feat: complete Phase 2 tech debt remediation

- Extract shared RSS/Atom fetch logic into feed-fetcher utility (P1-3) - Split email-processor into validateEmail/storeEmail functions (P1-6) - Add stateless HMAC-SHA256 CSRF protection to admin forms (P2-8) - Fix Hono<{ Bindings: Env }> type safety across all routes (P3-13) - Add entries.test.ts and files.test.ts with full coverage (P1-7) Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-06-20 22:03:48 +00:00 · 2026-05-22 09:46:55 +02:00
parent f2981eec31
commit 7d375693b9
15 changed files with 485 additions and 152 deletions
@@ -10,6 +10,8 @@ import { hubRouter } from "./routes/hub";
 import { handleCloudflareEmail } from "./lib/cloudflare-email";
 import { Env } from "./types";

+type AppEnv = { Bindings: Env };
+
 const ALLOWED_ORIGINS = ["https://getmynews.app", "https://www.getmynews.app"];

 // Fallback ForwardEmail.net IP addresses in case API fetch fails
@@ -20,7 +22,7 @@ const FALLBACK_FORWARD_EMAIL_IPS = [
 ];

 // Create the main Hono app
-const app = new Hono();
+const app = new Hono<AppEnv>();

 // Cache for ForwardEmail.net IPs with expiration
 let forwardEmailIpsCache: {
@@ -95,12 +97,12 @@ app.use(
 );

 // Group routes by functionality
-const api = new Hono();
-const rss = new Hono();
-const atom = new Hono();
-const entries = new Hono();
-const files = new Hono();
-const admin = new Hono();
+const api = new Hono<AppEnv>();
+const rss = new Hono<AppEnv>();
+const atom = new Hono<AppEnv>();
+const entries = new Hono<AppEnv>();
+const files = new Hono<AppEnv>();
+const admin = new Hono<AppEnv>();

 // Webhook security middleware for /inbound - verify ForwardEmail.net IP
 api.use("/inbound", async (c, next) => {