neko, branch claude/improve-image-proxy-5iY78

Improve image proxy: streaming, size limits, Content-Type validation

2026-02-18T21:33:02+00:00

Rewrites the image proxy handler to address several issues:

- Stream responses with io.Copy instead of buffering entire image in memory
- Add 25MB size limit via io.LimitReader to prevent memory exhaustion
- Close resp.Body (was previously leaked on every request)
- Validate Content-Type is an image, rejecting HTML/JS/etc
- Forward Content-Type and Content-Length from upstream
- Use http.NewRequestWithContext to propagate client cancellation
- Check upstream status codes, returning 502 for non-2xx
- Fix ETag: use proper quoted format, remove bogus Etag request header check
- Increase timeout from 5s to 30s for slow image servers
- Use proper HTTP status codes (400 for bad input, 502 for upstream errors)
- Add Cache-Control max-age directive alongside Expires header

Tests: comprehensive coverage for Content-Type filtering, upstream errors,
streaming, ETag validation, User-Agent forwarding, and Content-Length.
Benchmarks: cache hit path and streaming at 1KB/64KB/1MB/5MB sizes.

https://claude.ai/code/session_01CZcDDVmF6wNs2YjdhvCppy

remove pandoc and readme.html generation, update readme with local dev info

2026-02-18T21:02:22+00:00

update readme

2026-02-18T16:50:53+00:00

update documentation with prerequisites and local dev setup

2026-02-18T16:42:40+00:00

fix dockerFile, maybe

2026-02-18T16:38:47+00:00

fix: implement HTTP/2 fallback for SafeClient on protocol errors

2026-02-18T16:06:42+00:00

Revert "fix: disable HTTP/2 in SafeClient to avoid unhandled response frame errors"

2026-02-18T16:04:41+00:00

This reverts commit ee3f5edab92b0ca14dc0b3c98862f721bddaf7d5.

fix: disable HTTP/2 in SafeClient to avoid unhandled response frame errors

2026-02-18T16:01:45+00:00

update linter version (again?!)

2026-02-18T15:58:11+00:00

Merge branch 'performance-analysis'

2026-02-18T15:53:10+00:00