MokoConsulting/mokocli
Public Access
1
0
Fork 0
Code Issues 9 Pull Requests 1 Releases 8 Wiki Activity
Files
dev
mokocli/templates/security
T
History
Jonathan Miller a5a16fb7e3
Generic: Repo Health / Scripts governance (push) Blocked by required conditions
Details
Generic: Repo Health / Repository health (push) Blocked by required conditions
Details
Generic: Repo Health / Report Issues (push) Blocked by required conditions
Details
Generic: Repo Health / Site Health (push) Has been skipped
Details
Generic: Repo Health / Access control (push) Successful in 2s
Details
Platform: MokoCLI CI / Gate 2: Unit Tests (8.1) (pull_request) Blocked by required conditions
Details
Platform: MokoCLI CI / Gate 2: Unit Tests (8.2) (pull_request) Blocked by required conditions
Details
Platform: MokoCLI CI / Gate 2: Unit Tests (8.3) (pull_request) Blocked by required conditions
Details
Platform: MokoCLI CI / Gate 3: Self-Health Check (pull_request) Blocked by required conditions
Details
Platform: MokoCLI CI / Gate 4: Governance (pull_request) Blocked by required conditions
Details
Platform: MokoCLI CI / Gate 5: Template Integrity (pull_request) Blocked by required conditions
Details
Platform: MokoCLI CI / CI Summary (pull_request) Blocked by required conditions
Details
Universal: PR Check / Build RC Package (pull_request) Blocked by required conditions
Details
Universal: PR Check / Report Issues (pull_request) Blocked by required conditions
Details
Generic: Repo Health / Scripts governance (pull_request) Blocked by required conditions
Details
Generic: Repo Health / Repository health (pull_request) Blocked by required conditions
Details
Generic: Repo Health / Report Issues (pull_request) Blocked by required conditions
Details
Universal: PR Check / Branch Policy (pull_request) Successful in 4s
Details
Universal: PR Check / Validate PR (pull_request) Successful in 8s
Details
Generic: Repo Health / Access control (pull_request) Successful in 2s
Details
Generic: Repo Health / Site Health (pull_request) Has been skipped
Details
Platform: MokoCLI CI / Gate 1: Code Quality (pull_request) Failing after 1m31s
Details
Universal: Pre-Release / Build Pre-Release (${{ inputs.stability || github.ref_name }}) (push) Failing after 5s
Details
fix: rename moko-platform to MokoCLI in documentation (#268) 
Update all markdown files: README, CHANGELOG, CLAUDE.md, index files,
templates, issue templates, and inline documentation.
2026-06-20 11:39:54 -05:00
..
index.html
feat: add all templates from MokoStandards
2026-04-16 19:23:09 -05:00
index.php
fix: rename MokoPlatform/moko-platform to MokoCLI in all PHP files (#264)
2026-06-20 11:22:24 -05:00
README.md
fix: rename moko-platform to MokoCLI in documentation (#268)
2026-06-20 11:39:54 -05:00

README.md

Security Templates

This directory contains security-related templates for MokoCLI repositories.

index.html - Directory Listing Prevention (Static)

Purpose: Prevents directory listing on static web servers for security purposes.

Usage: Copy this file to all src/ directories and their subdirectories in organization repositories.

# Copy to src directory and all subdirectories
find src -type d -exec cp templates/security/index.html {} \;

Policy: All organization repositories must include an index.html redirect file in:

  • src/ directory (if it exists)
  • All subdirectories under src/

Security Rationale:

  • Prevents web servers from exposing directory contents
  • Redirects users to the repository root
  • Uses noindex, nofollow meta tags to prevent search engine indexing
  • Provides immediate redirect via both meta refresh and JavaScript

Template Features:

  • Redirects to / (repository root)
  • Minimal, clean design
  • Works with and without JavaScript
  • SEO-safe with noindex directive

index.php - Directory Listing Prevention (PHP)

Purpose: Prevents directory listing on PHP-enabled web servers for security purposes.

Usage: Copy this file to all src/ directories and their subdirectories in PHP-based organization repositories.

# Copy to src directory and all subdirectories
find src -type d -exec cp templates/security/index.php {} \;

Policy: All PHP-based organization repositories must include an index.php redirect file in:

  • src/ directory (if it exists)
  • All subdirectories under src/

Security Rationale:

  • Provides server-side redirect before any HTML is rendered
  • Prevents web servers from exposing directory contents
  • Includes HTTP header redirect for immediate response
  • Falls back to HTML/JavaScript redirect if needed
  • Works with PHP-enabled web servers

Template Features:

  • PHP header redirect (highest priority)
  • HTML meta refresh fallback
  • JavaScript redirect fallback
  • noindex, nofollow meta tags
  • GPL-3.0-or-later licensed
  • Proper PHP security headers

Usage Recommendation

For PHP projects (e.g., Dolibarr/MokoCRM):

  • Use both index.php and index.html
  • PHP will take precedence when available
  • HTML provides fallback for static serving

For non-PHP projects (e.g., Node.js, static sites):

  • Use index.html only

Copy both files:

# Copy both security templates to all src subdirectories
find src -type d -exec sh -c 'cp templates/security/index.html "$1" && cp templates/security/index.php "$1"' _ {} \;
Reference in New Issue View Git Blame Copy Permalink