mTLS.
- More atomic operations in API handlers.
Picked from github.com/paricafe/misskey
- pgroonga full-text search (with modifications).
- Better Service Worker caching.
- Better hashtag statistics.
- Better handling of deep recursive AP objects.