Update RELEASE.md with CSRF_SECRET instructions

Added instructions for the required CSRF_SECRET environment variable for CSRF protection in Kubernetes deployments.
Update README header to remove version number
2026-01-14 13:11:13 -08:00 · 2026-01-14 13:10:43 -08:00
2 changed files with 15 additions and 1 deletions
@@ -1,6 +1,6 @@
 <img src="logoExcaliDash.png" alt="ExcaliDash Logo" width="80" height="88">

-# ExcaliDash v0.1.8
+# ExcaliDash

 ![License](https://img.shields.io/github/license/zimengxiong/ExcaliDash)
 ![PRs Welcome](https://img.shields.io/badge/PRs-welcome-brightgreen.svg)
@@ -27,3 +27,17 @@ CSRF Protection (8a78b2b)
  - Updated docker-compose configurations with new environment variables
  - E2E test suite improvements and reliability fixes
  - Added Kubernetes deployment note in README
+
+### Kubernetes
+
+  A `CSRF_SECRET` environment variable is now required for CSRF protection. Generate a secure 32+ character random string:
+
+  ```bash
+  openssl rand -base64 32
+
+  Add it to your deployment:
+  - Docker Compose: Add CSRF_SECRET=<your-secret> to the backend service environment
+  - Kubernetes: Add to your ConfigMap/Secret and reference in the backend deployment
+
+  If not set, the backend will refuse to start.
+  ```
Author	SHA1	Message	Date
Zimeng Xiong	71f18a2053	Update RELEASE.md with CSRF_SECRET instructions Added instructions for the required CSRF_SECRET environment variable for CSRF protection in Kubernetes deployments.	2026-01-14 13:11:13 -08:00
Zimeng Xiong	c5c8b15e75	Update README header to remove version number Removed version number from README header.	2026-01-14 13:10:43 -08:00