1.0.0

Version bump to go 1.18, lint, spelling, all dependencies up-to-dated

0.0.3

Tested, run in production for 2 years. This is just a version bump to go 1.15 and all dependencies up-to-dated

Beta 0.0.2

Current state

All the API endpoints are hand tested, a few unit test but no integration CI yet. Probably needs a tomb on the response goroutine. Missing a panic handler so you might get some text where you should be getting JSON (from the router). Not benchmarked or optimised further than by eyeball. Beta means beta.

Beta 0.0.1

Current state

All the API endpoints are hand tested, no unit or integration CI yet. Probably needs a tomb on the response goroutine. Missing a panic handler so you might get some text where you should be getting JSON (from the router). Not benchmarked or optimised further than by eyeball. Beta means beta.

Key Points

• Needs a backing clamd setup with a tcp socket.
• Auth using an Authorization header if you supply a users.yml (a yaml dict of token: username).
• HTTPS if either of the supplied certfile or keyfile resolve to a file.
• POST /scan performs an instream scan using the post body (will correctly chunk for instream, just send your files as straight binary in the body).
• GET /healthz performs a health check and calls ping on the underlying antivirus.
• GET /metrics returns prometheus metrics.
• Quirks of Go mean you need to set false flags like -pretty=false (ie if you want JSON logs).
• Should get one line of log entry per request so long as loglevel is info or above.