Add more security and audit

2026-02-28 14:47:33 +01:00
parent db87ea447a
commit 07bcfede75
11 changed files with 386 additions and 76 deletions
--- a/backend/requirements.txt
+++ b/backend/requirements.txt
@@ -1,12 +1,14 @@
-flask==3.0.3
+flask==3.1.1
 flask-login==0.6.3
 flask-sqlalchemy==3.1.1
-flask-migrate==4.0.7
-flask-cors==4.0.1
-psycopg2-binary==2.9.9
-gunicorn==22.0.0
-python-dotenv==1.0.1
-werkzeug==3.0.3
-sqlalchemy==2.0.31
-authlib==1.3.1        # OAuth2 (Microsoft + Google, later)
+flask-migrate==4.1.0
+flask-limiter==3.9.0        # rate limiting
+flask-talisman==1.1.0       # security headers (CSP, HSTS, X-Frame-Options, ...)
+psycopg2-binary==2.9.10
+gunicorn==23.0.0
+python-dotenv==1.1.0
+werkzeug==3.1.3
+sqlalchemy==2.0.41
+authlib==1.4.1
 requests==2.32.3
+redis==5.2.1                # backend voor flask-limiter in productie