zzstoatzz.io / plyr.fm
music on atproto plyr.fm
fork atom

docs: update STATUS.md with rate limiting incident response (#630)

- documented PR #629 rate limiting fix for moderation endpoint
- added tip to status-update command suggesting use after /deploy

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>

authored by zzstoatzz.io Claude Opus 4.5 and committed by GitHub 958cac78 f763c35f

options
unified split
Changed files
+14 -1
.claude
commands
status-update.md
STATUS.md
+2
.claude/commands/status-update.md
··· 11 11 - deployment/infrastructure changes 12 12 - incidents and their resolutions 13 13 14 + **tip**: after running `/deploy`, consider running `/status-update` to document what shipped. 15 + 14 16 ## how to update 15 17 16 18 1. add a new subsection under `## recent work` with today's date
+12 -1
STATUS.md
··· 47 47 48 48 ### December 2025 49 49 50 + #### rate limit moderation endpoint (PR #629, Dec 21) 51 + 52 + **incident response**: detected suspicious activity - 72 requests in 17 seconds from a single IP targeting `/moderation/sensitive-images`. investigation via Logfire showed: 53 + - single IP generating all traffic with no User-Agent header 54 + - requests spaced ~230ms apart (too consistent for human browsing) 55 + - no corresponding user activity (page loads, audio streams) 56 + 57 + **fix**: added `10/minute` rate limit to the endpoint using existing slowapi infrastructure. verified rate limiting works correctly post-deployment. 58 + 59 + --- 60 + 50 61 #### end-of-year sprint (Dec 20-31) 51 62 52 63 **focus**: two foundational systems need solid experimental implementations by 2026. ··· 540 551 541 552 --- 542 553 543 - this is a living document. last updated 2025-12-20. 554 + this is a living document. last updated 2025-12-21.