Safeturned API

Backend API for the Safeturned security scanning service. Handles plugin analysis, threat detection, and provides REST endpoints for the web interface.

What it does

This API processes Unturned plugin files (.dll) and scans them for:

Backdoors and malicious code
Suspicious patterns and functions
Security vulnerabilities
Code obfuscation attempts

Tech Stack

Framework: ASP.NET Core 9.0 with Aspire
Database: PostgreSQL with dbup migrations
Background Jobs: Hangfire
Logging: Serilog
Error Tracking: Sentry
API Documentation: Swagger/OpenAPI
Deployment: GitHub Actions builds with Aspire, pushes to GHCR, and deploys via SSH, we do not make it via GH Release for simple!

Quick Start

Prerequisites

.NET 9.0 SDK
PostgreSQL
Docker (optional)

Local Development

Clone and setup:

git clone https://github.com/Safeturned/Api.git
cd Api

Run with Aspire (includes PostgreSQL and pgAdmin):

dotnet run --project Safeturned.AppHost

Services will be available at:
- API: http://localhost:5000
- pgAdmin: http://localhost:5050
- Hangfire Dashboard: http://localhost:5000/hangfire

Docker

# Build and run with Aspire (generates docker-compose.yaml)
dotnet run --project Safeturned.AppHost

# Or use the generated docker-compose.yaml directly
docker compose up -d

Production Deployment

The API is automatically deployed when you create a version tag:

git tag v1.0.0
git push origin v1.0.0

This triggers:

Build - Aspire publishes the application
Container - Docker image is built and pushed to GitHub Container Registry
Deploy - Files are copied to server and deployed via SSH

API Endpoints

POST /v1/files - Upload and scan a .dll plugin file
GET /v1/files/{id} - Get scan results by file ID
GET /v1/analytics - Get analytics data
GET /health - Health check endpoint

Note: API requires authentication via API key and origin validation. In the short/long term future, we plan to make the API publicly available for everyone.

Project Structure

Api/
├── src/                    # Main API project
├── Safeturned.AppHost/     # Aspire host
├── Safeturned.ServiceDefaults/  # Shared services
└── FileChecker/           # Plugin analysis logic

Development

The project uses:

Aspire for local development and deployment
Submodules for the FileChecker component
GitHub Actions for CI/CD

License

MIT License - see LICENSE file.

Name		Name	Last commit message	Last commit date
Latest commit History 160 Commits
.aspire		.aspire
.github		.github
FileChecker @ 0d07f8f		FileChecker @ 0d07f8f
Safeturned.AppHost		Safeturned.AppHost
Safeturned.ServiceDefaults		Safeturned.ServiceDefaults
src		src
.dockerignore		.dockerignore
.editorconfig		.editorconfig
.gitattributes		.gitattributes
.gitignore		.gitignore
.gitmodules		.gitmodules
LICENSE		LICENSE
README.md		README.md
Safeturned.sln		Safeturned.sln
Safeturned.sln.DotSettings		Safeturned.sln.DotSettings

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Safeturned API

What it does

Tech Stack

Quick Start

Prerequisites

Local Development

Docker

Production Deployment

API Endpoints

Project Structure

Development

License

About

Uh oh!

Packages

Uh oh!

Uh oh!

Contributors 3

Uh oh!

Languages

License

Safeturned/Api

Folders and files

Latest commit

History

Repository files navigation

Safeturned API

What it does

Tech Stack

Quick Start

Prerequisites

Local Development

Docker

Production Deployment

API Endpoints

Project Structure

Development

License

About

Topics

Resources

License

Uh oh!

Stars

Watchers

Forks

Packages 0

Uh oh!

Uh oh!

Contributors 3

Uh oh!

Languages

Packages