-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.env.example
More file actions
131 lines (97 loc) · 4.18 KB
/
Copy path.env.example
File metadata and controls
131 lines (97 loc) · 4.18 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
# GhidraInsight Configuration Template
# Copy this file to .env and adjust values for your environment
# ============================================================================
# APPLICATION
# ============================================================================
APP_NAME=GhidraInsight
APP_VERSION=1.0.0
DEBUG=false
# ============================================================================
# SERVER
# ============================================================================
HOST=0.0.0.0
PORT=8000
WS_PORT=8001
SSE_PORT=8002
# ============================================================================
# AUTHENTICATION & SECURITY
# ============================================================================
# JWT Secret (minimum 32 characters - CHANGE IN PRODUCTION!)
GHIDRA_JWT_SECRET=your-super-secret-jwt-key-change-me-in-production-12345
# JWT Algorithm (HS256, HS384, HS512, RS256, RS384, RS512)
GHIDRA_SECURITY__JWT_ALGORITHM=HS256
# JWT Token Expiry (in seconds, default 3600 = 1 hour)
GHIDRA_SECURITY__JWT_EXPIRY=3600
# API Key Authentication
GHIDRA_SECURITY__API_KEY_ENABLED=true
# Rate Limiting (requests per minute)
GHIDRA_SECURITY__RATE_LIMIT=60
# CORS Origins (comma-separated)
GHIDRA_SECURITY__CORS_ORIGINS=["http://localhost:3000","http://localhost:5173"]
# Allowed Hosts
GHIDRA_SECURITY__ALLOWED_HOSTS=["localhost","127.0.0.1"]
# TLS/SSL Configuration
GHIDRA_SECURITY__TLS_ENABLED=false
GHIDRA_SECURITY__TLS_CERT_PATH=/path/to/cert.pem
GHIDRA_SECURITY__TLS_KEY_PATH=/path/to/key.pem
# ============================================================================
# DATABASE (Optional)
# ============================================================================
# Enable Database Backend
GHIDRA_DATABASE__ENABLED=false
# Database URL (PostgreSQL, MySQL, etc.)
# GHIDRA_DATABASE__URL=postgresql://user:password@localhost:5432/ghidrainsight
# Connection Pool Settings
GHIDRA_DATABASE__POOL_SIZE=10
GHIDRA_DATABASE__MAX_OVERFLOW=20
GHIDRA_DATABASE__ECHO=false
# ============================================================================
# LOGGING
# ============================================================================
# Log Level (DEBUG, INFO, WARNING, ERROR, CRITICAL)
GHIDRA_LOGGING__LEVEL=INFO
# Log Format
GHIDRA_LOGGING__FORMAT=%(asctime)s - %(name)s - %(levelname)s - %(message)s
# Log File (optional, leave empty to disable file logging)
GHIDRA_LOGGING__FILE=/var/log/ghidrainsight/app.log
# Log File Max Size (in bytes)
GHIDRA_LOGGING__MAX_FILE_SIZE=10485760
# Log File Backup Count
GHIDRA_LOGGING__BACKUP_COUNT=5
# ============================================================================
# ANALYSIS
# ============================================================================
# Analysis Timeout (in seconds, default 300 = 5 minutes)
GHIDRA_ANALYSIS__TIMEOUT=300
# Maximum Binary Size (in bytes, default 500MB)
GHIDRA_ANALYSIS__MAX_BINARY_SIZE=524288000
# Feature Flags
GHIDRA_ANALYSIS__ENABLE_CRYPTO_DETECTION=true
GHIDRA_ANALYSIS__ENABLE_TAINT_ANALYSIS=true
GHIDRA_ANALYSIS__ENABLE_VULNERABILITY_DETECTION=true
GHIDRA_ANALYSIS__ENABLE_CONTROL_FLOW_ANALYSIS=true
# ============================================================================
# FEATURES
# ============================================================================
# Enable Web UI
ENABLE_UI=true
# Enable Metrics Collection
ENABLE_METRICS=true
# ============================================================================
# EXTERNAL INTEGRATIONS (Optional)
# ============================================================================
# OpenAI API Key (for ChatGPT integration)
OPENAI_API_KEY=sk-xxxxx
# Anthropic API Key (for Claude integration)
ANTHROPIC_API_KEY=sk-ant-xxxxx
# GitHub Token (for repository analysis)
GITHUB_TOKEN=ghp_xxxxx
# ============================================================================
# NOTES
# ============================================================================
# 1. Never commit the actual .env file to version control
# 2. Use strong JWT secrets in production (at least 32 characters)
# 3. For production, always enable TLS/SSL
# 4. Adjust rate limits based on your infrastructure capacity
# 5. Set DEBUG=false in production
# 6. Ensure log files have proper permissions