Tags: diegosouzapw/OmniAntigravityRemoteChat
Tags
feat(release): v1.3.0 — CSP hardening, deterministic click targeting,… … Pinggy tunnel, design philosophy Security: - Strict Content Security Policy (script-src 'self') on all 4 HTML pages - CSP HTTP header via Express middleware for defense-in-depth - Extracted inline scripts to theme-bootstrap.js and login.js (zero-inline) Features: - Leaf-node isolation in clickElement() prevents Nested DOM Trap - Occurrence index tracking (data-omni-idx/text/total) for duplicate elements - Pinggy SSH tunnel manager (scripts/pinggy-tunnel.js) as third provider - Multi-tunnel management with auto stop-other-on-start - Launcher --provider flag with cascading fallback order - Admin UI tunnel provider selector dropdown Documentation: - DESIGN_PHILOSOPHY.md with 10 core architectural principles - Updated .env.example with Pinggy config variables Testing: 55 integration + 67 unit tests pass (122 total)