Fork of Misskey for my instance, with a focus on security, observability and reliability.
|
||
---|---|---|
.config | ||
.devcontainer | ||
.forgejo | ||
.github | ||
.vscode | ||
assets | ||
chart | ||
cypress | ||
fluent-emojis@cae981eb4c | ||
idea | ||
locales | ||
packages | ||
scripts | ||
yume-mods | ||
.dockerignore | ||
.dockleignore | ||
.editorconfig | ||
.gitattributes | ||
.gitignore | ||
.gitmodules | ||
.node-version | ||
.npmrc | ||
.vsls.json | ||
CHANGELOG.md | ||
CODE_OF_CONDUCT.md | ||
codecov.yml | ||
compose.local-db.yml | ||
compose_example.yml | ||
CONTRIBUTING.md | ||
COPYING | ||
crowdin.yml | ||
cypress.config.ts | ||
Dockerfile | ||
healthcheck.sh | ||
LICENSE | ||
package.json | ||
pnpm-lock.yaml | ||
pnpm-workspace.yaml | ||
Procfile | ||
README.md | ||
ROADMAP.md | ||
SECURITY.md |
ゆめちのくに
YumechiNoKuni is a fork of Misskey, with a focus on security, observability and reliability.
mi.yumechi.jp is running this version.
Main differences
Unique features
- Strict ActivityPub sanitization by whitelisting properties and normalizing all referential properties.
- Strict Content Security Policy.
- Require TLSv1.2+ over port 443 for all ActivityPub requests.
- Strongly-typed inbox filtering in Rust.
- Reduce needless retries by marking more errors as permanent.
- Detailed prometheus metrics for slow requests, DB queries, AP processing, failed auths, etc.
- Disable unauthenticated media processing and use custom AppArmored media proxy.
- Enable active users in nodeinfo back.
- Advertise Git information over nodeinfo for better observability and easy tracking of the actual code running.
- Logical replication for the database over mTLS.
- More atomic operations in API handlers.
Picked from github.com/paricafe/misskey
- pgroonga full-text search (with modifications).
- Better Service Worker caching.
- Better hashtag statistics.
- Better handling of deep recursive AP objects.