Merge pull request #93 from WJQSERVER-STUDIO/dev

3.0.3
add debug output
2025-04-19 21:26:39 +08:00 · 2025-04-19 21:23:31 +08:00 · 2025-04-19 21:14:09 +08:00 · 2025-04-19 20:44:43 +08:00 · 2025-04-17 22:30:00 +08:00 · 2025-04-17 22:20:06 +08:00
57 changed files with 3656 additions and 2140 deletions
--- a/.github/ISSUE_TEMPLATE/features_request.md
+++ b/.github/ISSUE_TEMPLATE/features_request.md
@@ -2,7 +2,7 @@
 name: Features request
 about: 提出新功能建议
 title: "[Features]"
-labels: enhancement
+labels: 改进
 assignees: ''
 ---
--- a/.github/workflows/auto-assign.yml
+++ b/.github/workflows/auto-assign.yml
@@ -15,5 +15,5 @@ jobs:
      uses: pozil/auto-assign-issue@v1
      with:
          repo-token: ${{ secrets.AUTO_ASSIGN }}
-          assignees: WJQSERVER, satomitoka
+          assignees: WJQSERVER, satomitouka
          numOfAssignee: 2
--- a/.github/workflows/build-dev.yml
+++ b/.github/workflows/build-dev.yml
@@ -4,21 +4,13 @@ on:
  workflow_dispatch:
  push:
    branches:
-      - 'main'
+      - 'dev'
    paths:
      - 'DEV-VERSION'
 jobs:
-  build:
+  prepare:
    runs-on: ubuntu-latest
    strategy:
      matrix:
        goos: [linux]
        goarch: [amd64, arm64]
    env:
      OUTPUT_BINARY: ghproxy
      GO_VERSION: 1.23.4
    steps:
      - uses: actions/checkout@v3
      - name: 加载版本号
@@ -28,6 +20,50 @@ jobs:
          else
            echo "DEV-VERSION file not found!" && exit 1
          fi
      - name: 输出版本号
        run: | 
          echo "Version: ${{ env.VERSION }}"
      - name: 预先创建Pre-release
        id: create_release
        uses: ncipollo/release-action@v1
        with:
          name: ${{ env.VERSION }}
          artifacts: ./DEV-VERSION
          token: ${{ secrets.GITHUB_TOKEN }}
          tag: ${{ env.VERSION }}
          allowUpdates: true
          prerelease: true
          body: ${{ env.VERSION }}
        env:
          export PATH: $PATH:/usr/local/go/bin
  build:
    runs-on: ubuntu-latest
    needs: prepare
    strategy:
      matrix:
        goos: [linux, darwin, freebsd]
        goarch: [amd64, arm64]
    env:
      OUTPUT_BINARY: ghproxy
      GO_VERSION: 1.24
    steps:
      - uses: actions/checkout@v4
        with:
          ref: dev
      - name: 加载版本号
        run: |
          if [ -f DEV-VERSION ]; then
            echo "VERSION=$(cat DEV-VERSION)" >> $GITHUB_ENV
          else
            echo "DEV-VERSION file not found!" && exit 1
          fi
      - name: 拉取前端
        run: |
          sudo git clone https://github.com/WJQSERVER-STUDIO/GHPrxoy-Frontend.git pages
          sudo rm -rf pages/.git/
      - name: 安装 Go
        uses: actions/setup-go@v3
        with:
@@ -46,10 +82,10 @@ jobs:
          cp LICENSE ./ghproxyd/
          tar -czf ${{ env.OUTPUT_BINARY }}-${{matrix.goos}}-${{matrix.goarch}}.tar.gz -C ghproxyd .
          ls
-      - name: Upload to GitHub Artifacts
+      - name: 上传Artifact
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
-          name: ${{ env.OUTPUT_BINARY }}
+          name: ${{ env.OUTPUT_BINARY }}-${{matrix.goos}}-${{matrix.goarch}}
          path: |
            ./${{ env.OUTPUT_BINARY }}*
      - name: 上传至Release
@@ -62,6 +98,7 @@ jobs:
          tag: ${{ env.VERSION }}
          allowUpdates: true
          prerelease: true
          body: ${{ env.VERSION }}
        env:
          export PATH: $PATH:/usr/local/go/bin 
@@ -76,6 +113,8 @@ jobs:
    steps:
      - name: Checkout
        uses: actions/checkout@v4
        with:
          ref: dev
      - name: Load VERSION
        run: |
          if [ -f DEV-VERSION ]; then
@@ -104,4 +143,4 @@ jobs:
          push: true
          tags: | 
            ${{ env.IMAGE_NAME }}:${{ env.VERSION }}
-            ${{ env.IMAGE_NAME }}:dev
+            ${{ env.IMAGE_NAME }}:dev
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -9,18 +9,12 @@ on:
      - 'VERSION'
 jobs:
-  build:
+  prepare:
    runs-on: ubuntu-latest
    strategy:
      matrix:
        goos: [linux]
        goarch: [amd64, arm64]
    env:
      OUTPUT_BINARY: ghproxy
      GO_VERSION: 1.23.4
    steps:
      - uses: actions/checkout@v3
        with: 
          ref: main
      - name: 加载版本号
        run: |
          if [ -f VERSION ]; then
@@ -28,6 +22,49 @@ jobs:
          else
            echo "VERSION file not found!" && exit 1
          fi
      - name: 输出版本号
        run: | 
          echo "Version: ${{ env.VERSION }}"
      - name: 预先创建release
        id: create_release
        uses: ncipollo/release-action@v1
        with:
          name: ${{ env.VERSION }}
          artifacts: ./VERSION
          token: ${{ secrets.GITHUB_TOKEN }}
          tag: ${{ env.VERSION }}
          allowUpdates: true
          body: ${{ env.VERSION }}
        env:
          export PATH: $PATH:/usr/local/go/bin
  build:
    runs-on: ubuntu-latest
    needs: prepare  # 确保这个作业在 prepare 作业完成后运行
    strategy:
      matrix:
        goos: [linux, darwin, freebsd]
        goarch: [amd64, arm64]
    env:
      OUTPUT_BINARY: ghproxy
      GO_VERSION: 1.24
    steps:
      - uses: actions/checkout@v3
        with:
          ref: main
      - name: 加载版本号
        run: |
          if [ -f VERSION ]; then
            echo "VERSION=$(cat VERSION)" >> $GITHUB_ENV
          else
            echo "VERSION file not found!" && exit 1
          fi
      - name: 拉取前端
        run: |
          sudo git clone https://github.com/WJQSERVER-STUDIO/GHPrxoy-Frontend.git pages
          sudo rm -rf pages/.git/
      - name: 安装 Go
        uses: actions/setup-go@v3
        with:
@@ -45,12 +82,12 @@ jobs:
          mv ./ghproxyd/${{ env.OUTPUT_BINARY }}-${{matrix.goos}}-${{matrix.goarch}} ./ghproxyd/${{ env.OUTPUT_BINARY }}
          cp LICENSE ./ghproxyd/
          tar -czf ${{ env.OUTPUT_BINARY }}-${{matrix.goos}}-${{matrix.goarch}}.tar.gz -C ghproxyd .
-      - name: Upload to GitHub Artifacts
+      - name: 上传Artifact
-        uses: actions/upload-artifact@v3
+        uses: actions/upload-artifact@v4
        with:
-          name: ${{ env.OUTPUT_BINARY }}
+          name: ${{ env.OUTPUT_BINARY }}-${{matrix.goos}}-${{matrix.goarch}}
          path: |
-            ./${{ env.OUTPUT_BINARY }}*
+            ./${{ env.OUTPUT_BINARY }}*          
      - name: 上传至Release
        id: create_release
        uses: ncipollo/release-action@v1
@@ -60,6 +97,7 @@ jobs:
          token: ${{ secrets.GITHUB_TOKEN }}
          tag: ${{ env.VERSION }}
          allowUpdates: true
          body: ${{ env.VERSION }}
        env:
          export PATH: $PATH:/usr/local/go/bin
@@ -73,6 +111,8 @@ jobs:
    steps:
      - name: Checkout
        uses: actions/checkout@v4
        with:
          ref: main
      - name: Load VERSION
        run: |
          if [ -f VERSION ]; then
@@ -102,43 +142,3 @@ jobs:
          tags: | 
            ${{ env.IMAGE_NAME }}:${{ env.VERSION }}
            ${{ env.IMAGE_NAME }}:latest
  docker-nocache:
    runs-on: ubuntu-latest 
    needs: build  # 确保这个作业在 build 作业完成后运行
    env:
      IMAGE_NAME: wjqserver/ghproxy  # 定义镜像名称变量
      DOCKERFILE: docker/dockerfile/nocache/Dockerfile  # 定义 Dockerfile 路径变量
    steps:
      - name: Checkout
        uses: actions/checkout@v4
      - name: Load VERSION
        run: |
          if [ -f VERSION ]; then
            echo "VERSION=$(cat VERSION)" >> $GITHUB_ENV
          else
            echo "VERSION file not found!" && exit 1
          fi
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v3
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v3
      - name: Login to Docker Hub
        uses: docker/login-action@v3
        with:
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}
      - name: 构建镜像
        uses: docker/build-push-action@v6
        with:
          file: ./${{ env.DOCKERFILE }}
          platforms: linux/amd64,linux/arm64
          push: true
          tags: | 
            ${{ env.IMAGE_NAME }}:${{ env.VERSION }}-nocache
            ${{ env.IMAGE_NAME }}:nocache
--- a/.gitignore
+++ b/.gitignore
@@ -1,3 +1,7 @@
 demo
 demo.toml
 *.log
-*.bak
+*.bak
 list.json
 repos
 pages
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,567 @@
 # 更新日志
 3.0.3 - 2025-04-19
 ---
 - CHANGE: 增加移除部分header的处置, 避免向服务端/客户端透露过多信息
 - FIX: 修正非预期的header操作行为
 - CHANGE: 合并header相关逻辑, 避免多次操作
 - CHANGE: 对editor模式下的input进行处置, 增加隐式关闭处理
 - CHANGE: 增加`netlib`配置项
 25w29b - 2025-04-19
 ---
 - PRE-RELEASE: 此版本是v3.0.3预发布版本,请勿在生产环境中使用;
 - CHANGE: 增加`netlib`配置项
 25w29a - 2025-04-17
 ---
 - PRE-RELEASE: 此版本是v3.0.3预发布版本,请勿在生产环境中使用;
 - CHANGE: 增加移除部分header的处置, 避免向服务端/客户端透露过多信息
 - FIX: 修正非预期的header操作行为
 - CHANGE: 合并header相关逻辑, 避免多次操作
 - CHANGE: 对editor模式下的input进行处置, 增加隐式关闭处理
 3.0.2 - 2025-04-15
 ---
 - CHANGE: 避免重复的re编译操作
 - CHANGE: 去除不必要的请求
 - CHANGE: 改进`httpc`相关配置
 - CHANGE: 更新`httpc` 0.4.0
 - CHANGE: 为不遵守`RFC 2616`, `RFC 9112`的客户端带来兼容性改进
 25w28b - 2025-04-15
 ---
 - PRE-RELEASE: 此版本是v3.0.2预发布版本,请勿在生产环境中使用;
 - CHANGE: 改进resp关闭
 - CHANGE: 避免重复的re编译操作
 25w28a - 2025-04-14
 ---
 - PRE-RELEASE: 此版本是预发布版本,请勿在生产环境中使用;
 - CHANGE: 去除不必要的请求
 - CHANGE: 改进`httpc`相关配置
 - CHANGE: 合入test版本修改
 25w28t-2 - 2025-04-11
 ---
 - TEST: 测试验证版本
 - CHANGE: 为不遵守`RFC 2616`, `RFC 9112`的客户端带来兼容性改进
 25w28t-1 - 2025-04-11
 ---
 - TEST: 测试验证版本
 - CHANGE: 更新httpc 0.4.0
 3.0.1 - 2025-04-08
 ---
 - CHANGE: 加入`memLimit`指示gc
 - CHANGE: 加入`hlog`输出路径配置
 - CHANGE: 修正H2C配置问题
 25w27a - 2025-04-07
 ---
 - PRE-RELEASE: 此版本是v3.0.1的预发布版本,请勿在生产环境中使用;
 - CHANGE: 加入`memLimit`指示gc
 - CHANGE: 加入`hlog`输出路径配置
 - CHANGE: 修正H2C配置问题
 3.0.0 - 2025-04-04
 ---
 - RELEASE: Next Gen; 下一个起点; 
 - CHANGE: 使用HertZ框架重构, 提升性能
 - CHANGE: 前端在构建时加入, 新增`Design`,`Metro`,`Classic`主题
 - CHANGE: 加入`Mino`主题对接选项
 - FIX: 修正部分日志输出问题
 - CHANGE: 移除gin残留
 - CHANGE: 移除无用传入参数, 调整代码结构
 - CHANGE: 改进cli
 - CHANGE: 改进`脚本嵌套加速处理器`
 - CHANGE&FIX: 使用`c.SetBodyStream`方式, 修正此前`chunked`传输中存在的诸多问题, 参看[HertZ Issues #1309](https://github.com/cloudwego/hertz/issues/1309)
 - PORT: 从v2移植`matcher`相关改进
 - CHANGE: 增加默认配置生成
 - CHANGE: 优化前端资源加载
 - CHANGE: 将`cfg`flag改为`c`以符合`POSIX`规范
 - CHANGE: 为`smart-git`添加`no-cache`标头
 25w26a - 2025-04-03
 ---
 - PRE-RELEASE: 此版本是v3的预发布版本,请勿在生产环境中使用;
 2.6.3 - 2025-03-30
 ---
 - FIX: 修正一些`git clone`行为异常
 25w25a - 2025-03-30
 ---
 - PRE-RELEASE: 此版本是v2.6.3的预发布版本,请勿在生产环境中使用;
 - FIX: 修正一些`git clone`行为异常
 e3.0.7 -2025-03-29
 ---
 - CHANGE: 将`cfg`flag改为`c`以符合`POSIX`规范
 - CHANGE: 为`smart-git`添加`no-cache`标头
 2.6.2 - 2025-03-29
 ---
 - BACKPORT: 反向移植前端资源加载改进
 e3.0.6 - 2025-03-28
 ---
 - ATTENTION: 此版本是实验性的, 请确保了解这一点
 - FIX: 修正状态码相关问题(开发遗留所致)
 e3.0.5 - 2025-03-28
 ---
 - ATTENTION: 此版本是实验性的, 请确保了解这一点
 - CHANGE: 增加默认配置生成
 - CHANGE: 优化前端资源加载
 2.6.1 - 2025-03-27
 ---
 - CHANGE: 改进`matcher`组件
 - CHANGE: 加入优雅关闭
 e3.0.3 - 2025-03.27
 ---
 - ATTENTION: 此版本是实验性的, 请确保了解这一点
 - E-RELEASE: 修正过往问题, 还请各位多多测试反馈
 - PORT: 从v2移植`matcher`相关改进
 - CHANGE&FIX: 使用`c.SetBodyStream`方式, 修正此前`chunked`传输中存在的诸多问题, 参看[HertZ Issues #1309](https://github.com/cloudwego/hertz/issues/1309)
 25w24a - 2025-03-27
 ---
 - PRE-RELEASE: 此版本是v2.6.1的预发布版本,请勿在生产环境中使用;
 - CHANGE: 改进`matcher`组件
 - CHANGE: 加入优雅关闭
 e3.0.3rc2 - 2025-03-27
 ---
 - ATTENTION: 此版本是实验性的, 请确保了解这一点
 - PRE-RELEASE: 此版本是v3.0.3的候选版本,请勿在生产环境中使用;
 - PORT: 从v2移植`matcher`相关改进
 e3.0.3rc1 - 2025-03-26
 ---
 - ATTENTION: 此版本是实验性的, 请确保了解这一点
 - PRE-RELEASE: 此版本是v3.0.3的候选版本,请勿在生产环境中使用;
 - CHANGE&FIX: 使用`c.SetBodyStream`方式, 修正此前`chunked`传输中存在的诸多问题, 参看[HertZ Issues #1309](https://github.com/cloudwego/hertz/issues/1309)
 2.6.0 - 2025-03-22
 ---
 - BACKPORT: 将v3的功能性改进反向移植
 25w23a - 2025-03-22
 ---
 - PRE-RELEASE: 此版本是v2.6.0的预发布版本,请勿在生产环境中使用;
 - BACKPORT: 将v3的功能性改进反向移植
 e3.0.2 - 2025-03-21
 ---
 - ATTENTION: 此版本是实验性的, 请确保了解这一点
 - RELEASE: 在此表达对各位的歉意, v3迁移到HertZ带来了许多问题; 此版本完善v3的同时, 修正已知问题;
 - FIX: 使用等效`c.Writer()`, 回归v2.5.0 func以修正问题
 - CHANGE: 更新相关依赖
 25w22a - 2025-03-21
 ---
 - PRE-RELEASE: 此版本是v3.0.1的预发布版本,请勿在生产环境中使用;
 - FIX: 使用等效`c.Writer()`, 回归v2.5.0 func以修正问题
 e3.0.1 - 2025-03-21
 ---
 - ATTENTION: 此版本是实验性的, 请确保了解这一点
 - RELEASE: Next Step; 下一步; 完善v3的同时, 修正已知问题;
 - CHANGE: 改进cli
 - CHANGE: 重写`ProcessLinksAndWriteChunked`(脚本嵌套加速处理器), 修正已知问题的同时提高性能与效率
 - CHANGE: 完善`gitreq`部分
 - FIX: 修正日志输出格式问题
 - FIX: 使用更新的`hwriter`以修正相关问题
 25w21e - 2025-03-21
 ---
 - PRE-RELEASE: 此版本是v3.0.1的预发布版本,请勿在生产环境中使用;
 - CHANGE: 重写`ProcessLinksAndWriteChunked`(脚本嵌套加速处理器), 修正已知问题的同时提高性能与效率
 25w21d - 2025-03-21
 ---
 - PRE-RELEASE: 此版本是v3.0.1的预发布版本,请勿在生产环境中使用;
 - FIX: 使用更新的`hwriter`以修正相关问题
 25w21c - 2025-03-20
 ---
 - PRE-RELEASE: 此版本是v3.0.1的预发布版本,请勿在生产环境中使用;
 - TEST: 测试新的`hwriter`
 25w21b - 2025-03-20
 ---
 - PRE-RELEASE: 此版本是v3.0.1的预发布版本,请勿在生产环境中使用;
 - FIX: 修正日志输出格式问题
 25w21a - 2025-03-20
 ---
 - PRE-RELEASE: 此版本是v3.0.1的预发布版本,请勿在生产环境中使用;
 - CHANGE: 改进cli
 - CHANGE: 完善`gitreq`部分
 e3.0.0 - 2025-03-19
 ---
 - ATTENTION: 此版本是实验性的, 请确保了解这一点
 - RELEASE: Next Gen; 下一个起点; 
 - CHANGE: 使用HertZ框架重构, 提升性能
 - CHANGE: 前端在构建时加入, 新增`Design`,`Metro`,`Classic`主题
 - CHANGE: 加入`Mino`主题对接选项
 - FIX: 修正部分日志输出问题
 - CHANGE: 移除gin残留
 - CHANGE: 移除无用传入参数, 调整代码结构
 25w20b - 2025-03-19
 ---
 - PRE-RELEASE: 此版本是v3.0.0的预发布版本,请勿在生产环境中使用; 
 - CHANGE: 加入`Mino`主题对接选项
 - FIX: 修正部分日志输出问题
 - CHANGE: 移除gin残留
 - CHANGE: 移除无用传入参数, 调整代码结构
 25w20a - 2025-03-18
 ---
 - PRE-RELEASE: 此版本是v3.0.0的预发布版本,请勿在生产环境中使用; 
 - CHANGE: 使用HertZ重构
 - CHANGE: 前端在构建时加入, 新增`Design`,`Metro`,`Classic`主题
 2.5.0 - 2025-03-17
 ---
 - ADD: 加入脚本嵌套加速功能
 - CHANGE: 改进Auth模块
 25w19a - 2025-03-16
 ---
 - PRE-RELEASE: 此版本是v2.5.0的预发布版本,请勿在生产环境中使用;
 - ADD: 加入脚本嵌套加速功能
 - CHANGE: 改进Auth模块
 - CHANGE: 将handler模块化改进
 2.4.2 - 2025-03-14
 ---
 - CHANGE: 在GitClone Cache模式下, 相关请求会使用独立httpc client
 - CHANGE: 为GitClone Cache的独立httpc client增加ForceH2C选项
 - FIX: 修正GitClone Cache模式下的Url生成问题
 25w18a - 2025-03-14
 ---
 - PRE-RELEASE: 此版本是v2.4.2的预发布版本,请勿在生产环境中使用;
 - CHANGE: 在GitClone Cache模式下, 相关请求会使用独立httpc client
 - CHANGE: 为GitClone Cache的独立httpc client增加ForceH2C选项
 - FIX: 修正GitClone Cache模式下的Url生成问题
 2.4.1 - 2025-03-13
 ---
 - CHANGE: 重构路由匹配
 - CHANGE: 更新相关依赖以修复错误
 25w17a - 2025-03-13
 ---
 - PRE-RELEASE: 此版本是v2.4.1的预发布版本,请勿在生产环境中使用;
 - CHANGE: 重构路由匹配
 - CHANGE: 更新相关依赖以修复错误
 2.4.0 - 2025-03-12
 ---
 - ADD: 支持通过[Smart-Git](https://github.com/WJQSERVER-STUDIO/smart-git)实现Git Clone缓存
 - CHANGE: 使用更高性能的Buffer Pool 实现, 调用 github.com/WJQSERVER-STUDIO/go-utils/copyb
 - CHANGE: 改进路由匹配
 - CHANGE: 更新依赖
 - CHANGE: 改进前端
 25w16d - 2025-03-12
 ---
 - PRE-RELEASE: 此版本是v2.4.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 使用更高性能的Buffer Pool 实现
 25w16c
 ---
 - PRE-RELEASE: 此版本是v2.4.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 使用更高性能的Buffer Pool 实现
 - CHANGE: 改进路由匹配
 25w16b
 ---
 - PRE-RELEASE: 此版本是v2.4.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 修改路由
 - CHANGE: 改进前端
 25w16a
 ---
 - PRE-RELEASE: 此版本是v2.4.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 变更CORS配置
 - ADD: 使用GO-GIT实现git smart http服务端和客户端
 - CHANGE: 更新依赖
 2.3.1
 ---
 - CHANGE: 改进`Pages`在`External`模式下的路由
 - CHANGE: 使用`H2C` bool 代替 `enableH2C` string (2.4.0 弃用 `enableH2C`)
 - CHANGE: 使用`Mode` string 代替`Pages`内的 `enable` bool (2.4.0 弃用 `enable`)
 25w15a
 ---
 - PRE-RELEASE: 此版本是v2.3.1的预发布版本,请勿在生产环境中使用;
 - CHANGE: 改进`Pages`在`External`模式下的路由
 - CHANGE: 使用`H2C` bool 代替 `enableH2C` string (2.4.0 弃用 `enableH2C`)
 - CHANGE: 使用`Mode` string 代替`Pages`内的 `enable` bool (2.4.0 弃用 `enable`)
 2.3.0
 ---
 - CHANGE: 使用`touka-httpc`封装`HTTP Client`, 更新到`v0.2.0`版本, 参看`touka-httpc`
 - CHANGE: 重构前端页面, 见[#49](https://github.com/WJQSERVER-STUDIO/ghproxy/pull/49)
 - CHANGE: 重构`blacklist`实现
 - CHANGE: 优化404处理
 - CHANGE: 重构`whitelist`实现
 - CHANGE: 对`proxy`进行结构性调整
 - CHANGE: `chunckedreq`与`gitreq`共用`BufferPool`和`HTTP Client`
 - CHANGE: 新增`HTTP Client`配置块
 - CHANGE: 加入内置主题配置, 支持通过配置切换主题
 - CHANGE: 将许可证转为WJQserver Studio License 2.0
 25w14b
 ---
 - PRE-RELEASE: 此版本是v2.3.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 将许可证转为WJQserver Studio License 2.0
 25w14a
 ---
 - PRE-RELEASE: 此版本是v2.3.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 使用`touka-httpc`封装`HTTP Client`, 更新到`v0.2.0`版本, 参看`touka-httpc`
 - CHANGE: 重构前端页面, 见[#49](https://github.com/WJQSERVER-STUDIO/ghproxy/pull/49)
 - CHANGE: 重构`blacklist`实现
 - CHANGE: 优化404处理
 - CHANGE: 重构`whitelist`实现
 - CHANGE: 对`proxy`进行结构性调整
 - CHANGE: `chunckedreq`与`gitreq`共用`BufferPool`和`HTTP Client`
 - CHANGE: 新增`HTTP Client`配置块
 - CHANGE: 加入内置主题配置, 支持通过配置切换主题
 25w14t-2
 ---
 - PRE-RELEASE: 此版本是测试验证版本,请勿在生产环境中使用;
 - CHANGE: 使用`touka-httpc`封装`HTTP Client`，更新到`v0.1.0`版本, 参看`touka-httpc`
 - CHANGE: 重构`whitelist`实现
 - CHANGE: 对`proxy`进行结构性调整
 - CHANGE: `chunckedreq`与`gitreq`共用`BufferPool`和`HTTP Client`
 - CHANGE: 新增`HTTP Client`配置块
 25w14t-1
 ---
 - PRE-RELEASE: 此版本是测试验证版本,请勿在生产环境中使用;
 - CHANGE: 使用`touka-httpc`封装`HTTP Client`
 - CHANGE: 重构前端页面, 见[#49](https://github.com/WJQSERVER-STUDIO/ghproxy/pull/49)
 - CHANGE: 重构`blacklist`实现
 - CHANGE: 优化404处理
 2.2.0
 ---
 - RELEASE: v2.2.0正式版发布;
 - CHANGE: 更新Go版本至1.24.0
 - ADD: 加入`Socks5`和`HTTP(S)`出站支持
 - CHANGE: 配置新增`Outbound`配置块
 25w13b
 ---
 - PRE-RELEASE: 此版本是v2.2.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 更新Go版本至1.24.0
 25w13a
 ---
 - PRE-RELEASE: 此版本是v2.2.0的预发布版本,请勿在生产环境中使用;
 - ADD: 加入`Socks5`和`HTTP(S)`出站支持
 - CHANGE: 配置新增`Outbound`配置块
 2.1.0
 ---
 - RELEASE: v2.1.0正式版发布;
 - CHANGE: 加入`FreeBSD`与`Darwin`系统支持
 - CHANGE: 更新安全政策, v1和24w版本序列生命周期正式结束
 - ADD: 加入`timing`中间件记录响应时间
 - ADD: 加入`loggin`中间件包装日志输出
 - CHANGE: 更新logger版本至v1.3.0
 - CHANGE: 改进日志相关
 - ADD: 加入日志等级配置项
 25w12d
 ---
 - PRE-RELEASE: 此版本是v2.1.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 处理类型断言相关问题
 25w12c
 ---
 - PRE-RELEASE: 此版本是v2.1.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 加入`FreeBSD`与`Darwin`系统支持
 25w12b
 ---
 - PRE-RELEASE: 此版本是v2.0.8/v2.1.0的预发布版本,请勿在生产环境中使用;
 - ADD: 加入`timing`中间件记录响应时间
 - ADD: 加入`loggin`中间件包装日志输出
 - CHANGE: 更新安全政策, v1和24w版本序列生命周期正式结束
 25w12a
 ---
 - PRE-RELEASE: 此版本是v2.0.8/v2.1.0的预发布版本,请勿在生产环境中使用;
 - CHANGE: 更新logger版本至v1.3.0
 - CHANGE: 改进日志相关
 - ADD: 加入日志等级配置项
 2.0.7
 ---
 - RELEASE: v2.0.7正式版发布;
 - CHANGE: 更新Go版本至1.23.6
 - CHANGE: 更新Logger版本至v1.2.0
 25w11a
 ---
 - PRE-RELEASE: 此版本是v2.0.7的预发布版本,请勿在生产环境中使用;
 - CHANGE: 更新Go版本至1.23.6
 - CHANGE: 更新Logger版本至v1.2.0
 2.0.6
 ---
 - RELEASE: v2.0.6正式版发布;祝各位新春快乐!
 - CHANGE: 优化前端的连接转换逻辑
 - CHANGE: 优化代码内不必要的函数化, 1.4之后, 函数化疑似有点太多了
 - 优化`HTTP Client`参数
 - CHANGE: 为api路由组增加no-cache标头
 25w10b
 ---
 - PRE-RELEASE: 此版本是v2.0.6的预发布版本,请勿在生产环境中使用;祝各位新春快乐!
 - CHANGE: 为api路由组增加no-cache标头
 25w10a
 ---
 - PRE-RELEASE: 此版本是v2.0.6的预发布版本,请勿在生产环境中使用;祝各位新春快乐!
 - CHANGE: 改进前端的连接转换逻辑
 - CHANGE: 优化代码内不必要的函数化, 1.4之后, 函数化疑似有点太多了
 - 优化`HTTP Client`参数
 2.0.5
 ---
 - RELEASE: v2.0.5正式版发布;
 - CHANGE: 优化响应体分块复制实现
 - ADD: 加入缓存池
 - CHANGE: 改进缓存实现
 - CHANGE: 部分杂项改进
 25w09b
 ---
 - PRE-RELEASE: 此版本是v2.0.5的预发布版本,请勿在生产环境中使用;
 - REMOVE: 移除残留配置
 25w09a
 ---
 - PRE-RELEASE: 此版本是v2.0.5的预发布版本,请勿在生产环境中使用;
 - CHANGE: 改进缓存实现
 - ADD: 加入缓存池
 2.0.4
 ---
 - RELEASE: v2.0.4正式版发布;
 - CHANGE: 优化GitReq的`HTTP Client`参数, 使其更符合本项目使用场景
 - CHANGE: 优化Matches
 - REMOVE: 移除Caddyfile残留
 - REMOVE: 由于v2改进后稳定性增强, 故移除健康检测
 25w08b
 ---
 - PRE-RELEASE: 此版本是v2.0.4的预发布版本,请勿在生产环境中使用;
 - REMOVE: 由于v2改进后稳定性增强, 故移除健康检测
 25w08a
 ---
 - PRE-RELEASE: 此版本是v2.0.4的预发布版本,请勿在生产环境中使用;
 - CHANGE: 优化GitReq的`HTTP Client`参数, 使其更符合本项目使用场景
 - CHANGE: 优化Matches
 - REMOVE: 移除Caddyfile残留
 2.0.3
 ---
 - RELEASE: v2.0.3正式版发布;
 - CHANGE: 优化`HTTP Client`参数, 使其更符合本项目使用场景
 25w07b
 ---
 - PRE-RELEASE: 此版本是v2.0.3的预发布版本,请勿在生产环境中使用;
 - CHANGE: 改进`HTTP Client`参数
 25w07a
 ---
 - PRE-RELEASE: 此版本是v2.0.3的预发布版本,请勿在生产环境中使用;
 - CHANGE: 为`HTTP Client`增加复用, 对性能有所优化
 - CHANGE: 优化`HTTP Client`参数, 使其更符合本项目使用场景
 2.0.2
 ---
 - RELEASE: v2.0.2正式版发布; 此版本是v2.0.1改进
 - CHANGE: 由于用户使用了不符合`RFC 9113`规范的请求头, 导致`ghproxy`无法正常工作, 在此版本为用户的错误行为提供补丁; 
 25w06b
 ---
 - PRE-RELEASE: 此版本是改进验证版本,普通用户请勿使用; 
 - CHANGE: 由于用户使用了不符合`RFC 9113`规范的请求头, 导致`ghproxy`无法正常工作, 在此版本为用户的错误行为提供补丁; 
 25w06a
 ---
 - PRE-RELEASE: 此版本是改进验证版本,普通用户请勿使用; 
 - CHANGE: Remove `Conection: Upgrade` header, which is not currently supported by some web server configurations.
 v2.0.1
 ---
 - RELEASE: v2.0.1正式版发布; 此版本是v2.0.0的小修复版本, 主要修复了Docker启动脚本存在的一些问题
 - FIX: 修复Docker启动脚本存在的一些问题
 25w05a
 ---
 - PRE-RELEASE: 此版本是v2.0.1的候选版本,请勿在生产环境中使用;
 - FIX: 修复Docker启动脚本存在的一些问题
 2.0.0
 ---
 - RELEASE: v2.0.0正式版发布; 此版本圆了几个月前画的饼, 在大文件下载的内存占用方面做出了巨大改进
 - CHANGE: 优化`proxy`核心模块, 使用Chuncked Buffer传输数据, 减少内存占用
 - REMOVE: caddy
 - REMOVE: nocache
 - CHANGE: 优化前端页面, 增加更多功能(来自1.8.1版本, 原本也是为v2所设计的)
 25w04c
 ---
 - PRE-RELEASE: 此版本是v2的候选版本,请勿在生产环境中使用;
 - CHANGE: 大幅优化`proxy`核心模块, 使用Chuncked Buffer传输数据, 减少内存占用
 v1.8.3
 ---
 - RELEASE: v1.8.3, 此版本作为v1.8.2的依赖更新版本(在v2发布前, v1仍会进行漏洞修复)
 - CHANGE: 更新Go版本至`1.23.5`以解决CVE漏洞
 25w04b
 ---
 - PRE-RELEASE: 此版本是v2的候选版本(技术验证版),请勿在生产环境中使用; 我们可能会撤除v2更新计划(若技术验证版顺利通过, 则会发布v2正式版)
 - REMOVE: caddy
 25w04a
 ---
 - PRE-RELEASE: 此版本是v2的候选版本(技术验证版),请勿在生产环境中使用; 我们可能会撤除v2更新计划(若技术验证版顺利通过, 则会发布v2正式版)
 - CHANGE: 大幅修改核心组件
 1.8.2
 ---
 - RELEASE: v1.8.2正式版发布; 这或许会是v1的最后一个版本
 - FIX: 修复部分日志表述错误
 - CHANGE: 关闭`gin`框架的`fmt`日志打印, 在高并发场景下提升一定性能(go 打印终端日志性能较差，可能造成性能瓶颈)
 25w03a
 ---
 - PRE-RELEASE: 此版本是v1.8.2的候选预发布版本,请勿在生产环境中使用
 - FIX: 修复部分日志表述错误
 - CHANGE: 关闭`gin`框架的`fmt`日志打印, 在高并发场景下提升一定性能(go 打印终端日志性能较差，可能造成性能瓶颈)
 1.8.1
 ---
 - RELEASE: v1.8.1正式版发布; 此版本发布较为仓促, 用于修复caddy2.9.0导致的问题
@@ -757,4 +1319,4 @@ v0.1.0
 - ADD: 实现符合[RFC 7234](https://httpwg.org/specs/rfc7234.html)的HTTP缓存机制
 - ADD: 实现action编译
 - ADD: 实现Docker部署
- INFO: 使用Caddy作为Web服务器，通过Caddy实现了缓存与速率限制
+- INFO: 使用Caddy作为Web服务器，通过Caddy实现了缓存与速率限制
--- a/2
+++ b/2
@@ -1 +1 @@
-25w02a
+25w29b
--- a/214
+++ b/214
@@ -1,107 +1,197 @@
 WJQserver Studio 开源许可证
-版本 1.2
+版本 v2.0
 版权所有 © WJQserver Studio 2024
 定义
 许可：指在本许可证内定义的使用、复制、分发与修改的条款与要求。
 授权方：指拥有版权的个人或组织，亦或是拥有版权的个人或组织所指派的实体。
 您：指行使本许可授予的权限的个人或法律实体。
 开源与自由软件
 本项目为开源软件，允许用户在遵循本许可证的前提下访问和使用源代码。
 本项目不等同于自由软件，使用权限受到本许可证条款的限制。
 强调版权所有，所有权利均由 WJQserver Studio 保留。
 许可证条款
 1. 使用权限
 1.1 您被授予在私人环境中自由使用本软件的权限。
-1.2 您可以在不修改关键声明的前提下进行商用。
+*   许可 (License): 指的是在本许可证内定义的使用、复制、分发与修改软件的条款与要求。
 *   授权方 (Licensor): 指的是拥有版权的个人或组织，亦或是拥有版权的个人或组织所指派的实体，在本许可证中特指 WJQserver Studio。
 *   贡献者 (Contributor): 指的是授权方以及根据本许可证授予贡献代码或软件的个人或实体。
 *   您 (You): 指的是行使本许可授予的权限的个人或法律实体。
 *   衍生作品 (Derivative Works): 指的是基于本软件或本软件任何部分的修改作品，无论修改程度如何。这包括但不限于基于本软件或其任何部分的修改、修订、改编、翻译或其他形式的创作，以及包含本软件或其部分的集合作品。
 *   非营利性使用 (Non-profit Use): 指的是不以直接商业盈利为主要目的的使用方式，包括但不限于：
    *   个人用途： 由个人为了个人学习、研究、实验、非商业项目、个人网站搭建、毕业设计、家庭内部娱乐等非直接商业目的使用软件。
    *   教育用途： 在教育机构（如学校、大学、培训机构）内部用于教学、研究、学术交流等活动。
    *   科研用途：  在科研院所、实验室等机构内部用于科学研究、实验开发等活动。
    *   慈善与公益用途：  由慈善机构、公益组织等非营利性组织为了其公益使命或慈善事业内部运营使用，或对外提供不直接产生商业利润的公益服务。
    *   内部运营用途 (非营利组织)： 非营利性组织在其内部运营中使用软件，例如用于行政管理、会员管理、内部沟通、项目管理等非直接营利性活动。
 开源与自由软件
 本项目为开源软件，允许用户在遵循本许可证的前提下访问和使用源代码。
 本项目旨在向用户提供尽可能广泛的非商业使用自由，同时保障社区的共同发展和良性生态，并为商业创新提供清晰的路径。
 强调版权所有，所有权利由 WJQserver Studio 及贡献者共同保留。
 许可证条款
 1. 使用权限
 *   1.1  非营利性使用：  您被授予在非营利性使用场景下，为了任何目的，自由使用本软件的权限。  非营利性使用的具体场景包括但不限于定义部分所列举的各种情况。
 *   1.2  商业使用：  您可以在商业环境中使用本软件，无需获得额外授权，但您的商业使用行为必须遵守以下条款：
    *   1.2.1  保持声明：  您在进行商业使用时，不得移除或修改软件中包含的原始版权声明、许可证声明以及来源声明。
    *   1.2.2  开源继承 (Copyleft) 与互惠共享：  如果您或您的组织希望将本软件或其衍生作品用于任何商业用途，包括但不限于：
        *   盈利性分发：  销售、出租、许可分发本软件或其衍生作品。
        *   盈利性服务：  基于本软件或其衍生作品提供商业服务，例如 SaaS 服务、咨询服务、定制开发服务、收费技术支持服务等。
        *   嵌入式商业应用：  将本软件或其衍生作品嵌入到商业产品或解决方案中进行销售。
        *   组织内部商业运营：  在营利性组织的内部运营中使用修改后的版本以直接支持其商业活动，例如定制化内部系统，通过例如但不限于在软件或相关服务中投放广告 (例如 Google Ads 等)，应用内购买 (内购), 会员订阅， 增值功能收费等方式直接或间接产生商业收入。
        您必须选择以下两种方式之一：
        *   i)  继承本许可证并开源：  您必须以本许可证或兼容的开源许可证分发您的衍生作品，并公开您的衍生作品的全部源代码，使得您的衍生作品的接收者也享有与您相同的权利，包括进一步修改和商业使用的权利。 本选项旨在促进社区的共同发展和知识共享，确保基于本软件的商业创新成果也能回馈社区。
        *   ii) 获得授权方明确授权：  如果您不希望以开源方式发布您的衍生作品，或者希望使用其他许可证进行分发，或者您希望在商业运营中使用修改后的版本但不开源，您必须事先获得 WJQserver Studio 的明确书面授权。  授权的具体条款和条件将由 WJQserver Studio 另行协商确定。
 2. 复制与分发
-2.1 您可以复制和分发本软件的原始版本，前提是必须保留所有版权声明和本许可证。
+
 *   2.1  原始版本复制与分发：  您可以复制和分发本软件的原始版本，前提是必须满足以下条件：
    *   保留所有声明：  完整保留所有原始版权声明、许可证声明、来源声明以及其他所有权声明。
    *   附带许可证：  在分发软件时，必须同时附带本许可证的完整文本，确保接收者知悉并理解本许可证的全部条款。
 *   2.2  衍生作品复制与分发：  您可以复制和分发基于本软件的衍生作品，您对衍生作品的分发行为将受到本许可证第 1.2.2 条（开源继承与互惠共享）的约束。
 3. 修改权限
 3.1 您可以在非商业用途下修改本软件，前提是继承本许可证并保留原版权声明。
-3.2 禁止在修改后进行商业用途。
+*   3.1  自由修改：  您被授予自由修改本软件的权限，无论修改目的是非营利性使用还是商业用途。
-4. 专利引用
+*   3.2  修改后使用与分发约束：  当您将修改后的版本用于商业用途或分发修改后的版本时，您需要遵守本许可证第 1.2.2 条（开源继承与互惠共享）以及第 2 条（复制与分发）的规定。  即使您不分发修改后的版本，只要您将其用于商业目的，也需要遵守开源继承条款或获得授权。
 4.1 若项目被专利相关引用，必须保留来源声明。
-4.2 若为商业场景，需按照商用处理。
+*   3.3  贡献接受：  WJQserver Studio 鼓励社区贡献代码。如果您向本项目贡献代码，您需要同意您的贡献代码按照本许可证条款进行许可。
 4. 专利权
 *   4.1  无专利担保，风险自担：  本软件以“现状”提供，授权方及贡献者明确声明，不对本软件的专利侵权问题做任何形式的担保，亦不承担任何因专利侵权可能产生的责任与后果。  用户理解并同意，使用本软件的专利风险完全由用户自行承担。
 *   4.2  专利纠纷应对：  如因用户使用本软件而引发任何专利侵权指控、诉讼或索赔，用户应自行负责处理并承担全部法律责任。  授权方及贡献者无义务参与任何相关法律程序，亦不承担任何由此产生的费用或赔偿。
 5. 免责声明
 5.1 本软件按“现状”提供，不提供任何明示或暗示的保证，包括但不限于适销性、特定用途适用性及非侵权性。
-5.2 在任何情况下，授权方均不对因使用或无法使用本软件而产生的任何直接、间接、偶然、特殊、惩罚性或后果性损害负责，即使已被告知可能发生此类损害。
+*   5.1  “现状”提供，无任何保证：  本软件按“现状”提供，不提供任何明示或暗示的保证，包括但不限于适销性、特定用途适用性及非侵权性。
-5.3 用户需根据当地法律对待本项目，确保遵守所有适用法规。
+*   5.2  责任限制：  在适用法律允许的最大范围内，在任何情况下，授权方或任何贡献者均不对因使用或无法使用本软件而产生的任何直接、间接、偶然、特殊、惩罚性或后果性损害（包括但不限于采购替代商品或服务；损失使用、数据或利润；或业务中断）负责，无论其是如何造成的，也无论依据何种责任理论，即使已被告知可能发生此类损害。
-6. 许可证期限
+*   5.3  用户法律责任：  用户需根据当地法律对待本项目，确保遵守所有适用法规。
 6.1 本许可证自2024年开始生效，有效期暂为无限。
-6.2 项目所有方有权修改许可证相关条例而不另行通知。
+6. 许可证期限与终止
-条款修订
+*   6.1  许可证期限：  除版权所有人主动宣布放弃本软件版权外，本许可证无限期生效。
 7.1 授权方保留随时修改本许可证条款的权利，以便更好地适应法律和技术的发展。
-7.2 修订后的条款将在发布时生效，继续使用本软件即表示接受修订后的条款。
+*   6.2  许可证终止：  如果您未能遵守本许可证的任何条款或条件，授权方有权终止本许可证。  您的许可证将在您违反本许可证条款时自动终止。
-其他
+*   6.3  终止后的效力：  许可证终止后，您根据本许可证所享有的所有权利将立即终止，但您在许可证终止前已合法分发的软件副本，其接收者所获得的许可及权利将不受影响，继续有效。  免责声明（第 5 条）和责任限制（第 5.2 条）在本许可证终止后仍然有效。
 8.1 本许可证不影响您作为最终用户的法定权利。
-8.2 若本许可证的某些条款被认定为不可执行，其余条款仍然有效。
+7. 条款修订
 *   7.1  修订权利保留：  授权方保留随时修改本许可证条款的权利，以便更好地适应法律、技术发展以及社区需求。
 *   7.2  修订生效与接受：  修订后的条款将在发布时生效，除非另行声明，否则继续使用、复制、分发或修改本软件即表示您接受修订后的条款。授权方鼓励用户定期查阅本许可证的最新版本。
 8. 其他
 *   8.1  法定权利：  本许可证不影响您作为最终用户在适用法律下的法定权利。
 *   8.2  条款可分割性：  若本许可证的某些条款被认定为不可执行，其余条款仍然完全有效。
 *   8.3  版本更新：  授权方可能会发布本许可证的修订版本或新版本。您可以选择是继续使用本许可证的旧版本还是选择适用新版本。
 WJQserver Studio Open Source License
-Version 1.2
+Version v2.0
 Copyright © WJQserver Studio 2024
 Definitions
-License: The terms and conditions defined within this license for use, copying, distribution, and modification.
+
-Licensor: The individual or organization holding the copyright, or the entity designated by them.
+*   License: Refers to the terms and requirements for use, reproduction, distribution, and modification defined within this license.
-You: The individual or legal entity exercising the permissions granted by this license.
+*   Licensor: Refers to the individual or organization that holds the copyright, or the entity designated by the copyright holder, specifically WJQserver Studio in this license.
-Open Source vs. Free Software
+*   Contributor: Refers to the Licensor and individuals or entities who contribute code or software under this License.
-This project is open source, allowing users to access and use the source code under the terms of this license.
+*   You: Refers to the individual or legal entity exercising permissions granted by this License.
-This project is not equivalent to free software; usage rights are restricted by this license.
+*   Derivative Works: Refers to works modified based on the Software or any part thereof, regardless of the extent of modification. This includes but is not limited to modifications, revisions, adaptations, translations, or other forms of creation based on the Software or any part thereof, as well as collective works containing the Software or parts thereof.
-Copyright is emphasized, with all rights reserved by WJQserver Studio.
+*   Non-profit Use: Refers to uses not primarily intended for direct commercial profit, including but not limited to:
    *   Personal Use: Use by an individual for personal learning, research, experimentation, non-commercial projects, personal website development, graduation projects, home entertainment, and other non-directly commercial purposes.
    *   Educational Use: Use within educational institutions (such as schools, universities, training organizations) for activities such as teaching, research, and academic exchange.
    *   Scientific Research Use: Use within scientific research institutions, laboratories, and similar organizations for activities such as scientific research and experimental development.
    *   Charitable and Public Welfare Use: Use by charitable organizations, public welfare organizations, and similar non-profit entities for their public missions or internal operation of charitable activities, or to provide public services that do not directly generate commercial profit.
    *   Internal Operational Use (Non-profit Organizations): Use within the internal operations of non-profit organizations, such as for administrative management, membership management, internal communication, project management, and other non-directly profit-generating activities.
 Open Source and Free Software
 This project is open-source software, allowing users to access and use the source code under the premise of complying with this License.
 This project aims to provide users with the broadest possible freedom for non-commercial use while ensuring the common development and healthy ecosystem of the community, and providing a clear path for commercial innovation.
 Copyright is emphasized; all rights are jointly reserved by WJQserver Studio and Contributors.
 License Terms
 1. Usage Rights
 1.1 You are granted the right to use this software freely in a private environment.
-1.2 You may use it commercially without modifying key statements.
+1.  Permissions for Use
-2. Copying and Distribution
+*   1.1  Non-profit Use: You are granted permission to freely use the Software for any purpose in non-profit use scenarios. Specific non-profit use scenarios include but are not limited to the various situations listed in the Definition section.
 2.1 You may copy and distribute the original version of this software, provided all copyright notices and this license are retained.
-3. Modification Rights
+*   1.2  Commercial Use: You may use the Software in a commercial environment without additional authorization, but your commercial use must comply with the following terms:
 3.1 You may modify this software for non-commercial purposes, provided you inherit this license and retain the original copyright notice.
-3.2 Modifications cannot be used commercially.
+    *   1.2.1  Maintain Statements: When conducting commercial use, you must not remove or modify the original copyright notices, license notices, and source statements contained in the Software.
    *   1.2.2  Open Source Inheritance (Copyleft) and Reciprocal Sharing: If you or your organization wish to use the Software or its Derivative Works for any commercial purpose, including but not limited to:
-4. Patent References
+        *   Profit-generating Distribution: Selling, renting, licensing, or distributing the Software or its Derivative Works.
-4.1 If the project is cited in patent-related contexts, the source statement must be retained.
+        *   Profit-generating Services: Providing commercial services based on the Software or its Derivative Works, such as SaaS services, consulting services, custom development services, and paid technical support services.
        *   Embedded Commercial Applications: Embedding the Software or its Derivative Works into commercial products or solutions for sale.
        *   Internal Commercial Operations: Using modified versions within the internal operations of for-profit organizations to directly support their commercial activities, such as customized internal systems, generating commercial revenue directly or indirectly through means including but not limited to placing advertisements in the software or related services (e.g., Google Ads), in-app purchases, membership subscriptions, and charging for value-added features.
-4.2 For commercial scenarios, it must be treated as a commercial use.
+        You must choose one of the following two options:
-5. Disclaimer
+        *   i)  Inherit this License and Open Source: You must distribute your Derivative Works under this License or a compatible open-source license and publicly disclose the entire source code of your Derivative Works, so that recipients of your Derivative Works also enjoy the same rights as you, including the right to further modify and use commercially. This option aims to promote the common development and knowledge sharing of the community, ensuring that commercial innovation achievements based on this Software can also contribute back to the community.
-5.1 This software is provided "as is", without any express or implied warranties, including but not limited to merchantability, fitness for a particular purpose, and non-infringement.
+        *   ii) Obtain Explicit Authorization from the Licensor: If you do not wish to release your Derivative Works in an open-source manner, or wish to distribute them under another license, or you wish to use a modified version in commercial operations without open-sourcing it, you must obtain explicit written authorization from WJQserver Studio in advance. The specific terms and conditions of authorization will be determined separately by WJQserver Studio through negotiation.
-5.2 In no event shall the licensor be liable for any direct, indirect, incidental, special, punitive, or consequential damages arising out of the use or inability to use this software, even if advised of the possibility of such damages.
+2. Reproduction and Distribution
-5.3 Users must comply with all applicable laws regarding this project.
+*   2.1  Reproduction and Distribution of Original Version: You may reproduce and distribute the original version of the Software, provided that the following conditions are met:
-6. License Duration
+    *   Retain All Statements: Completely retain all original copyright notices, license notices, source statements, and other proprietary notices.
-6.1 This license is effective from 2024, with an indefinite duration.
+    *   Accompany with License: When distributing the Software, you must also include the full text of this License to ensure that recipients are aware of and understand all terms of this License.
-6.2 The project owner reserves the right to modify the license terms without prior notice.
+*   2.2  Reproduction and Distribution of Derivative Works: You may reproduce and distribute Derivative Works based on the Software. Your distribution of Derivative Works will be subject to the constraints of Clause 1.2.2 of this License (Open Source Inheritance and Reciprocal Sharing).
-Amendments
+3. Modification Permissions
 7.1 The licensor reserves the right to amend this license at any time to better adapt to legal and technological developments.
-7.2 Revised terms become effective upon publication, and continued use of the software indicates acceptance of the revised terms.
+*   3.1  Free Modification: You are granted permission to freely modify the Software, regardless of whether the purpose of modification is for non-profit use or commercial use.
-Miscellaneous
+*   3.2  Constraints on Use and Distribution after Modification: When you use a modified version for commercial purposes or distribute a modified version, you need to comply with the provisions of Clause 1.2.2 of this License (Open Source Inheritance and Reciprocal Sharing) and Clause 2 (Reproduction and Distribution). Even if you do not distribute the modified version, as long as you use it for commercial purposes, you also need to comply with the open-source inheritance clause or obtain authorization.
 8.1 This license does not affect your statutory rights as an end user.
-8.2 If any provision of this license is held to be unenforceable, the remaining provisions shall remain in effect.
+*   3.3  Contribution Acceptance: WJQserver Studio encourages community contribution of code. If you contribute code to this project, you need to agree that your contributed code is licensed under the terms of this License.
 4. Patent Rights
 *   4.1  No Patent Warranty, Risk Self-Bearing: The software is provided “AS IS”, and the Licensor and Contributors explicitly declare that they do not provide any form of warranty regarding patent infringement issues of this software, nor do they assume any responsibility and consequences arising from patent infringement. Users understand and agree that the patent risk of using this software is entirely borne by the users themselves.
 *   4.2  Handling of Patent Disputes: If any patent infringement allegations, lawsuits, or claims arise due to the user's use of this Software, the user shall be solely responsible for handling and bear all legal liabilities. The Licensor and Contributors are under no obligation to participate in any related legal proceedings, nor do they bear any costs or compensation arising therefrom.
 5. Disclaimer of Warranty
 *   5.1  “AS IS” Provision, No Warranty: The software is provided “AS IS” without any express or implied warranties, including but not limited to warranties of merchantability, fitness for a particular purpose, and non-infringement.
 *   5.2  Limitation of Liability: To the maximum extent permitted by applicable law, in no event shall the Licensor or any Contributor be liable for any direct, indirect, incidental, special, punitive, or consequential damages (including but not limited to procurement of substitute goods or services; loss of use, data, or profits; or business interruption) however caused and on any theory of liability, whether in contract, strict liability, or tort (including negligence or otherwise) arising in any way out of the use of this software, even if advised of the possibility of such damage.
 *   5.3  User Legal Responsibility: Users shall treat this project in accordance with local laws and regulations to ensure compliance with all applicable laws and regulations.
 6. License Term and Termination
 *   6.1  License Term: Unless the copyright holder proactively announces the abandonment of the copyright of this software, this License shall be effective indefinitely from the date of your acceptance.
 *   6.2  License Termination: If you fail to comply with any terms or conditions of this License, the Licensor has the right to terminate this License. Your License will automatically terminate upon your violation of the terms of this License.
 *   6.3  Effect after Termination: Upon termination of the License, all rights granted to you under this License will terminate immediately, but the licenses and rights obtained by recipients of software copies you have legally distributed before the termination of the License will not be affected and will remain valid. The Disclaimer of Warranty (Clause 5) and Limitation of Liability (Clause 5.2) shall remain in effect after the termination of this License.
 7. Revision of Terms
 *   7.1  Reservation of Revision Rights: The Licensor reserves the right to modify the terms of this License at any time to better adapt to legal, technological developments, and community needs.
 *   7.2  Effectiveness and Acceptance of Revisions: Revised terms will take effect upon publication, and unless otherwise stated, continued use, reproduction, distribution, or modification of the Software indicates your acceptance of the revised terms. The Licensor encourages users to periodically review the latest version of this License.
 8.  Other
 *   8.1  Statutory Rights: This License does not affect your statutory rights as an end-user under applicable laws.
 *   8.2  Severability of Terms: If certain terms of this License are deemed unenforceable, the remaining terms shall remain in full force and effect.
 *   8.3  Version Updates: The Licensor may publish revised versions or new versions of this License. You may choose to continue using the old version of this License or choose to apply the new version.
--- a/README.md
+++ b/README.md
@@ -1,60 +1,58 @@
 # GHProxy
-![pull](https://img.shields.io/docker/pulls/wjqserver/ghproxy.svg)
+![pull](https://img.shields.io/docker/pulls/wjqserver/ghproxy.svg)![Docker Image Size (tag)](https://img.shields.io/docker/image-size/wjqserver/ghproxy/latest)[![Go Report Card](https://goreportcard.com/badge/github.com/WJQSERVER-STUDIO/ghproxy)](https://goreportcard.com/report/github.com/WJQSERVER-STUDIO/ghproxy)
 [![Go Report Card](https://goreportcard.com/badge/github.com/WJQSERVER-STUDIO/ghproxy)](https://goreportcard.com/report/github.com/WJQSERVER-STUDIO/ghproxy)
-使用Go实现的GHProxy,用于加速部分地区Github仓库的拉取,支持速率限制,用户鉴权,支持Docker部署
+支持 Git clone、raw、releases的 Github 加速项目, 支持自托管的同时带来卓越的性能与极低的资源占用(Golang和HertZ带来的优势), 同时支持多种额外功能
 [DEMO](https://ghproxy.1888866.xyz)
 [TG讨论群组](https://t.me/ghproxy_go)
 [版本更新介绍](https://blog.wjqserver.com/categories/my-program/)
 ## 项目说明
 ### 项目特点
- 基于Go语言实现,使用[Gin框架](https://github.com/gin-gonic/gin)与[req库](https://github.com/imroc/req)]
+- ⚡ **基于 Go 语言实现，跨平台的同时提供高并发性能**
- 支持Git clone,raw,realeases等文件拉取
+- 🌐 **使用字节旗下的 [HertZ](https://github.com/cloudwego/hertz) 作为 Web 框架**
- 支持Docker部署
+- 📡 **使用 [Touka-HTTPC](https://github.com/satomitouka/touka-httpc) 作为 HTTP 客户端**
- 支持速率限制
+- 📥 **支持 Git clone、raw、releases 等文件拉取**
- 支持用户鉴权
+- 🎨 **支持多个前端主题**
- 支持自定义黑名单/白名单
+- 🚫 **支持自定义黑名单/白名单**
- 符合[RFC 7234](https://httpwg.org/specs/rfc7234.html)的HTTP Cache
+- 🗄️ **支持 Git Clone 缓存（配合 [Smart-Git](https://github.com/WJQSERVER-STUDIO/smart-git)）**
- 使用Caddy作为Web Server
+- 🐳 **支持 Docker 部署**
- 基于[WJQSERVER-STUDIO/golang-temp](https://github.com/WJQSERVER-STUDIO/golang-temp)模板构建,具有标准化的日志记录与构建流程
+- 🐳 **支持自托管**
 - ⚡ **支持速率限制**
 - 🔒 **支持用户鉴权**
 - 🐚 **支持 shell 脚本多层嵌套加速**
-### 项目开发过程
+### 项目相关
-**本项目是[WJQSERVER-STUDIO/ghproxy-go](https://github.com/WJQSERVER-STUDIO/ghproxy-go)的重构版本,实现了原项目原定功能的同时,进一步优化了性能**
+[DEMO](https://ghproxy.1888866.xyz)
 关于此项目的详细开发过程,请参看Commit记录与[CHANGELOG.md](https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/CHANGELOG.md)
- V1.0.0 迁移至本仓库,并再次重构内容实现
+[TG讨论群组](https://t.me/ghproxy_go)
 - v0.2.0 重构项目实现
-### LICENSE
+[相关文章](https://blog.wjqserver.com/categories/my-program/)
-本项目使用WSL LICENSE Version1.2 (WJQSERVER STUDIO LICENSE Version1.2)
+[项目文档](https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/docs/menu.md)
-在v1.0.0版本之前,本项目继承于[WJQSERVER-STUDIO/ghproxy-go](https://github.com/WJQSERVER-STUDIO/ghproxy-go)的APACHE2.0 LICENSE VERSION
+### 使用示例
 ## 使用示例
 ```
 # 下载文件
 https://ghproxy.1888866.xyz/raw.githubusercontent.com/WJQSERVER-STUDIO/tools-stable/main/tools-stable-ghproxy.sh
 https://ghproxy.1888866.xyz/https://raw.githubusercontent.com/WJQSERVER-STUDIO/tools-stable/main/tools-stable-ghproxy.sh
 # 克隆仓库
 git clone https://ghproxy.1888866.xyz/github.com/WJQSERVER-STUDIO/ghproxy.git
 git clone https://ghproxy.1888866.xyz/https://github.com/WJQSERVER-STUDIO/ghproxy.git
 ```
 ## 部署说明
 可参考文章: https://blog.wjqserver.com/post/ghproxy-deploy-with-smart-git/
 ### Docker部署
 - Docker-cli
 ```
-docker run -p 7210:80 -v ./ghproxy/log/run:/data/ghproxy/log -v ./ghproxy/log/caddy:/data/caddy/log -v ./ghproxy/config:/data/ghproxy/config  --restart always wjqserver/ghproxy
+docker run -p 7210:8080 -v ./ghproxy/log/run:/data/ghproxy/log -v ./ghproxy/log/caddy:/data/caddy/log -v ./ghproxy/config:/data/ghproxy/config  --restart always wjqserver/ghproxy
 ```
 - Docker-Compose (建议使用)
@@ -69,101 +67,51 @@ docker run -p 7210:80 -v ./ghproxy/log/run:/data/ghproxy/log -v ./ghproxy/log/ca
 wget -O install.sh https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/deploy/install.sh && chmod +x install.sh &&./install.sh
 ```
 Dev一键部署脚本:
 ```bash
 wget -O install-dev.sh https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/dev/deploy/install-dev.sh && chmod +x install-dev.sh && ./install-dev.sh
 ```
 ## 配置说明
-### 外部配置文件
+参看[项目文档](https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/docs/config.md)
 本项目采用`config.toml`作为外部配置,默认配置如下
 使用Docker部署时,慎重修改`config.toml`,以免造成不必要的麻烦
 ```toml
 [server]
 host = "127.0.0.1"  # 监听地址
 port = 8080  # 监听端口
 sizeLimit = 125 # 125MB
 enableH2C = "on"  # 是否开启H2C传输(latest和dev版本请开启) on/off
 [pages]
 enabled = false  # 是否开启内置静态页面(Docker版本请关闭此项)
 staticPath = "/data/www"  # 静态页面文件路径
 [log]
 logFilePath = "/data/ghproxy/log/ghproxy.log" # 日志文件路径
 maxLogSize = 5 # MB 日志文件最大大小
 [cors]
 enabled = true  # 是否开启跨域
 [auth]
 authMethod = "parameters" # 鉴权方式,支持parameters,header
 authToken = "token"  # 用户鉴权Token
 enabled = false  # 是否开启用户鉴权
 [blacklist]
 blacklistFile = "/data/ghproxy/config/blacklist.json"  # 黑名单文件路径
 enabled = false  # 是否开启黑名单
 [whitelist]
 enabled = false  # 是否开启白名单
 whitelistFile = "/data/ghproxy/config/whitelist.json"  # 白名单文件路径
 [rateLimit]
 enabled = false  # 是否开启速率限制
 rateMrthod = "total" # "ip" or "total" 速率限制方式
 ratePerMinute = 180  # 每分钟限制请求数量
 burst = 5  # 突发请求数量
 ```
 ### 黑名单配置
 黑名单配置位于config/blacklist.json,格式如下:
 ```json
 {
    "blacklist": [
      "test/test1",
      "example/repo2",
      "another/*"
    ]
  }
 ```
 ### 白名单配置
 白名单配置位于config/whitelist.json,格式如下:
 ```json
 {
    "whitelist": [
      "test/test1",
      "example/repo2",
      "another/*"
    ]
  }
 ```
 ### Caddy反代配置
 ```Caddyfile
 example.com {
    reverse_proxy {
        to 127.0.0.1:7210
        header_up X-Real-IP {remote_host}	    
        header_up X-Real-IP {http.request.header.CF-Connecting-IP}
        header_up X-Forwarded-For {http.request.header.CF-Connecting-IP}
        header_up X-Forwarded-Proto {http.request.header.CF-Visitor}
    }
    encode zstd gzip    
 }
 ```
 ### 前端页面
-![ghproxy-demo.png](https://webp.wjqserver.com/ghproxy/ghproxy-demo-v1.7.0-mobile-night.png)
+参看[GHProxy-Frontend](https://github.com/WJQSERVER-STUDIO/GHProxy-Frontend)
-结语
+## 项目简史
 ---
-本项目基于Go语言实现,使用Gin框架与req库
+**本项目是[WJQSERVER-STUDIO/ghproxy-go](https://github.com/WJQSERVER-STUDIO/ghproxy-go)的重构版本,实现了原项目原定功能的同时,进一步优化了性能**
-Docker镜像基于[WJQSERVER-STUDIO/caddy](https://github.com/WJQSERVER-STUDIO/caddy)
+关于此项目的详细开发过程,请参看Commit记录与[CHANGELOG.md](https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/CHANGELOG.md)
-本项目使用WSL LICENSE Version1.2 (WJQSERVER STUDIO LICENSE Version1.2) 授权协议,请遵守相关条例。
+
 - v3.0.0 迁移到HertZ框架, 进一步提升效率
 - v2.4.1 对路径匹配进行优化
 - v2.0.0 对`proxy`核心模块进行了重构,大幅优化内存占用
 - v1.0.0 迁移至本仓库,并再次重构内容实现
 - v0.2.0 重构项目实现
 ## LICENSE
 本项目使用WJQserver Studio License 2.0 [WJQserver Studio License 2.0](https://wjqserver-studio.github.io/LICENSE/LICENSE.html)
 在v2.3.0之前, 本项目使用WJQserver Studio License 1.2
 在v1.0.0版本之前,本项目继承于[WJQSERVER-STUDIO/ghproxy-go](https://github.com/WJQSERVER-STUDIO/ghproxy-go)的APACHE2.0 LICENSE VERSION
 ## 赞助
 如果您觉得本项目对您有帮助,欢迎赞助支持,您的赞助将用于Demo服务器开支及开发者时间成本支出,感谢您的支持!
 为爱发电,开源不易
 爱发电: https://afdian.com/a/wjqserver
 USDT(TRC20): `TNfSYG6F2vkiibd6J6mhhHNWDgWgNdF5hN`
 ### 捐赠列表
 | 赞助人    |金额|
 |--------|------|
 | starry | 8 USDT (TRC20)   |
--- a/SECURITY.MD
+++ b/SECURITY.MD
@@ -6,17 +6,20 @@
 | 版本 | 是否支持 |
 | --- | --- |
-| v1.x.x | :white_check_mark: |
+| v3.x.x | :white_check_mark: 当前最新版本序列 |
-| 24w*a/b/c... | :warning: 此为PRE-RELEASE版本,用于开发与测试,可能存在未知的问题 |
+| v2.x.x | :x: 这些版本已结束生命周期,不受支持 |
 | v1.x.x | :x: 这些版本已结束生命周期,不受支持 |
 | 25w*a/b/c... | :warning: 此为PRE-RELEASE版本,用于开发与测试,可能存在未知的问题 |
 | 24w*a/b/c... | :warning: 此为PRE-RELEASE版本,用于开发与测试,可能存在未知的问题 生命周期已完全结束 |
 | v0.x.x | :x: 这些版本不再受支持 |
 ### 用户须知
 本项目为开源项目,开发者不对使用本项目造成的任何损失或问题承担责任。用户需自行评估并承担使用本项目的风险。
-使用本项目,请遵循 **[WSL (WJQSERVER-STUDIO LICENSE)](https://wjqserver-studio.github.io/LICENSE/LICENSE.html)** 协议。
+使用本项目,请遵循 **[WSL 2.0 (WJQSERVER-STUDIO LICENSE 2.0)](https://wjqserver-studio.github.io/LICENSE/LICENSE.html)** 协议。
-本项目所有文件均受到 WSL (WJQSERVER-STUDIO LICENSE) 协议保护,任何人不得在任何情况下以非 WSL (WJQSERVER-STUDIO LICENSE) 协议内规定的方式使用,复制,修改,编译,发布,分发,再许可,或者出售本项目的任何部分。
+本项目所有文件均受到 WSL 2.0 (WJQSERVER-STUDIO LICENSE 2.0) 协议保护,任何人不得在任何情况下以非 WSL 2.0 (WJQSERVER-STUDIO LICENSE 2.0) 协议内规定的方式使用,复制,修改,编译,发布,分发,再许可,或者出售本项目的任何部分。
 ## 报告漏洞
--- a/2
+++ b/2
@@ -1 +1 @@
-1.8.1
+3.0.3
--- a/api/api.go
+++ b/api/api.go
@@ -1,117 +1,128 @@
 package api
 import (
-	"encoding/json"
+	"context"
 	"ghproxy/config"
 	"ghproxy/middleware/nocache"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
-	"github.com/gin-gonic/gin"
+	"github.com/cloudwego/hertz/pkg/app"
-)
+	"github.com/cloudwego/hertz/pkg/app/server"
 var (
 	router *gin.Engine
 	cfg    *config.Config
 )
 var (
 	logw       = logger.Logw
 	logDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
 )
-func InitHandleRouter(cfg *config.Config, router *gin.Engine, version string) {
+func InitHandleRouter(cfg *config.Config, r *server.Hertz, version string) {
-	apiRouter := router.Group("api")
+	apiRouter := r.Group("/api", nocache.NoCacheMiddleware())
 	{
-		apiRouter.GET("/size_limit", func(c *gin.Context) {
+		apiRouter.GET("/size_limit", func(ctx context.Context, c *app.RequestContext) {
-			SizeLimitHandler(cfg, c)
+			SizeLimitHandler(cfg, c, ctx)
 		})
-		apiRouter.GET("/whitelist/status", func(c *gin.Context) {
+		apiRouter.GET("/whitelist/status", func(ctx context.Context, c *app.RequestContext) {
-			WhiteListStatusHandler(c, cfg)
+			WhiteListStatusHandler(cfg, c, ctx)
 		})
-		apiRouter.GET("/blacklist/status", func(c *gin.Context) {
+		apiRouter.GET("/blacklist/status", func(ctx context.Context, c *app.RequestContext) {
-			BlackListStatusHandler(c, cfg)
+			BlackListStatusHandler(cfg, c, ctx)
 		})
-		apiRouter.GET("/cors/status", func(c *gin.Context) {
+		apiRouter.GET("/cors/status", func(ctx context.Context, c *app.RequestContext) {
-			CorsStatusHandler(c, cfg)
+			CorsStatusHandler(cfg, c, ctx)
 		})
-		apiRouter.GET("/healthcheck", func(c *gin.Context) {
+		apiRouter.GET("/healthcheck", func(ctx context.Context, c *app.RequestContext) {
-			HealthcheckHandler(c)
+			HealthcheckHandler(c, ctx)
 		})
-		apiRouter.GET("/version", func(c *gin.Context) {
+		apiRouter.GET("/version", func(ctx context.Context, c *app.RequestContext) {
-			VersionHandler(c, version)
+			VersionHandler(c, ctx, version)
 		})
-		apiRouter.GET("/rate_limit/status", func(c *gin.Context) {
+		apiRouter.GET("/rate_limit/status", func(ctx context.Context, c *app.RequestContext) {
-			RateLimitStatusHandler(c, cfg)
+			RateLimitStatusHandler(cfg, c, ctx)
 		})
-		apiRouter.GET("/rate_limit/limit", func(c *gin.Context) {
+		apiRouter.GET("/rate_limit/limit", func(ctx context.Context, c *app.RequestContext) {
-			RateLimitLimitHandler(c, cfg)
+			RateLimitLimitHandler(cfg, c, ctx)
 		})
 		apiRouter.GET("/smartgit/status", func(ctx context.Context, c *app.RequestContext) {
 			SmartGitStatusHandler(cfg, c, ctx)
 		})
 	}
 	logInfo("API router Init success")
 }
-func SizeLimitHandler(cfg *config.Config, c *gin.Context) {
+func SizeLimitHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
 	sizeLimit := cfg.Server.SizeLimit
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
-	c.Writer.Header().Set("Content-Type", "application/json")
+	c.Response.Header.Set("Content-Type", "application/json")
-	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
+	c.JSON(200, (map[string]interface{}{
 		"MaxResponseBodySize": sizeLimit,
-	})
+	}))
 }
-func WhiteListStatusHandler(c *gin.Context, cfg *config.Config) {
+func WhiteListStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
-	c.Writer.Header().Set("Content-Type", "application/json")
+	c.Response.Header.Set("Content-Type", "application/json")
-	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
+	c.JSON(200, (map[string]interface{}{
 		"Whitelist": cfg.Whitelist.Enabled,
-	})
+	}))
 }
-func BlackListStatusHandler(c *gin.Context, cfg *config.Config) {
+func BlackListStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
-	c.Writer.Header().Set("Content-Type", "application/json")
+	c.Response.Header.Set("Content-Type", "application/json")
-	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
+	c.JSON(200, (map[string]interface{}{
 		"Blacklist": cfg.Blacklist.Enabled,
-	})
+	}))
 }
-func CorsStatusHandler(c *gin.Context, cfg *config.Config) {
+func CorsStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
-	c.Writer.Header().Set("Content-Type", "application/json")
+	c.Response.Header.Set("Content-Type", "application/json")
-	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
+	c.JSON(200, (map[string]interface{}{
-		"Cors": cfg.CORS.Enabled,
+		"Cors": cfg.Server.Cors,
-	})
+	}))
 }
-func HealthcheckHandler(c *gin.Context) {
+func HealthcheckHandler(c *app.RequestContext, ctx context.Context) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
-	c.Writer.Header().Set("Content-Type", "application/json")
+	c.Response.Header.Set("Content-Type", "application/json")
-	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
+	c.JSON(200, (map[string]interface{}{
 		"Status": "OK",
-	})
+	}))
 }
-func VersionHandler(c *gin.Context, version string) {
+func VersionHandler(c *app.RequestContext, ctx context.Context, version string) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
-	c.Writer.Header().Set("Content-Type", "application/json")
+	c.Response.Header.Set("Content-Type", "application/json")
-	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
+	c.JSON(200, (map[string]interface{}{
 		"Version": version,
-	})
+	}))
 }
-func RateLimitStatusHandler(c *gin.Context, cfg *config.Config) {
+func RateLimitStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
-	c.Writer.Header().Set("Content-Type", "application/json")
+	c.Response.Header.Set("Content-Type", "application/json")
-	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
+	c.JSON(200, (map[string]interface{}{
 		"RateLimit": cfg.RateLimit.Enabled,
-	})
+	}))
 }
-func RateLimitLimitHandler(c *gin.Context, cfg *config.Config) {
+func RateLimitLimitHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
-	logInfo("%s %s %s %s %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto)
+	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
-	c.Writer.Header().Set("Content-Type", "application/json")
+	c.Response.Header.Set("Content-Type", "application/json")
-	json.NewEncoder(c.Writer).Encode(map[string]interface{}{
+	c.JSON(200, (map[string]interface{}{
 		"RatePerMinute": cfg.RateLimit.RatePerMinute,
-	})
+	}))
 }
 func SmartGitStatusHandler(cfg *config.Config, c *app.RequestContext, ctx context.Context) {
 	logInfo("%s %s %s %s %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
 	c.Response.Header.Set("Content-Type", "application/json")
 	c.JSON(200, (map[string]interface{}{
 		"enabled": cfg.GitClone.Mode == "cache",
 	}))
 }
--- a/auth/auth-header.go
+++ b/auth/auth-header.go
@@ -4,27 +4,30 @@ import (
 	"fmt"
 	"ghproxy/config"
-	"github.com/gin-gonic/gin"
+	"github.com/cloudwego/hertz/pkg/app"
 )
-func AuthHeaderHandler(c *gin.Context, cfg *config.Config) (isValid bool, err string) {
+func AuthHeaderHandler(c *app.RequestContext, cfg *config.Config) (isValid bool, err error) {
 	if !cfg.Auth.Enabled {
-		return true, ""
+		return true, nil
 	}
 	// 获取"GH-Auth"的值
-	authToken := c.GetHeader("GH-Auth")
+	var authToken string
-	logInfo("%s %s %s %s %s AUTH_TOKEN: %s", c.Request.Method, c.Request.Host, c.Request.URL.Path, c.Request.Proto, c.Request.RemoteAddr, authToken)
+	if cfg.Auth.Key != "" {
 		authToken = string(c.GetHeader(cfg.Auth.Key))
 	} else {
 		authToken = string(c.GetHeader("GH-Auth"))
 	}
 	logDebug("%s %s %s %s %s AUTH_TOKEN: %s", c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), authToken)
 	if authToken == "" {
-		err := "Auth Header == nil"
+		return false, fmt.Errorf("Auth token not found")
 		return false, err
 	}
-	isValid = authToken == cfg.Auth.AuthToken
+	isValid = authToken == cfg.Auth.Token
 	if !isValid {
-		err := fmt.Sprintf("Auth token incorrect: %s", authToken)
+		return false, fmt.Errorf("Auth token incorrect")
 		return false, err
 	}
-	logInfo("auth SUCCESS: %t", isValid)
+	return isValid, nil
 	return isValid, ""
 }
--- a/auth/auth-parameters.go
+++ b/auth/auth-parameters.go
@@ -4,28 +4,31 @@ import (
 	"fmt"
 	"ghproxy/config"
-	"github.com/gin-gonic/gin"
+	"github.com/cloudwego/hertz/pkg/app"
 )
-func AuthParametersHandler(c *gin.Context, cfg *config.Config) (isValid bool, err string) {
+func AuthParametersHandler(c *app.RequestContext, cfg *config.Config) (isValid bool, err error) {
 	if !cfg.Auth.Enabled {
-		return true, ""
+		return true, nil
 	}
-	authToken := c.Query("auth_token")
+	var authToken string
-	logInfo("%s %s %s %s %s AUTH_TOKEN: %s", c.ClientIP(), c.Request.Method, c.Request.URL.Path, c.Request.UserAgent(), c.Request.Proto, authToken)
+	if cfg.Auth.Key != "" {
 		authToken = c.Query(cfg.Auth.Key)
 	} else {
 		authToken = c.Query("auth_token")
 	}
 	logDebug("%s %s %s %s %s AUTH_TOKEN: %s", c.ClientIP(), c.Method(), string(c.Path()), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), authToken)
 	if authToken == "" {
-		err := "Auth token == nil"
+		return false, fmt.Errorf("Auth token not found")
 		return false, err
 	}
-	isValid = authToken == cfg.Auth.AuthToken
+	isValid = authToken == cfg.Auth.Token
 	if !isValid {
-		err := fmt.Sprintf("Auth token incorrect: %s", authToken)
+		return false, fmt.Errorf("Auth token invalid")
 		return false, err
 	}
-	logInfo("auth SUCCESS: %t", isValid)
+	return isValid, nil
 	return isValid, ""
 }
--- a/auth/auth.go
+++ b/auth/auth.go
@@ -1,14 +1,18 @@
 package auth
 import (
 	"context"
 	"fmt"
 	"ghproxy/config"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
-	"github.com/gin-gonic/gin"
+	"github.com/cloudwego/hertz/pkg/app"
 )
 var (
 	logw       = logger.Logw
 	logDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
@@ -16,26 +20,34 @@ var (
 func Init(cfg *config.Config) {
 	if cfg.Blacklist.Enabled {
-		LoadBlacklist(cfg)
+		err := InitBlacklist(cfg)
 		if err != nil {
 			logError(err.Error())
 			return
 		}
 	}
 	if cfg.Whitelist.Enabled {
-		LoadWhitelist(cfg)
+		err := InitWhitelist(cfg)
 		if err != nil {
 			logError(err.Error())
 			return
 		}
 	}
-	logInfo("Auth Init")
+	logDebug("Auth Init")
 }
-func AuthHandler(c *gin.Context, cfg *config.Config) (isValid bool, err string) {
+func AuthHandler(ctx context.Context, c *app.RequestContext, cfg *config.Config) (isValid bool, err error) {
-	if cfg.Auth.AuthMethod == "parameters" {
+	if cfg.Auth.Method == "parameters" {
 		isValid, err = AuthParametersHandler(c, cfg)
 		return isValid, err
-	} else if cfg.Auth.AuthMethod == "header" {
+	} else if cfg.Auth.Method == "header" {
 		isValid, err = AuthHeaderHandler(c, cfg)
 		return isValid, err
-	} else if cfg.Auth.AuthMethod == "" {
+	} else if cfg.Auth.Method == "" {
-		logWarning("Auth method not set")
+		logError("Auth method not set")
-		return true, ""
+		return true, nil
 	} else {
-		logWarning("Auth method not supported")
+		logError("Auth method not supported")
-		return false, "Auth method not supported"
+		return false, fmt.Errorf(fmt.Sprintf("Auth method %s not supported", cfg.Auth.Method))
 	}
 }
--- a/auth/blacklist.go
+++ b/auth/blacklist.go
@@ -2,59 +2,89 @@ package auth
 import (
 	"encoding/json"
 	"fmt"
 	"ghproxy/config"
 	"os"
 	"strings"
 	"sync"
 )
-type BlacklistConfig struct {
+type Blacklist struct {
-	Blacklist []string `json:"blacklist"`
+	userSet     map[string]struct{}            // 用户级黑名单
 	repoSet     map[string]map[string]struct{} // 仓库级黑名单
 	initOnce    sync.Once                      // 确保初始化只执行一次
 	initialized bool                           // 初始化状态标识
 }
 var (
-	cfg           *config.Config
+	instance *Blacklist
-	blacklistfile = "/data/ghproxy/config/blacklist.json"
+	initErr  error
 	blacklist     *BlacklistConfig
 )
-func LoadBlacklist(cfg *config.Config) {
+// InitBlacklist 初始化黑名单（线程安全，仅执行一次）
-	blacklistfile = cfg.Blacklist.BlacklistFile
+func InitBlacklist(cfg *config.Config) error {
-	blacklist = &BlacklistConfig{}
+	instance = &Blacklist{
 		userSet: make(map[string]struct{}),
 		repoSet: make(map[string]map[string]struct{}),
 	}
-	data, err := os.ReadFile(blacklistfile)
+	data, err := os.ReadFile(cfg.Blacklist.BlacklistFile)
 	if err != nil {
-		logError("Failed to read blacklist file: %v", err)
+		return fmt.Errorf("failed to read blacklist: %w", err)
 	}
-	err = json.Unmarshal(data, blacklist)
+	var list struct {
-	if err != nil {
+		Entries []string `json:"blacklist"`
 		logError("Failed to unmarshal blacklist JSON: %v", err)
 	}
-}
+	if err := json.Unmarshal(data, &list); err != nil {
-
+		return fmt.Errorf("invalid blacklist format: %w", err)
 func CheckBlacklist(repouser string, user string, repo string) bool {
 	return forRangeCheckBlacklist(blacklist.Blacklist, repouser, user)
 }
 func sliceRepoName_Blacklist(fullrepo string) (string, string) {
 	s := strings.Split(fullrepo, "/")
 	if len(s) != 2 {
 		return "", ""
 	}
 	return s[0], s[1]
 }
-func forRangeCheckBlacklist(blist []string, fullrepo string, user string) bool {
+	for _, entry := range list.Entries {
-	for _, blocked := range blist {
+		user, repo := splitUserRepo(entry)
-		users, _ := sliceRepoName_Blacklist(blocked)
+		switch {
-		if user == users {
+		case repo == "" || repo == "*":
-			if strings.HasSuffix(blocked, "/*") {
+			instance.userSet[user] = struct{}{}
-				return true
+		default:
-			}
+			if _, exists := instance.repoSet[user]; !exists {
-			if fullrepo == blocked {
+				instance.repoSet[user] = make(map[string]struct{})
 				return true
 			}
 			instance.repoSet[user][repo] = struct{}{}
 		}
 	}
 	instance.initialized = true
 	return nil
 }
 // CheckBlacklist 检查用户和仓库是否在黑名单中（无锁设计）
 func CheckBlacklist(username, repo string) bool {
 	if instance == nil || !instance.initialized {
 		return false
 	}
 	// 先检查用户级黑名单
 	if _, exists := instance.userSet[username]; exists {
 		return true
 	}
 	// 再检查仓库级黑名单
 	if repos, userExists := instance.repoSet[username]; userExists {
 		// 允许仓库名为空时的全用户仓库匹配
 		if repo == "" {
 			return true
 		}
 		_, repoExists := repos[repo]
 		return repoExists
 	}
 	return false
 }
 // splitUserRepo 优化分割逻辑（仅初始化时使用）
 func splitUserRepo(fullRepo string) (user, repo string) {
 	if idx := strings.Index(fullRepo, "/"); idx > 0 {
 		return fullRepo[:idx], fullRepo[idx+1:]
 	}
 	return fullRepo, ""
 }
--- a/auth/whitelist.go
+++ b/auth/whitelist.go
@@ -2,58 +2,90 @@ package auth
 import (
 	"encoding/json"
 	"fmt"
 	"ghproxy/config"
 	"os"
 	"strings"
 	"sync"
 )
-type WhitelistConfig struct {
+// Whitelist 用于存储白名单信息
-	Whitelist []string `json:"whitelist"`
+type Whitelist struct {
 	userSet     map[string]struct{}            // 用户级白名单
 	repoSet     map[string]map[string]struct{} // 仓库级白名单
 	initOnce    sync.Once                      // 确保初始化只执行一次
 	initialized bool                           // 初始化状态标识
 }
 var (
-	whitelistfile = "/data/ghproxy/config/whitelist.json"
+	whitelistInstance *Whitelist
-	whitelist     *WhitelistConfig
+	whitelistInitErr  error
 )
-func LoadWhitelist(cfg *config.Config) {
+// InitWhitelist 初始化白名单（线程安全，仅执行一次）
-	whitelistfile = cfg.Whitelist.WhitelistFile
+func InitWhitelist(cfg *config.Config) error {
-	whitelist = &WhitelistConfig{}
+	whitelistInstance = &Whitelist{
 		userSet: make(map[string]struct{}),
 		repoSet: make(map[string]map[string]struct{}),
 	}
-	data, err := os.ReadFile(whitelistfile)
+	data, err := os.ReadFile(cfg.Whitelist.WhitelistFile)
 	if err != nil {
-		logError("Failed to read whitelist file: %v", err)
+		return fmt.Errorf("failed to read whitelist: %w", err)
 	}
-	err = json.Unmarshal(data, whitelist)
+	var list struct {
-	if err != nil {
+		Entries []string `json:"whitelist"`
 		logError("Failed to unmarshal whitelist JSON: %v", err)
 	}
-}
+	if err := json.Unmarshal(data, &list); err != nil {
-
+		return fmt.Errorf("invalid whitelist format: %w", err)
 func CheckWhitelist(fullrepo string, user string, repo string) bool {
 	return forRangeCheckWhitelist(whitelist.Whitelist, fullrepo, user)
 }
 func sliceRepoName_Whitelist(fullrepo string) (string, string) {
 	s := strings.Split(fullrepo, "/")
 	if len(s) != 2 {
 		return "", ""
 	}
 	return s[0], s[1]
 }
-func forRangeCheckWhitelist(wlist []string, fullrepo string, user string) bool {
+	for _, entry := range list.Entries {
-	for _, passd := range wlist {
+		user, repo := splitUserRepoWhitelist(entry)
-		users, _ := sliceRepoName_Whitelist(passd)
+		switch {
-		if users == user {
+		case repo == "" || repo == "*":
-			if strings.HasSuffix(passd, "/*") {
+			whitelistInstance.userSet[user] = struct{}{}
-				return true
+		default:
-			}
+			if _, exists := whitelistInstance.repoSet[user]; !exists {
-			if fullrepo == passd {
+				whitelistInstance.repoSet[user] = make(map[string]struct{})
 				return true
 			}
 			whitelistInstance.repoSet[user][repo] = struct{}{}
 		}
 	}
 	whitelistInstance.initialized = true
 	return nil
 }
 // CheckWhitelist 检查用户和仓库是否在白名单中（无锁设计）
 func CheckWhitelist(username, repo string) bool {
 	if whitelistInstance == nil || !whitelistInstance.initialized {
 		return false
 	}
 	// 先检查用户级白名单
 	if _, exists := whitelistInstance.userSet[username]; exists {
 		return true
 	}
 	// 再检查仓库级白名单
 	if repos, userExists := whitelistInstance.repoSet[username]; userExists {
 		// 允许仓库名为空时的全用户仓库匹配
 		if repo == "" {
 			return true
 		}
 		_, repoExists := repos[repo]
 		return repoExists
 	}
 	return false
 }
 // splitUserRepoWhitelist 分割用户和仓库信息（仅初始化时使用）
 func splitUserRepoWhitelist(fullRepo string) (user, repo string) {
 	if idx := strings.Index(fullRepo, "/"); idx > 0 {
 		return fullRepo[:idx], fullRepo[idx+1:]
 	}
 	return fullRepo, ""
 }
--- a/caddyfile/dev/Caddyfile
+++ b/caddyfile/dev/Caddyfile
@@ -1,102 +0,0 @@
 {
    debug
    http_port 80
    https_port 443
    order cache before rewrite
    cache {
        cache_name GHProxyCache
    }
    log {
        level INFO
        output file /data/caddy/log/caddy.log {
            roll_size 5MB
            roll_keep 10
        }            
    }
    servers :80 {
        protocols h1 h2c
    }
 }
 (log) {
    log {
        format transform `{request>headers>X-Forwarded-For>[0]:request>remote_ip} - {user_id} [{ts}] "{request>method} {request>uri} {request>proto}" {status} {size} "{request>headers>Referer>[0]}" "{request>headers>User-Agent>[0]}"` {
            time_format "02/Jan/2006:15:04:05 -0700"
        }
 	    output file /data/caddy/log/{args[0]}/access.log {
 	        roll_size 5MB
 	        roll_keep 10
 	        roll_keep_for 24h
 	    }
    }
 }
 (error_page) {
    handle_errors {
 	    rewrite * /{err.status_code}.html
 	    root * /data/caddy/pages/errors
        file_server
    }
 }
 (encode) {
    encode {
        zstd best
        br 5 v2
        gzip 5
        minimum_length 512
    }
 }
 (cache) {
    cache {
         allowed_http_verbs GET
         stale {args[0]}
         ttl {args[1]}
    }    
 }
 (header_realip) {
    header_up X-Real-IP {remote_host}	    
 	header_up X-Real-IP {http.request.header.CF-Connecting-IP}
 	header_up X-Forwarded-For {http.request.header.CF-Connecting-IP}
 	header_up X-Forwarded-Proto {http.request.header.CF-Visitor}
 }
 (rate_limit) {
    route /* {
        rate_limit {remote.ip} {args[0]}r/m 10000 429
    }    
 }
 :80 {
    reverse_proxy {
        to 127.0.0.1:8080
        import header_realip
        transport http {
            versions 1.1 h2c
        }
    }
    import log ghproxy
    import cache 0s 300s
    import error_page  
    import encode
    import rate_limit 60 
    route / {
        root /data/www
        file_server
        import cache 0s 24h
    }
    route /favicon.ico {
        root /data/www
        file_server
        import cache 0s 24h
    }
    route /api* {
        rate_limit {remote.ip} 15r/m 10000 429
        import cache 0s 6h
    }   
 }
 import /data/caddy/config.d/*
--- a/caddyfile/nocache/Caddyfile
+++ b/caddyfile/nocache/Caddyfile
@@ -1,99 +0,0 @@
 {
    debug
    http_port 80
    https_port 443
    order cache before rewrite
    cache {
        cache_name GHProxyCache
    }
    log {
        level INFO
        output file /data/caddy/log/caddy.log {
            roll_size 5MB
            roll_keep 10
        }            
    }
    servers :80 {
        protocols h1 h2c
    }
 }
 (log) {
    log {
        format transform `{request>headers>X-Forwarded-For>[0]:request>remote_ip} - {user_id} [{ts}] "{request>method} {request>uri} {request>proto}" {status} {size} "{request>headers>Referer>[0]}" "{request>headers>User-Agent>[0]}"` {
            time_format "02/Jan/2006:15:04:05 -0700"
        }
 	    output file /data/caddy/log/{args[0]}/access.log {
 	        roll_size 5MB
 	        roll_keep 10
 	        roll_keep_for 24h
 	    }
    }
 }
 (error_page) {
    handle_errors {
 	    rewrite * /{err.status_code}.html
 	    root * /data/caddy/pages/errors
        file_server
    }
 }
 (encode) {
    encode {
        zstd best
        br 5 v2
        gzip 5
        minimum_length 256
    }
 }
 (cache) {
    cache {
         allowed_http_verbs GET
         stale {args[0]}
         ttl {args[1]}
    }    
 }
 (header_realip) {
    header_up X-Real-IP {remote_host}	    
 	header_up X-Real-IP {http.request.header.CF-Connecting-IP}
 	header_up X-Forwarded-For {http.request.header.CF-Connecting-IP}
 	header_up X-Forwarded-Proto {http.request.header.CF-Visitor}
 }
 (rate_limit) {
    route /* {
        rate_limit {remote.ip} {args[0]}r/m 10000 429
    }    
 }
 :80 {
    reverse_proxy {
        to h2c://127.0.0.1:8080
        import header_realip
    }
    import log ghproxy
    import error_page  
    import encode
    import rate_limit 60  
    route / {
        root /data/www
        file_server
 		import cache 300s
    }
    route /favicon.ico {
        root /data/www
        file_server
 		import cache 300s
    }
    route /api* {
        rate_limit {remote.ip} 15r/m 10000 429
 		import cache 300s
    }
 }
 import /data/caddy/config.d/*
--- a/caddyfile/release/Caddyfile
+++ b/caddyfile/release/Caddyfile
@@ -1,103 +0,0 @@
 {
    debug
    http_port 80
    https_port 443
    order cache before rewrite
    cache {
        cache_name GHProxyCache
    }
    log {
        level INFO
        output file /data/caddy/log/caddy.log {
            roll_size 5MB
            roll_keep 10
        }
    }
    servers :80 {
        protocols h1 h2c
    }    
 }
 (log) {
    log {
        format transform `{request>headers>X-Forwarded-For>[0]:request>remote_ip} - {user_id} [{ts}] "{request>method} {request>uri} {request>proto}" {status} {size} "{request>headers>Referer>[0]}" "{request>headers>User-Agent>[0]}"` {
            time_format "02/Jan/2006:15:04:05 -0700"
        }
 	    output file /data/caddy/log/{args[0]}/access.log {
 	        roll_size 5MB
 	        roll_keep 10
 	        roll_keep_for 24h
 	    }
    }
 }
 (error_page) {
    handle_errors {
 	    rewrite * /{err.status_code}.html
 	    root * /data/caddy/pages/errors
        file_server
    }
 }
 (encode) {
    encode {
        zstd best
        br 5 v2
        gzip 5
        minimum_length 512
    }
 }
 (cache) {
    cache {
         allowed_http_verbs GET
         stale {args[0]}
         ttl {args[1]}
    }    
 }
 (header_realip) {
    header_up X-Real-IP {remote_host}	    
 	header_up X-Real-IP {http.request.header.CF-Connecting-IP}
 	header_up X-Forwarded-For {http.request.header.CF-Connecting-IP}
 	header_up X-Forwarded-Proto {http.request.header.CF-Visitor}
 }
 (rate_limit) {
    route /* {
        rate_limit {remote.ip} {args[0]}r/m 10000 429
    }    
 }
 :80 {
    reverse_proxy {
        to 127.0.0.1:8080
        import header_realip
        transport http {
            versions 1.1 h2c
        }
    }
    import log ghproxy
    import cache 0s 300s
    import error_page  
    import encode
    import rate_limit 60  
    route / {
        root /data/www
        file_server
        import cache 0s 24h
    }
    route /favicon.ico {
        root /data/www
        file_server
        import cache 0s 24h
    }
    route /api* {
        rate_limit {remote.ip} 15r/m 10000 429
        import cache 0s 6h
    }
 }
 import /data/caddy/config.d/*
--- a/config/blacklist.json
+++ b/config/blacklist.json
@@ -1,7 +1,7 @@
 {
  "blacklist": [
-    "black/list",
+    "eviluser",
-    "test/test1",
+    "spamuser/bad-repo",
-    "example/*"
+    "malwareuser/*"
  ]
 }
--- a/config/config.go
+++ b/config/config.go
@@ -1,47 +1,119 @@
 package config
 import (
 	"os"
 	"github.com/BurntSushi/toml"
 )
 type Config struct {
 	Server    ServerConfig
 	Httpc     HttpcConfig
 	GitClone  GitCloneConfig
 	Shell     ShellConfig
 	Pages     PagesConfig
 	Log       LogConfig
 	CORS      CORSConfig
 	Auth      AuthConfig
 	Blacklist BlacklistConfig
 	Whitelist WhitelistConfig
 	RateLimit RateLimitConfig
 	Outbound  OutboundConfig
 }
 /*
 [server]
 host = "0.0.0.0"
 port = 8080
 netlib = "netpoll" # "netpoll" / "std" "standard" "net/http" "net"
 sizeLimit = 125 # MB
 memLimit = 0 # MB
 H2C = true
 cors = "*" # "*"/"" -> "*" ; "nil" -> "" ;
 debug = false
 */
 type ServerConfig struct {
 	Port      int    `toml:"port"`
 	Host      string `toml:"host"`
 	NetLib    string `toml:"netlib"`
 	SizeLimit int    `toml:"sizeLimit"`
-	EnableH2C string `toml:"enableH2C"`
+	MemLimit  int64  `toml:"memLimit"`
 	H2C       bool   `toml:"H2C"`
 	Cors      string `toml:"cors"`
 	Debug     bool   `toml:"debug"`
 }
 /*
 [httpc]
 mode = "auto" # "auto" or "advanced"
 maxIdleConns = 100 # only for advanced mode
 maxIdleConnsPerHost = 60 # only for advanced mode
 maxConnsPerHost = 0 # only for advanced mode
 */
 type HttpcConfig struct {
 	Mode                string `toml:"mode"`
 	MaxIdleConns        int    `toml:"maxIdleConns"`
 	MaxIdleConnsPerHost int    `toml:"maxIdleConnsPerHost"`
 	MaxConnsPerHost     int    `toml:"maxConnsPerHost"`
 }
 /*
 [gitclone]
 mode = "bypass" # bypass / cache
 smartGitAddr = "http://127.0.0.1:8080"
 ForceH2C = true
 */
 type GitCloneConfig struct {
 	Mode         string `toml:"mode"`
 	SmartGitAddr string `toml:"smartGitAddr"`
 	ForceH2C     bool   `toml:"ForceH2C"`
 }
 /*
 [shell]
 editor = true
 rewriteAPI = false
 */
 type ShellConfig struct {
 	Editor     bool `toml:"editor"`
 	RewriteAPI bool `toml:"rewriteAPI"`
 }
 /*
 [pages]
 mode = "internal" # "internal" or "external"
 theme = "bootstrap" # "bootstrap" or "nebula"
 staticDir = "/data/www"
 */
 type PagesConfig struct {
-	Enabled   bool   `toml:"enabled"`
+	Mode      string `toml:"mode"`
 	Theme     string `toml:"theme"`
 	StaticDir string `toml:"staticDir"`
 }
 type LogConfig struct {
-	LogFilePath string `toml:"logFilePath"`
+	LogFilePath  string `toml:"logFilePath"`
-	MaxLogSize  int    `toml:"maxLogSize"`
+	MaxLogSize   int    `toml:"maxLogSize"`
-}
+	Level        string `toml:"level"`
-
+	HertZLogPath string `toml:"hertzLogPath"`
 type CORSConfig struct {
 	Enabled bool `toml:"enabled"`
 }
 /*
 [auth]
 Method = "parameters" # "header" or "parameters"
 Key = ""
 Token = "token"
 enabled = false
 passThrough = false
 ForceAllowApi = true
 */
 type AuthConfig struct {
-	Enabled     bool   `toml:"enabled"`
+	Enabled       bool   `toml:"enabled"`
-	AuthMethod  string `toml:"authMethod"`
+	Method        string `toml:"method"`
-	AuthToken   string `toml:"authToken"`
+	Key           string `toml:"key"`
-	PassThrough bool   `toml:"passThrough"`
+	Token         string `toml:"token"`
 	PassThrough   bool   `toml:"passThrough"`
 	ForceAllowApi bool   `toml:"ForceAllowApi"`
 }
 type BlacklistConfig struct {
@@ -61,11 +133,116 @@ type RateLimitConfig struct {
 	Burst         int    `toml:"burst"`
 }
 /*
 [outbound]
 enabled = false
 url = "socks5://127.0.0.1:1080" # "http://127.0.0.1:7890"
 */
 type OutboundConfig struct {
 	Enabled bool   `toml:"enabled"`
 	Url     string `toml:"url"`
 }
 // LoadConfig 从 TOML 配置文件加载配置
 func LoadConfig(filePath string) (*Config, error) {
 	if !FileExists(filePath) {
 		// 楔入配置文件
 		err := DefaultConfig().WriteConfig(filePath)
 		if err != nil {
 			return nil, err
 		}
 		return DefaultConfig(), nil
 	}
 	var config Config
 	if _, err := toml.DecodeFile(filePath, &config); err != nil {
 		return nil, err
 	}
 	return &config, nil
 }
 // 写入配置文件
 func (c *Config) WriteConfig(filePath string) error {
 	file, err := os.Create(filePath)
 	if err != nil {
 		return err
 	}
 	defer file.Close()
 	encoder := toml.NewEncoder(file)
 	return encoder.Encode(c)
 }
 // 检测文件是否存在
 func FileExists(filename string) bool {
 	_, err := os.Stat(filename)
 	return !os.IsNotExist(err)
 }
 // 默认配置结构体
 func DefaultConfig() *Config {
 	return &Config{
 		Server: ServerConfig{
 			Port:      8080,
 			Host:      "0.0.0.0",
 			NetLib:    "netpoll",
 			SizeLimit: 125,
 			MemLimit:  0,
 			H2C:       true,
 			Cors:      "*",
 			Debug:     false,
 		},
 		Httpc: HttpcConfig{
 			Mode:                "auto",
 			MaxIdleConns:        100,
 			MaxIdleConnsPerHost: 60,
 			MaxConnsPerHost:     0,
 		},
 		GitClone: GitCloneConfig{
 			Mode:         "bypass",
 			SmartGitAddr: "http://127.0.0.1:8080",
 			ForceH2C:     false,
 		},
 		Shell: ShellConfig{
 			Editor:     false,
 			RewriteAPI: false,
 		},
 		Pages: PagesConfig{
 			Mode:      "internal",
 			Theme:     "bootstrap",
 			StaticDir: "/data/www",
 		},
 		Log: LogConfig{
 			LogFilePath:  "/data/ghproxy/log/ghproxy.log",
 			MaxLogSize:   10,
 			Level:        "info",
 			HertZLogPath: "/data/ghproxy/log/hertz.log",
 		},
 		Auth: AuthConfig{
 			Enabled:       false,
 			Method:        "parameters",
 			Key:           "",
 			Token:         "token",
 			PassThrough:   false,
 			ForceAllowApi: false,
 		},
 		Blacklist: BlacklistConfig{
 			Enabled:       false,
 			BlacklistFile: "/data/ghproxy/config/blacklist.txt",
 		},
 		Whitelist: WhitelistConfig{
 			Enabled:       false,
 			WhitelistFile: "/data/ghproxy/config/whitelist.txt",
 		},
 		RateLimit: RateLimitConfig{
 			Enabled:       false,
 			RateMethod:    "total",
 			RatePerMinute: 100,
 			Burst:         10,
 		},
 		Outbound: OutboundConfig{
 			Enabled: false,
 			Url:     "socks5://127.0.0.1:1080",
 		},
 	}
 }
--- a/config/config.toml
+++ b/config/config.toml
@@ -1,26 +1,46 @@
 [server]
-host = "127.0.0.1" 
+host = "0.0.0.0" 
 port = 8080 
 netlib = "netpoll" # "netpoll" / "std" "standard" "net/http" "net"
 sizeLimit = 125 # MB
-enableH2C = "on" # "on" or "off"
+memLimit = 0 # MB
 H2C = true
 cors = "*" # "*"/"" -> "*" ; "nil" -> "" ;
 debug = false
 [httpc]
 mode = "auto" # "auto" or "advanced"
 maxIdleConns = 100 # only for advanced mode
 maxIdleConnsPerHost = 60 # only for advanced mode
 maxConnsPerHost = 0 # only for advanced mode
 [gitclone]
 mode = "bypass" # bypass / cache
 smartGitAddr = "http://127.0.0.1:8080"
 ForceH2C = false
 [shell]
 editor = false
 rewriteAPI = false
 [pages]
-enabled = false
+mode = "internal" # "internal" or "external"
 theme = "bootstrap" # "bootstrap" or "nebula"
 staticDir = "/data/www" 
 [log]
 logFilePath = "/data/ghproxy/log/ghproxy.log" 
 maxLogSize = 5 # MB
-
+level = "info" # dump, debug, info, warn, error, none
-[cors]
+hertzLogPath = "/data/ghproxy/log/hertz.log"
 enabled = true
 [auth]
-authMethod = "parameters" # "header" or "parameters"
+method = "parameters" # "header" or "parameters"
-authToken = "token"
+token = "token"
 key = ""
 enabled = false
 passThrough = false
 ForceAllowApi = false
 [blacklist]
 blacklistFile = "/data/ghproxy/config/blacklist.json"
@@ -35,3 +55,7 @@ enabled = false
 rateMethod = "total" # "ip" or "total"
 ratePerMinute = 180
 burst = 5
 [outbound]
 enabled = false
 url = "socks5://127.0.0.1:1080" # "http://127.0.0.1:7890"
--- a/deploy/config.toml
+++ b/deploy/config.toml
@@ -1,26 +1,45 @@
 [server]
 host = "127.0.0.1" 
 port = 8080 
 netlib = "netpoll" # "netpoll" / "std" "standard" "net/http" "net"
 sizeLimit = 125 # MB
-enableH2C = false
+memLimit = 0 # MB
 H2C = true
 cors = "*" # "*"/"" -> "*" ; "nil" -> "" ;
 debug = false
 [httpc]
 mode = "auto" # "auto" or "advanced"
 maxIdleConns = 100 # only for advanced mode
 maxIdleConnsPerHost = 60 # only for advanced mode
 maxConnsPerHost = 0 # only for advanced mode
 [gitclone]
 mode = "bypass" # bypass / cache
 smartGitAddr = "http://127.0.0.1:8080"
 ForceH2C = false
 [shell]
 editor = false
 rewriteAPI = false
 [pages]
-enabled = false
+mode = "internal" # "internal" or "external"
 theme = "bootstrap" # "bootstrap" or "nebula"
 staticDir = "/usr/local/ghproxy/pages" 
 [log]
 logFilePath = "/usr/local/ghproxy/log/ghproxy.log" 
 maxLogSize = 5 # MB
-
+level = "info" # dump, debug, info, warn, error, none
-[cors]
+hertzLogPath = "/usr/local/ghproxy/log/hertz.log" 
 enabled = true
 [auth]
 authMethod = "parameters" # "header" or "parameters"
 authToken = "token"
 enabled = false
 passThrough = false
 ForceAllowApi = false
 [blacklist]
 blacklistFile = "/usr/local/ghproxy/config/blacklist.json"
@@ -35,3 +54,7 @@ enabled = false
 rateMethod = "total" # "ip" or "total"
 ratePerMinute = 180
 burst = 5
 [outbound]
 enabled = false
 url = "socks5://127.0.0.1:1080" # "http://127.0.0.1:7890"
--- a/deploy/ghproxy.service
+++ b/deploy/ghproxy.service
@@ -3,7 +3,7 @@ Description=Github Proxy Service
 After=network.target
 [Service]
-ExecStart=/bin/bash -c '/usr/local/ghproxy/ghproxy -cfg /usr/local/ghproxy/config/config.toml > /usr/local/ghproxy/log/run.log 2>&1'
+ExecStart=/bin/bash -c '/usr/local/ghproxy/ghproxy -c /usr/local/ghproxy/config/config.toml > /usr/local/ghproxy/log/run.log 2>&1'
 WorkingDirectory=/usr/local/ghproxy
 Restart=always
 User=root
--- a/deploy/install-dev.sh
+++ b/deploy/install-dev.sh
@@ -73,26 +73,6 @@ if [ -z "$ghproxy_dir" ]; then
    ghproxy_dir="/usr/local/ghproxy"
 fi
 make_systemd_service() {
    cat <<EOF > /etc/systemd/system/ghproxy.service
 [Unit]
 Description=Github Proxy Service
 After=network.target
 [Service]
 ExecStart=/bin/bash -c '$ghproxy_dir/ghproxy -cfg $ghproxy_dir/config/config.toml > $ghproxy_dir/log/run.log 2>&1'
 WorkingDirectory=$ghproxy_dir
 Restart=always
 User=root
 Group=root
 [Install]
 WantedBy=multi-user.target
 EOF
 }
 # 创建目录
 mkdir -p ${ghproxy_dir}
 mkdir -p ${ghproxy_dir}/config
@@ -100,18 +80,18 @@ mkdir -p ${ghproxy_dir}/log
 mkdir -p ${ghproxy_dir}/pages
 # 获取最新版本号
-VERSION=$(curl -s https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/DEV-VERSION)
+VERSION=$(curl -s https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/dev/DEV-VERSION)
-wget -q -O ${ghproxy_dir}/VERSION https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/DEV-VERSION
+wget -q -O ${ghproxy_dir}/VERSION https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/dev/DEV-VERSION
 # 下载ghproxy
-wget -q -O ${ghproxy_dir}/ghproxy https://github.com/WJQSERVER-STUDIO/ghproxy/releases/download/$VERSION/ghproxy-linux-$ARCH.tar.gz
+wget -q -O ${ghproxy_dir}/ghproxy-linux-$ARCH.tar.gz https://github.com/WJQSERVER-STUDIO/ghproxy/releases/download/$VERSION/ghproxy-linux-$ARCH.tar.gz
 install tar
 tar -zxvf ${ghproxy_dir}/ghproxy-linux-$ARCH.tar.gz -C ${ghproxy_dir}
 chmod +x ${ghproxy_dir}/ghproxy
 # 下载pages
-wget -q -O ${ghproxy_dir}/pages/index.html https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/pages/index.html
+wget -q -O ${ghproxy_dir}/pages/index.html https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/dev/pages/bootstrap/index.html
-wget -q -O ${ghproxy_dir}/pages/favicon.ico https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/pages/favicon.ico
+wget -q -O ${ghproxy_dir}/pages/favicon.ico https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/dev/pages/bootstrap/favicon.ico
 # 下载配置文件
@@ -120,7 +100,7 @@ if [ -f ${ghproxy_dir}/config/config.toml ]; then
    echo "[WARNING] 请检查配置文件是否正确，DEV版本升级时请注意配置文件兼容性"
    sleep 2
 else
-    wget -q -O ${ghproxy_dir}/config/config.toml https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/deploy/config.toml
+    wget -q -O ${ghproxy_dir}/config/config.toml https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/dev/deploy/config.toml
 fi
 # 替换 port = 8080 
@@ -133,9 +113,27 @@ sed -i "s|whitelistFile = \"/usr/local/ghproxy/config/whitelist.json\"|whitelist
 # 下载systemd服务文件
 if [ "$ghproxy_dir" = "/usr/local/ghproxy" ]; then
-    wget -q -O /etc/systemd/system/ghproxy.service https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/deploy/ghproxy.service
+    wget -q -O /etc/systemd/system/ghproxy.service https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/dev/deploy/ghproxy.service
 else
-    make_systemd_service()
+
    cat <<EOF > /etc/systemd/system/ghproxy.service
 [Unit]
 Description=Github Proxy Service
 After=network.target
 [Service]
 ExecStart=/bin/bash -c '$ghproxy_dir/ghproxy -c $ghproxy_dir/config/config.toml > $ghproxy_dir/log/run.log 2>&1'
 WorkingDirectory=$ghproxy_dir
 Restart=always
 User=root
 Group=root
 [Install]
 WantedBy=multi-user.target
 EOF
 fi
 # 启动ghproxy
--- a/deploy/install.sh
+++ b/deploy/install.sh
@@ -73,26 +73,6 @@ if [ -z "$ghproxy_dir" ]; then
    ghproxy_dir="/usr/local/ghproxy"
 fi
 make_systemd_service() {
    cat <<EOF > /etc/systemd/system/ghproxy.service
 [Unit]
 Description=Github Proxy Service
 After=network.target
 [Service]
 ExecStart=/bin/bash -c '$ghproxy_dir/ghproxy -cfg $ghproxy_dir/config/config.toml > $ghproxy_dir/log/run.log 2>&1'
 WorkingDirectory=$ghproxy_dir
 Restart=always
 User=root
 Group=root
 [Install]
 WantedBy=multi-user.target
 EOF
 }
 # 创建目录
 mkdir -p ${ghproxy_dir}
 mkdir -p ${ghproxy_dir}/config
@@ -104,14 +84,14 @@ VERSION=$(curl -s https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/mai
 wget -q -O ${ghproxy_dir}/VERSION https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/VERSION
 # 下载ghproxy
-wget -q -O ${ghproxy_dir}/ghproxy https://github.com/WJQSERVER-STUDIO/ghproxy/releases/download/${VERSION}/ghproxy-linux-${ARCH}.tar.gz
+wget -q -O ${ghproxy_dir}/ghproxy-linux-$ARCH.tar.gz https://github.com/WJQSERVER-STUDIO/ghproxy/releases/download/${VERSION}/ghproxy-linux-${ARCH}.tar.gz
 install tar
 tar -zxvf ${ghproxy_dir}/ghproxy-linux-$ARCH.tar.gz -C ${ghproxy_dir}
 chmod +x ${ghproxy_dir}/ghproxy
 # 下载pages
-wget -q -O ${ghproxy_dir}/pages/index.html https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/pages/index.html
+wget -q -O ${ghproxy_dir}/pages/index.html https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/pages/bootstrap/index.html
-wget -q -O ${ghproxy_dir}/pages/favicon.ico https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/pages/favicon.ico
+wget -q -O ${ghproxy_dir}/pages/favicon.ico https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/pages/bootstrap/favicon.ico
 # 下载配置文件
@@ -135,7 +115,25 @@ sed -i "s|whitelistFile = \"/usr/local/ghproxy/config/whitelist.json\"|whitelist
 if [ "$ghproxy_dir" = "/usr/local/ghproxy" ]; then
    wget -q -O /etc/systemd/system/ghproxy.service https://raw.githubusercontent.com/WJQSERVER-STUDIO/ghproxy/main/deploy/ghproxy.service
 else
-    make_systemd_service()
+
    cat <<EOF > /etc/systemd/system/ghproxy.service
 [Unit]
 Description=Github Proxy Service
 After=network.target
 [Service]
 ExecStart=/bin/bash -c '$ghproxy_dir/ghproxy -c $ghproxy_dir/config/config.toml > $ghproxy_dir/log/run.log 2>&1'
 WorkingDirectory=$ghproxy_dir
 Restart=always
 User=root
 Group=root
 [Install]
 WantedBy=multi-user.target
 EOF
 fi
 # 启动ghproxy
--- a/docker/compose/docker-compose.yml
+++ b/docker/compose/docker-compose.yml
@@ -3,15 +3,8 @@ services:
    ghproxy:
        image: 'wjqserver/ghproxy:latest'
        restart: always
        healthcheck:
          test: ["CMD", "curl", "-f", "http://127.0.0.1:80/api/healthcheck"]
          interval: 60s  
          timeout: 10s  
          retries: 3  
          start_period: 30s  
        volumes:
-            - './ghproxy/log/run:/data/ghproxy/log'
+            - './ghproxy/log:/data/ghproxy/log'
            - './ghproxy/log/caddy:/data/caddy/log'
            - './ghproxy/config:/data/ghproxy/config'
        ports:
-            - '7210:80'
+            - '7210:8080'
--- a/docker/dockerfile/dev/Dockerfile
+++ b/docker/dockerfile/dev/Dockerfile
@@ -1,8 +1,9 @@
-FROM wjqserver/caddy:2.9.1-alpine AS builder
+FROM alpine:latest AS builder
 ARG USER=WJQSERVER-STUDIO
 ARG REPO=ghproxy
 ARG APPLICATION=ghproxy
 ARG BRANCH=dev
 ARG TARGETOS
 ARG TARGETARCH
 ARG TARGETPLATFORM
@@ -15,39 +16,36 @@ RUN mkdir -p /data/${APPLICATION}/log
 # 安装依赖
 RUN apk add --no-cache curl wget tar
 # 前端
 RUN wget -O /data/www/index.html https://raw.githubusercontent.com/${USER}/${REPO}/main/pages/index.html
 RUN wget -O /data/www/favicon.ico https://raw.githubusercontent.com/${USER}/${REPO}/main/pages/favicon.ico
 # 后端
-RUN VERSION=$(curl -s https://raw.githubusercontent.com/${USER}/${REPO}/main/DEV-VERSION) && \
+RUN VERSION=$(curl -s https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/DEV-VERSION) && \
    wget -O /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz https://github.com/${USER}/${REPO}/releases/download/$VERSION/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz && \
    tar -zxvf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz -C /data/${APPLICATION} && \
    rm -rf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz
 RUN wget -O /usr/local/bin/init.sh https://raw.githubusercontent.com/${USER}/${REPO}/main/docker/dockerfile/dev/init.sh
 # 拉取配置
-RUN wget -O /data/caddy/Caddyfile https://raw.githubusercontent.com/${USER}/${REPO}/main/caddyfile/dev/Caddyfile
+RUN wget -O /data/${APPLICATION}/config.toml https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/config.toml
-RUN wget -O /data/${APPLICATION}/config.toml https://raw.githubusercontent.com/${USER}/${REPO}/main/config/config.toml
+RUN wget -O /data/${APPLICATION}/blacklist.json https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/blacklist.json
-RUN wget -O /data/${APPLICATION}/blacklist.json https://raw.githubusercontent.com/${USER}/${REPO}/main/config/blacklist.json
+RUN wget -O /data/${APPLICATION}/whitelist.json https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/whitelist.json
 RUN wget -O /data/${APPLICATION}/whitelist.json https://raw.githubusercontent.com/${USER}/${REPO}/main/config/whitelist.json
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
-FROM wjqserver/caddy:2.9.1-alpine
+FROM alpine:latest
 RUN apk add --no-cache curl
 ARG USER=WJQSERVER-STUDIO
 ARG REPO=ghproxy
 ARG BRANCH=v3
 ARG APPLICATION=ghproxy
 ARG TARGETOS
 ARG TARGETARCH
 ARG TARGETPLATFORM
 COPY --from=builder /data/www /data/www
 COPY --from=builder /data/caddy /data/caddy
 COPY --from=builder /data/${APPLICATION} /data/${APPLICATION}
 COPY --from=builder /usr/local/bin/init.sh /usr/local/bin/init.sh
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
 CMD ["/usr/local/bin/init.sh"]
 CMD ["/data/ghproxy/ghproxy"]
--- a/docker/dockerfile/dev/init.sh
+++ b/docker/dockerfile/dev/init.sh
@@ -1,31 +0,0 @@
 #!/bin/sh
 APPLICATION=ghproxy
 if [ ! -f /data/caddy/config/Caddyfile ]; then
    cp /data/caddy/Caddyfile /data/caddy/config/Caddyfile
 fi
 if [ ! -f /data/${APPLICATION}/config/blacklist.json ]; then
    cp /data/${APPLICATION}/blacklist.json /data/${APPLICATION}/config/blacklist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/whitelist.json ]; then
    cp /data/${APPLICATION}/whitelist.json /data/${APPLICATION}/config/whitelist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/config.toml ]; then
    cp /data/${APPLICATION}/config.toml /data/${APPLICATION}/config/config.toml
 fi
 /data/caddy/caddy run --config /data/caddy/config/Caddyfile > /data/${APPLICATION}/log/caddy.log 2>&1 &
 /data/${APPLICATION}/${APPLICATION} -cfg /data/${APPLICATION}/config/config.toml > /data/${APPLICATION}/log/run.log 2>&1 &
 sleep 30
 while [[ true ]]; do
    # Failure Circuit Breaker
    curl -f --max-time 5 -retry 3 http://127.0.0.1:8080/api/healthcheck || exit 1
    sleep 120
 done    
--- a/docker/dockerfile/nocache/Dockerfile
+++ b/docker/dockerfile/nocache/Dockerfile
@@ -1,52 +0,0 @@
 FROM alpine:latest AS builder
 ARG USER=WJQSERVER-STUDIO
 ARG REPO=ghproxy
 ARG APPLICATION=ghproxy
 ARG TARGETOS
 ARG TARGETARCH
 ARG TARGETPLATFORM
 # 创建文件夹
 RUN mkdir -p /data/www
 RUN mkdir -p /data/${APPLICATION}/config 
 RUN mkdir -p /data/${APPLICATION}/log 
 # 安装依赖
 RUN apk add --no-cache curl wget tar
 # 前端
 RUN wget -O /data/www/index.html https://raw.githubusercontent.com/${USER}/${REPO}/main/pages/index.html
 RUN wget -O /data/www/favicon.ico https://raw.githubusercontent.com/${USER}/${REPO}/main/pages/favicon.ico
 # 后端
 RUN VERSION=$(curl -s https://raw.githubusercontent.com/${USER}/${REPO}/main/VERSION) && \
    wget -O /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz https://github.com/${USER}/${REPO}/releases/download/$VERSION/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz && \
    tar -zxvf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz -C /data/${APPLICATION} && \
    rm -rf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz
 RUN wget -O /usr/local/bin/init.sh https://raw.githubusercontent.com/${USER}/${REPO}/main/docker/dockerfile/nocache/init.sh
 # 拉取配置
 #RUN wget -O /data/caddy/Caddyfile https://raw.githubusercontent.com/${USER}/${REPO}/main/caddyfile/nocache/Caddyfile
 RUN wget -O /data/${APPLICATION}/config.toml https://raw.githubusercontent.com/${USER}/${REPO}/main/docker/dockerfile/nocache/config.toml
 RUN wget -O /data/${APPLICATION}/blacklist.json https://raw.githubusercontent.com/${USER}/${REPO}/main/config/blacklist.json
 RUN wget -O /data/${APPLICATION}/whitelist.json https://raw.githubusercontent.com/${USER}/${REPO}/main/config/whitelist.json
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
 FROM alpine:latest
 RUN apk add --no-cache curl
 COPY --from=builder /data/www /data/www
 COPY --from=builder /data/${APPLICATION} /data/${APPLICATION}
 COPY --from=builder /usr/local/bin/init.sh /usr/local/bin/init.sh
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
 CMD ["/usr/local/bin/init.sh"]
--- a/docker/dockerfile/nocache/config.toml
+++ b/docker/dockerfile/nocache/config.toml
@@ -1,37 +0,0 @@
 [server]
 host = "0.0.0.0" 
 port = 80 #修改此配置会导致容器异常
 sizeLimit = 125 # MB
 enableH2C = "off" # on / off
 debug = false
 [pages]
 enabled = false
 staticDir = "/data/www" 
 [log]
 logFilePath = "/data/ghproxy/log/ghproxy.log" 
 maxLogSize = 5 # MB
 [cors]
 enabled = true
 [auth]
 authMethod = "parameters" # "header" or "parameters"
 authToken = "token"
 enabled = false
 passThrough = false
 [blacklist]
 blacklistFile = "/data/ghproxy/config/blacklist.json"
 enabled = false
 [whitelist]
 enabled = false
 whitelistFile = "/data/ghproxy/config/whitelist.json"
 [rateLimit]
 enabled = false
 rateMethod = "total" # "ip" or "total"
 ratePerMinute = 180
 burst = 5
--- a/docker/dockerfile/nocache/init.sh
+++ b/docker/dockerfile/nocache/init.sh
@@ -1,25 +0,0 @@
 #!/bin/sh
 APPLICATION=ghproxy
 if [ ! -f /data/${APPLICATION}/config/blacklist.json ]; then
    cp /data/${APPLICATION}/blacklist.json /data/${APPLICATION}/config/blacklist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/whitelist.json ]; then
    cp /data/${APPLICATION}/whitelist.json /data/${APPLICATION}/config/whitelist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/config.toml ]; then
    cp /data/${APPLICATION}/config.toml /data/${APPLICATION}/config/config.toml
 fi
 /data/${APPLICATION}/${APPLICATION} -cfg /data/${APPLICATION}/config/config.toml > /data/${APPLICATION}/log/run.log 2>&1 &
 sleep 30
 while [[ true ]]; do
    # Failure Circuit Breaker
    curl -f --max-time 5 -retry 3 http://127.0.0.1:80/api/healthcheck || exit 1
    sleep 120
 done
--- a/docker/dockerfile/release/Dockerfile
+++ b/docker/dockerfile/release/Dockerfile
@@ -1,7 +1,8 @@
-FROM wjqserver/caddy:2.9.1-alpine AS builder
+FROM alpine:latest AS builder
 ARG USER=WJQSERVER-STUDIO
 ARG REPO=ghproxy
 ARG BRANCH=main
 ARG APPLICATION=ghproxy
 ARG TARGETOS
 ARG TARGETARCH
@@ -15,39 +16,38 @@ RUN mkdir -p /data/${APPLICATION}/log
 # 安装依赖
 RUN apk add --no-cache curl wget tar
 # 前端
 RUN wget -O /data/www/index.html https://raw.githubusercontent.com/${USER}/${REPO}/main/pages/index.html
 RUN wget -O /data/www/favicon.ico https://raw.githubusercontent.com/${USER}/${REPO}/main/pages/favicon.ico
 # 后端
-RUN VERSION=$(curl -s https://raw.githubusercontent.com/${USER}/${REPO}/main/VERSION) && \
+RUN VERSION=$(curl -s https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/VERSION) && \
    wget -O /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz https://github.com/${USER}/${REPO}/releases/download/$VERSION/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz && \
    tar -zxvf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz -C /data/${APPLICATION} && \
    rm -rf /data/${APPLICATION}/${APPLICATION}-${TARGETOS}-${TARGETARCH}.tar.gz
 RUN wget -O /usr/local/bin/init.sh https://raw.githubusercontent.com/${USER}/${REPO}/main/docker/dockerfile/release/init.sh
 # 拉取配置
-RUN wget -O /data/caddy/Caddyfile https://raw.githubusercontent.com/${USER}/${REPO}/main/caddyfile/release/Caddyfile
+RUN wget -O /data/${APPLICATION}/config.toml https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/config.toml
-RUN wget -O /data/${APPLICATION}/config.toml https://raw.githubusercontent.com/${USER}/${REPO}/main/config/config.toml
+RUN wget -O /data/${APPLICATION}/blacklist.json https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/blacklist.json
-RUN wget -O /data/${APPLICATION}/blacklist.json https://raw.githubusercontent.com/${USER}/${REPO}/main/config/blacklist.json
+RUN wget -O /data/${APPLICATION}/whitelist.json https://raw.githubusercontent.com/${USER}/${REPO}/${BRANCH}/config/whitelist.json
 RUN wget -O /data/${APPLICATION}/whitelist.json https://raw.githubusercontent.com/${USER}/${REPO}/main/config/whitelist.json
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
-FROM wjqserver/caddy:2.9.1-alpine
+FROM alpine:latest
 RUN apk add --no-cache curl
 ARG USER=WJQSERVER-STUDIO
 ARG REPO=ghproxy
 ARG BRANCH=v3
 ARG APPLICATION=ghproxy
 ARG TARGETOS
 ARG TARGETARCH
 ARG TARGETPLATFORM
 COPY --from=builder /data/www /data/www
 COPY --from=builder /data/caddy /data/caddy
 COPY --from=builder /data/${APPLICATION} /data/${APPLICATION}
 COPY --from=builder /usr/local/bin/init.sh /usr/local/bin/init.sh
 # 权限
 RUN chmod +x /data/${APPLICATION}/${APPLICATION}
 RUN chmod +x /usr/local/bin/init.sh
-CMD ["/usr/local/bin/init.sh"]
+CMD ["/data/ghproxy/ghproxy"]
--- a/docker/dockerfile/release/init.sh
+++ b/docker/dockerfile/release/init.sh
@@ -1,31 +0,0 @@
 #!/bin/sh
 APPLICATION=ghproxy
 if [ ! -f /data/caddy/config/Caddyfile ]; then
    cp /data/caddy/Caddyfile /data/caddy/config/Caddyfile
 fi
 if [ ! -f /data/${APPLICATION}/config/blacklist.json ]; then
    cp /data/${APPLICATION}/blacklist.json /data/${APPLICATION}/config/blacklist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/whitelist.json ]; then
    cp /data/${APPLICATION}/whitelist.json /data/${APPLICATION}/config/whitelist.json
 fi
 if [ ! -f /data/${APPLICATION}/config/config.toml ]; then
    cp /data/${APPLICATION}/config.toml /data/${APPLICATION}/config/config.toml
 fi
 /data/caddy/caddy run --config /data/caddy/config/Caddyfile > /data/${APPLICATION}/log/caddy.log 2>&1 &
 /data/${APPLICATION}/${APPLICATION} -cfg /data/${APPLICATION}/config/config.toml > /data/${APPLICATION}/log/run.log 2>&1 &
 sleep 30
 while [[ true ]]; do
    # Failure Circuit Breaker
    curl -f --max-time 5 -retry 3 http://127.0.0.1:8080/api/healthcheck || exit 1
    sleep 120
 done
--- a/docs/config.md
+++ b/docs/config.md
@@ -0,0 +1,343 @@
 # ghproxy 用户配置文档
 `ghproxy` 的配置主要通过修改 `config` 目录下的 `config.toml`、`blacklist.json` 和 `whitelist.json` 文件来实现。本文档将详细介绍这些配置文件的作用以及用户可以自定义的配置选项。
 ## `config.toml` - 主配置文件
 `config.toml` 是 `ghproxy` 的主配置文件，采用 TOML 格式。您可以通过修改此文件来定制 `ghproxy` 的各项功能，例如服务器端口、连接设置、Git 克隆模式、日志级别、认证方式、黑白名单以及限速策略等。
 以下是 `config.toml` 文件的详细配置项说明：
 ```toml name=config/config.toml
 [server]
 host = "0.0.0.0"
 port = 8080
 netlib = "netpoll" # "netpoll" / "std" "standard" "net/http" "net"
 sizeLimit = 125 # MB
 memLimit = 0 # MB
 H2C = true
 cors = "*" # "*"/"" -> "*" ; "nil" -> "" ;
 debug = false
 [httpc]
 mode = "auto" # "auto" or "advanced"
 maxIdleConns = 100 # only for advanced mode
 maxIdleConnsPerHost = 60 # only for advanced mode
 maxConnsPerHost = 0 # only for advanced mode
 [gitclone]
 mode = "bypass" # bypass / cache
 smartGitAddr = "http://127.0.0.1:8080"
 ForceH2C = false
 [shell]
 editor = false
 rewriteAPI = false
 [pages]
 mode = "internal" # "internal" or "external"
 theme = "bootstrap" # "bootstrap" or "nebula"
 staticDir = "/data/www"
 [log]
 logFilePath = "/data/ghproxy/log/ghproxy.log"
 maxLogSize = 5 # MB
 level = "info" # dump, debug, info, warn, error, none
 hertzLogPath = "/data/ghproxy/log/hertz.log"
 [auth]
 method = "parameters" # "header" or "parameters"
 token = "token"
 key = ""
 enabled = false
 passThrough = false
 ForceAllowApi = false
 [blacklist]
 blacklistFile = "/data/ghproxy/config/blacklist.json"
 enabled = false
 [whitelist]
 enabled = false
 whitelistFile = "/data/ghproxy/config/whitelist.json"
 [rateLimit]
 enabled = false
 rateMethod = "total" # "ip" or "total"
 ratePerMinute = 180
 burst = 5
 [outbound]
 enabled = false
 url = "socks5://127.0.0.1:1080" # "http://127.0.0.1:7890"
 ```
 ### 配置项详细说明
 *   **`[server]` - 服务器配置**
    *   `host`:  监听地址。
        *   类型: 字符串 (`string`)
        *   默认值: `"0.0.0.0"` (监听所有)
        *   说明:  设置 `ghproxy` 监听的网络地址。通常设置为 `"0.0.0.0"` 以监听所有可用的网络接口。
    *   `port`:  监听端口。
        *   类型: 整数 (`int`)
        *   默认值: `8080`
        *   说明:  设置 `ghproxy` 监听的端口号。
    *   `netlib`: 底层网络库。
        *   类型: 字符串 (`string`)
        *   默认值: `""` (HertZ默认处置)
        *   说明: `"std"` `"standard"` `"net/http"` `"net"` 均会被设置为go标准库`net/http`, 设置为`"netpoll"`或`""`会由`HertZ`默认逻辑处理
    *   `sizeLimit`: 请求体大小限制。
        *   类型: 整数 (`int`)
        *   默认值: `125` (MB)
        *   说明:  限制允许接收的请求体最大大小，单位为 MB。用于防止过大的请求导致服务压力过大。
    *   `memLimit`:  `runtime`内存限制
        *   类型: 整数 (`int64`)
        *   默认值: `0` (不传入)
        *   说明: 给`runtime`的指标, 让gc行为更高效
    *   `H2C`:  是否启用 H2C (HTTP/2 Cleartext) 传输。
        *   类型: 布尔值 (`bool`)
        *   默认值: `true` (启用)
        *   说明:  启用后，允许客户端使用 HTTP/2 协议进行无加密传输，提升性能。
    *   `cors`:  CORS (跨域资源共享) 设置。
        *   类型: 字符串 (`string`)
        *   默认值: `"*"` (允许所有来源)
        *   可选值:
            *   `""` 或`"*"`: 允许所有来源跨域访问。
            *   `"nil"`:  禁用 CORS。
            *   具体的域名:  例如 `"https://example.com"`，只允许来自指定域名的跨域请求。
        *   说明:  配置 CORS 策略，用于控制哪些域名可以跨域访问 `ghproxy` 服务。
    *   `debug`:  是否启用调试模式。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 会输出更详细的日志信息，用于开发和调试。
 *   **`[httpc]` - HTTP 客户端配置**
    *   `mode`:  HTTP 客户端模式。
        *   类型: 字符串 (`string`)
        *   默认值: `"auto"` (自动模式)
        *   可选值:
            *   `"auto"`:  自动模式，使用默认的 HTTP 客户端配置，适用于大多数场景。
            *   `"advanced"`: 高级模式，允许自定义连接池参数，可以更精细地控制 HTTP 客户端的行为。
        *   说明:  选择 HTTP 客户端的运行模式。
    *   `maxIdleConns`:  最大空闲连接数 (仅在高级模式下生效)。
        *   类型: 整数 (`int`)
        *   默认值: `100`
        *   说明:  设置 HTTP 客户端连接池中保持的最大空闲连接数。
    *   `maxIdleConnsPerHost`:  每个主机最大空闲连接数 (仅在高级模式下生效)。
        *   类型: 整数 (`int`)
        *   默认值: `60`
        *   说明:  设置 HTTP 客户端连接池中，每个主机允许保持的最大空闲连接数。
    *   `maxConnsPerHost`:  每个主机最大连接数 (仅在高级模式下生效)。
        *   类型: 整数 (`int`)
        *   默认值: `0` (不限制)
        *   说明:  设置 HTTP 客户端连接池中，每个主机允许建立的最大连接数。设置为 `0` 表示不限制。
 *   **`[gitclone]` - Git 克隆配置**
    *   `mode`:  Git 克隆模式。
        *   类型: 字符串 (`string`)
        *   默认值: `"bypass"` (绕过模式)
        *   可选值:
            *   `"bypass"`:  绕过模式，直接克隆 GitHub 仓库，不使用任何缓存加速。
            *   `"cache"`:  缓存模式，使用智能 Git 服务加速克隆，需要配置 `smartGitAddr`。
        *   说明:  选择 Git 克隆的模式。
    *   `smartGitAddr`:  智能 Git 服务地址 (仅在缓存模式下生效)。
        *   类型: 字符串 (`string`)
        *   默认值: `"http://127.0.0.1:8080"`
        *   说明:  当 `mode` 设置为 `"cache"` 时，需要配置智能 Git 服务的地址，用于加速 Git 克隆。
    *   `ForceH2C`:  是否强制使用 H2C 连接到智能 Git 服务。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (不强制)
        *   说明:  如果智能 Git 服务支持 H2C，可以设置为 `true` 以强制使用 H2C 连接，提升性能。
 *   **`[shell]` - Shell 嵌套加速功能配置**
    *   `editor`:  是否启用编辑(嵌套加速)功能。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后, 会修改`.sh`文件内容以实现嵌套加速
    *   `rewriteAPI`:  是否重写 API 地址。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 会重写脚本内的Github API地址。
 *   **`[pages]` - Pages 服务配置**
    *   `mode`:  Pages 服务模式。
        *   类型: 字符串 (`string`)
        *   默认值: `"internal"` (内置 Pages 服务)
        *   可选值:
            *   `"internal"`:  使用 `ghproxy` 内置的 Pages 服务。
            *   `"external"`:  使用外部 Pages 位置。
        *   说明:  选择 Pages 服务的运行模式。
    *   `theme`:  Pages 主题。
        *   类型: 字符串 (`string`)
        *   默认值: `"bootstrap"`
        *   可选值: 参看[GHProxy项目前端仓库](https://github.com/WJQSERVER-STUDIO/GHProxy-Frontend)
        *   说明:  设置内置 Pages 服务使用的主题。
    *   `staticDir`:  静态文件目录。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/www"`
        *   说明:  指定外置 Pages 服务使用的静态文件目录。
 *   **`[log]` - 日志配置**
    *   `logFilePath`:  日志文件路径。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/ghproxy/log/ghproxy.log"`
        *   说明:  设置 `ghproxy` 日志文件的存储路径。
    *   `maxLogSize`:  最大日志文件大小。
        *   类型: 整数 (`int`)
        *   默认值: `5` (MB)
        *   说明:  设置单个日志文件的最大大小，单位为 MB。当日志文件大小超过此限制时，会进行日志轮转。
    *   `level`:  日志级别。
        *   类型: 字符串 (`string`)
        *   默认值: `"info"`
        *   可选值: `"dump"`, `"debug"`, `"info"`, `"warn"`, `"error"`, `"none"`
        *   说明:  设置日志输出的级别。级别越高，输出的日志信息越少。
            *   `"dump"`:  输出所有日志，包括最详细的调试信息。
            *   `"debug"`:  输出调试信息、信息、警告和错误日志。
            *   `"info"`:   输出信息、警告和错误日志。
            *   `"warn"`:   输出警告和错误日志。
            *   `"error"`:  仅输出错误日志。
            *   `"none"`:   禁用所有日志输出。
    *   `hertzLogPath`:  `HertZ`日志文件路径。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/ghproxy/log/hertz.log"`
        *   说明:  设置 `HertZ` 日志文件的存储路径。
 *   **`[auth]` - 认证配置**
    *   `enabled`:  是否启用认证。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，需要提供正确的认证信息才能访问 `ghproxy` 服务。
    *   `method`:  认证方法。
        *   类型: 字符串 (`string`)
        *   默认值: `"parameters"` (URL 参数)
        *   可选值: `"header"` 或 `"parameters"`
            *   `"header"`:  通过请求头 `GH-Auth` 或自定义请求头 (通过 `key` 配置) 传递认证 Token。
            *   `"parameters"`: 通过 URL 参数 `auth_token` 或自定义 URL 参数名 (通过 `Key` 配置) 传递认证 Token。
        *   说明:  选择认证信息传递的方式。
    *   `key`:  自定义认证 Key。
        *   类型: 字符串 (`string`)
        *   默认值: `""` (空字符串，使用默认的 `GH-Auth` 请求头或 `auth_token` URL 参数名)
        *   说明:  可以自定义认证时使用的请求头名称或 URL 参数名。如果为空，则使用默认的 `GH-Auth` 请求头或 `auth_token` URL 参数名。
    *   `token`:  认证 Token。
        *   类型: 字符串 (`string`)
        *   默认值: `"token"`
        *   说明:  设置认证时需要提供的 Token 值。
    *   `passThrough`:  是否认证参数透穿到Github。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (不允许)
        *   说明:  如果设置为 `true`，相关参数会被透穿到Github。
    *   `ForceAllowApi`:  是否强制允许 API 访问。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (不强制允许)
        *   说明:  如果设置为 `true`，则强制允许对 GitHub API 的访问，即使未启用认证或认证失败。
 *   **`[blacklist]` - 黑名单配置**
    *   `enabled`:  是否启用黑名单。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 将根据 `blacklist.json` 文件中的规则阻止对特定用户或仓库的访问。
    *   `blacklistFile`:  黑名单文件路径。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/ghproxy/config/blacklist.json"`
        *   说明:  指定黑名单配置文件的路径。
 *   **`[whitelist]` - 白名单配置**
    *   `enabled`:  是否启用白名单。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 将只允许访问 `whitelist.json` 文件中规则指定的用户或仓库。白名单的优先级高于黑名单。
    *   `whitelistFile`:  白名单文件路径。
        *   类型: 字符串 (`string`)
        *   默认值: `"/data/ghproxy/config/whitelist.json"`
        *   说明:  指定白名单配置文件的路径。
 *   **`[rateLimit]` - 限速配置**
    *   `enabled`:  是否启用限速。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 将根据配置的策略限制请求速率，防止服务被滥用。
    *   `rateMethod`:  限速方法。
        *   类型: 字符串 (`string`)
        *   默认值: `"total"` (全局限速)
        *   可选值: `"ip"` 或 `"total"`
            *   `"ip"`:  基于客户端 IP 地址进行限速，每个 IP 地址都有独立的速率限制。
            *   `"total"`: 全局限速，所有客户端共享同一个速率限制。
        *   说明:  选择限速的策略。
    *   `ratePerMinute`:  每分钟允许的请求数。
        *   类型: 整数 (`int`)
        *   默认值: `180`
        *   说明:  设置每分钟允许通过的最大请求数。
    *   `burst`:  突发请求数。
        *   类型: 整数 (`int`)
        *   默认值: `5`
        *   说明:  允许在短时间内超过 `ratePerMinute` 的突发请求数。
 *   **`[outbound]` - 出站代理配置**
    *   `enabled`:  是否启用出站代理。
        *   类型: 布尔值 (`bool`)
        *   默认值: `false` (禁用)
        *   说明:  启用后，`ghproxy` 将通过配置的代理服务器转发所有出站请求。
    *   `url`:  出站代理 URL。
        *   类型: 字符串 (`string`)
        *   默认值: `"socks5://127.0.0.1:1080"`
        *   支持协议: `socks5://` 和 `http://`
        *   说明:  设置出站代理服务器的 URL。支持 SOCKS5 和 HTTP 代理协议。
 ## `blacklist.json` - 黑名单配置
 `blacklist.json` 文件用于配置黑名单规则，阻止对特定用户或仓库的访问。
 ```json name=config/blacklist.json
 {
  "blacklist": [
    "eviluser",
    "spamuser/bad-repo",
    "malwareuser/*"
  ]
 }
 ```
 ### 黑名单规则说明
 *   `blacklist`:  一个 JSON 数组，包含黑名单规则，每条规则为一个字符串。
    *   **用户名**: 例如 `"eviluser"`，阻止所有名为 `eviluser` 的用户的访问。
    *   **仓库名**: 例如 `"spamuser/bad-repo"`，阻止访问 `spamuser` 用户下的 `bad-repo` 仓库。
    *   **通配符**: 例如 `"malwareuser/*"`，使用 `*` 通配符，阻止访问 `malwareuser` 用户下的所有仓库。
    *   **缩略写法**: 例如 `"example"`, 等同于 `"example/*"`， 允许访问 `example` 用户下的所有仓库。
 ## `whitelist.json` - 白名单配置
 `whitelist.json` 文件用于配置白名单规则，只允许访问白名单中指定的用户或仓库。白名单的优先级高于黑名单，如果一个请求同时匹配黑名单和白名单，则白名单生效，请求将被允许。
 ```json name=config/whitelist.json
 {
  "whitelist": [
    "white/list",
    "white/test1",
    "example/*",
    "example"
  ]
 }
 ```
 ### 白名单规则说明
 *   `whitelist`:  一个 JSON 数组，包含白名单规则，每条规则为一个字符串。
    *   **仓库名**: 例如 `"white/list"`，允许访问 `white` 用户下的 `list` 仓库。
    *   **仓库名**: 例如 `"white/test1"`，允许访问 `white` 用户下的 `test1` 仓库。
    *   **通配符**: 例如 `"example/*"`，使用 `*` 通配符，允许访问 `example` 用户下的所有仓库。
    *   **缩略写法**: 例如 `"example"`, 等同于 `"example/*"`， 允许访问 `example` 用户下的所有仓库。
 ---
--- a/docs/flag.md
+++ b/docs/flag.md
@@ -0,0 +1,24 @@
 # Flag
 GHProxy接受以下flag传入
 ```bash
 root@root:/data/ghproxy$ ghproxy -h
  -c string
        config file path (default "/data/ghproxy/config/config.toml")
  -cfg value
        exit
  -h    show help message and exit
  -v    show version and exit
 ```
 - `-c`
    类型: `string`
    默认值: `/data/ghproxy/config/config.toml`
    示例: `ghproxy -c /data/ghproxy/demo.toml`
 - `-cfg`
    已弃用, 被`-c`替代
 - `-h`
    显示帮助信息
 - `-v`
    显示版本号
--- a/docs/menu.md
+++ b/docs/menu.md
@@ -0,0 +1,17 @@
 ## GHProxy 文档
 ### 配置文件
 https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/docs/config.md
 ### Flag
 https://github.com/WJQSERVER-STUDIO/ghproxy/blob/main/docs/flag.md
 ### 部署
 参看 https://blog.wjqserver.com/post/ghproxy-deploy-with-smart-git/
 ### 前端
 https://github.com/WJQSERVER-STUDIO/GHProxy-Frontend
--- a/go.mod
+++ b/go.mod
@@ -1,55 +1,38 @@
 module ghproxy
-go 1.23.4
+go 1.24.2
 require (
-	github.com/BurntSushi/toml v1.4.0
+	github.com/BurntSushi/toml v1.5.0
-	github.com/WJQSERVER-STUDIO/go-utils/logger v1.1.0
+	github.com/WJQSERVER-STUDIO/go-utils/logger v1.5.0
-	github.com/gin-gonic/gin v1.10.0
+	github.com/cloudwego/hertz v0.9.7
-	github.com/imroc/req/v3 v3.49.1
+	github.com/hertz-contrib/http2 v0.1.8
-	golang.org/x/time v0.9.0
+	github.com/satomitouka/touka-httpc v0.4.0
 	golang.org/x/net v0.39.0
 	golang.org/x/time v0.11.0
 )
 require (
-	github.com/andybalholm/brotli v1.1.1 // indirect
+	github.com/WJQSERVER-STUDIO/go-utils/copyb v0.0.4 // indirect
-	github.com/bytedance/sonic v1.12.7 // indirect
+	github.com/WJQSERVER-STUDIO/go-utils/log v0.0.1 // indirect
-	github.com/bytedance/sonic/loader v0.2.2 // indirect
+	github.com/bytedance/gopkg v0.1.2 // indirect
-	github.com/cloudflare/circl v1.5.0 // indirect
+	github.com/bytedance/sonic v1.13.2 // indirect
-	github.com/cloudwego/base64x v0.1.4 // indirect
+	github.com/bytedance/sonic/loader v0.2.4 // indirect
-	github.com/gabriel-vasile/mimetype v1.4.8 // indirect
+	github.com/cloudwego/base64x v0.1.5 // indirect
-	github.com/gin-contrib/sse v1.0.0 // indirect
+	github.com/cloudwego/gopkg v0.1.4 // indirect
-	github.com/go-playground/locales v0.14.1 // indirect
+	github.com/cloudwego/netpoll v0.7.0 // indirect
-	github.com/go-playground/universal-translator v0.18.1 // indirect
+	github.com/fsnotify/fsnotify v1.9.0 // indirect
-	github.com/go-playground/validator/v10 v10.23.0 // indirect
+	github.com/google/go-cmp v0.7.0 // indirect
-	github.com/go-task/slim-sprig/v3 v3.0.0 // indirect
+	github.com/klauspost/cpuid/v2 v2.2.10 // indirect
-	github.com/goccy/go-json v0.10.4 // indirect
+	github.com/nyaruka/phonenumbers v1.6.0 // indirect
-	github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad // indirect
+	github.com/tidwall/gjson v1.18.0 // indirect
-	github.com/hashicorp/errwrap v1.1.0 // indirect
+	github.com/tidwall/match v1.1.1 // indirect
-	github.com/hashicorp/go-multierror v1.1.1 // indirect
+	github.com/tidwall/pretty v1.2.1 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
 	github.com/klauspost/compress v1.17.11 // indirect
 	github.com/klauspost/cpuid/v2 v2.2.9 // indirect
 	github.com/leodido/go-urn v1.4.0 // indirect
 	github.com/mattn/go-isatty v0.0.20 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/onsi/ginkgo/v2 v2.22.2 // indirect
 	github.com/pelletier/go-toml/v2 v2.2.3 // indirect
 	github.com/quic-go/qpack v0.5.1 // indirect
 	github.com/quic-go/quic-go v0.48.2 // indirect
 	github.com/refraction-networking/utls v1.6.7 // indirect
 	github.com/twitchyliquid64/golang-asm v0.15.1 // indirect
-	github.com/ugorji/go/codec v1.2.12 // indirect
+	github.com/valyala/bytebufferpool v1.0.0 // indirect
-	go.uber.org/mock v0.5.0 // indirect
+	golang.org/x/arch v0.16.0 // indirect
-	golang.org/x/arch v0.13.0 // indirect
+	golang.org/x/exp v0.0.0-20250408133849-7e4ce0ab07d0 // indirect
-	golang.org/x/crypto v0.32.0 // indirect
+	golang.org/x/sys v0.32.0 // indirect
-	golang.org/x/exp v0.0.0-20250106191152-7588d65b2ba8 // indirect
+	golang.org/x/text v0.24.0 // indirect
-	golang.org/x/mod v0.22.0 // indirect
+	google.golang.org/protobuf v1.36.6 // indirect
 	golang.org/x/net v0.34.0 // indirect
 	golang.org/x/sync v0.10.0 // indirect
 	golang.org/x/sys v0.29.0 // indirect
 	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/tools v0.29.0 // indirect
 	google.golang.org/protobuf v1.36.2 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 )
--- a/go.sum
+++ b/go.sum
@@ -1,133 +1,145 @@
-github.com/BurntSushi/toml v1.4.0 h1:kuoIxZQy2WRRk1pttg9asf+WVv6tWQuBNVmK8+nqPr0=
+github.com/BurntSushi/toml v1.5.0 h1:W5quZX/G/csjUnuI8SUYlsHs9M38FC7znL0lIO+DvMg=
-github.com/BurntSushi/toml v1.4.0/go.mod h1:ukJfTF/6rtPPRCnwkur4qwRxa8vTRFBF0uk2lLoLwho=
+github.com/BurntSushi/toml v1.5.0/go.mod h1:ukJfTF/6rtPPRCnwkur4qwRxa8vTRFBF0uk2lLoLwho=
-github.com/WJQSERVER-STUDIO/go-utils/logger v1.1.0 h1:OUrAOWb8xK0kxpWextJYUasmol+5KKqG2az52X2ae64=
+github.com/WJQSERVER-STUDIO/go-utils/copyb v0.0.4 h1:JLtFd00AdFg/TP+dtvIzLkdHwKUGPOAijN1sMtEYoFg=
-github.com/WJQSERVER-STUDIO/go-utils/logger v1.1.0/go.mod h1:sAqHVYSucoUnycyHMAZc1fMH5dS2bQwgwo8NUiAIcyk=
+github.com/WJQSERVER-STUDIO/go-utils/copyb v0.0.4/go.mod h1:FZ6XE+4TKy4MOfX1xWKe6Rwsg0ucYFCdNh1KLvyKTfc=
-github.com/andybalholm/brotli v1.1.1 h1:PR2pgnyFznKEugtsUo0xLdDop5SKXd5Qf5ysW+7XdTA=
+github.com/WJQSERVER-STUDIO/go-utils/log v0.0.1 h1:gJEQspQPB527Vp2FPcdOrynQEj3YYtrg1ixVSB/JvZM=
-github.com/andybalholm/brotli v1.1.1/go.mod h1:05ib4cKhjx3OQYUY22hTVd34Bc8upXjOLL2rKwwZBoA=
+github.com/WJQSERVER-STUDIO/go-utils/log v0.0.1/go.mod h1:j9Q+xnwpOfve7/uJnZ2izRQw6NNoXjvJHz7vUQAaLZE=
-github.com/bytedance/sonic v1.12.6 h1:/isNmCUF2x3Sh8RAp/4mh4ZGkcFAX/hLrzrK3AvpRzk=
+github.com/WJQSERVER-STUDIO/go-utils/logger v1.5.0 h1:Uk4N7Sh4OPth3am3xVv17JlAm7tsna97ZLQRpQj7r5c=
-github.com/bytedance/sonic v1.12.6/go.mod h1:B8Gt/XvtZ3Fqj+iSKMypzymZxw/FVwgIGKzMzT9r/rk=
+github.com/WJQSERVER-STUDIO/go-utils/logger v1.5.0/go.mod h1:mtxlnDdwsHcqDDpAQLa94nxbPFwNHSAHbBbIXQAA3po=
-github.com/bytedance/sonic v1.12.7 h1:CQU8pxOy9HToxhndH0Kx/S1qU/CuS9GnKYrGioDcU1Q=
+github.com/bytedance/gopkg v0.1.1/go.mod h1:576VvJ+eJgyCzdjS+c4+77QF3p7ubbtiKARP3TxducM=
-github.com/bytedance/sonic v1.12.7/go.mod h1:tnbal4mxOMju17EGfknm2XyYcpyCnIROYOEYuemj13I=
+github.com/bytedance/gopkg v0.1.2 h1:8o2feYuxknDpN+O7kPwvSXfMEKfYvJYiA2K7aonoMEQ=
 github.com/bytedance/gopkg v0.1.2/go.mod h1:576VvJ+eJgyCzdjS+c4+77QF3p7ubbtiKARP3TxducM=
 github.com/bytedance/mockey v1.2.12 h1:aeszOmGw8CPX8CRx1DZ/Glzb1yXvhjDh6jdFBNZjsU4=
 github.com/bytedance/mockey v1.2.12/go.mod h1:3ZA4MQasmqC87Tw0w7Ygdy7eHIc2xgpZ8Pona5rsYIk=
 github.com/bytedance/sonic v1.13.2 h1:8/H1FempDZqC4VqjptGo14QQlJx8VdZJegxs6wwfqpQ=
 github.com/bytedance/sonic v1.13.2/go.mod h1:o68xyaF9u2gvVBuGHPlUVCy+ZfmNNO5ETf1+KgkJhz4=
 github.com/bytedance/sonic/loader v0.1.1/go.mod h1:ncP89zfokxS5LZrJxl5z0UJcsk4M4yY2JpfqGeCtNLU=
-github.com/bytedance/sonic/loader v0.2.2 h1:jxAJuN9fOot/cyz5Q6dUuMJF5OqQ6+5GfA8FjjQ0R4o=
+github.com/bytedance/sonic/loader v0.2.4 h1:ZWCw4stuXUsn1/+zQDqeE7JKP+QO47tz7QCNan80NzY=
-github.com/bytedance/sonic/loader v0.2.2/go.mod h1:N8A3vUdtUebEY2/VQC0MyhYeKUFosQU6FxH2JmUe6VI=
+github.com/bytedance/sonic/loader v0.2.4/go.mod h1:N8A3vUdtUebEY2/VQC0MyhYeKUFosQU6FxH2JmUe6VI=
-github.com/cloudflare/circl v1.5.0 h1:hxIWksrX6XN5a1L2TI/h53AGPhNHoUBo+TD1ms9+pys=
+github.com/cloudwego/base64x v0.1.5 h1:XPciSp1xaq2VCSt6lF0phncD4koWyULpl5bUxbfCyP4=
-github.com/cloudflare/circl v1.5.0/go.mod h1:uddAzsPgqdMAYatqJ0lsjX1oECcQLIlRpzZh3pJrofs=
+github.com/cloudwego/base64x v0.1.5/go.mod h1:0zlkT4Wn5C6NdauXdJRhSKRlJvmclQ1hhJgA0rcu/8w=
-github.com/cloudwego/base64x v0.1.4 h1:jwCgWpFanWmN8xoIUHa2rtzmkd5J2plF/dnLS6Xd/0Y=
+github.com/cloudwego/gopkg v0.1.4 h1:EoQiCG4sTonTPHxOGE0VlQs+sQR+Hsi2uN0qqwu8O50=
-github.com/cloudwego/base64x v0.1.4/go.mod h1:0zlkT4Wn5C6NdauXdJRhSKRlJvmclQ1hhJgA0rcu/8w=
+github.com/cloudwego/gopkg v0.1.4/go.mod h1:FQuXsRWRsSqJLsMVd5SYzp8/Z1y5gXKnVvRrWUOsCMI=
 github.com/cloudwego/hertz v0.9.7 h1:tAVaiO+vTf+ZkQhvNhKbDJ0hmC4oJ7bzwDi1KhvhHy4=
 github.com/cloudwego/hertz v0.9.7/go.mod h1:t6d7NcoQxPmETvzPMMIVPHMn5C5QzpqIiFsaavoLJYQ=
 github.com/cloudwego/iasm v0.2.0/go.mod h1:8rXZaNYT2n95jn+zTI1sDr+IgcD2GVs0nlbbQPiEFhY=
 github.com/cloudwego/netpoll v0.7.0 h1:bDrxQaNfijRI1zyGgXHQoE/nYegL0nr+ijO1Norelc4=
 github.com/cloudwego/netpoll v0.7.0/go.mod h1:PI+YrmyS7cIr0+SD4seJz3Eo3ckkXdu2ZVKBLhURLNU=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/gabriel-vasile/mimetype v1.4.8 h1:FfZ3gj38NjllZIeJAmMhr+qKL8Wu+nOoI3GqacKw1NM=
+github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
-github.com/gabriel-vasile/mimetype v1.4.8/go.mod h1:ByKUIKGjh1ODkGM1asKUbQZOLGrPjydw3hYPU2YU9t8=
+github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/gin-contrib/sse v1.0.0 h1:y3bT1mUWUxDpW4JLQg/HnTqV4rozuW4tC9eFKTxYI9E=
+github.com/fsnotify/fsnotify v1.9.0 h1:2Ml+OJNzbYCTzsxtv8vKSFD9PbJjmhYF14k/jKC7S9k=
-github.com/gin-contrib/sse v1.0.0/go.mod h1:zNuFdwarAygJBht0NTKiSi3jRf6RbqeILZ9Sp6Slhe0=
+github.com/fsnotify/fsnotify v1.9.0/go.mod h1:8jBTzvmWwFyi3Pb8djgCCO5IBqzKJ/Jwo8TRcHyHii0=
-github.com/gin-gonic/gin v1.10.0 h1:nTuyha1TYqgedzytsKYqna+DfLos46nTv2ygFy86HFU=
+github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8=
-github.com/gin-gonic/gin v1.10.0/go.mod h1:4PMNQiOhvDRa013RKVbsiNwoyezlm2rm0uX/T7kzp5Y=
+github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX3N/iU=
-github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY=
+github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1 h1:EGx4pi6eqNxGaHF6qqu48+N2wcFQ5qg5FXgOdqsJ5d8=
-github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
+github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
-github.com/go-playground/assert/v2 v2.2.0 h1:JvknZsQTYeFEAhQwI4qEt9cyV5ONwRHC+lYKSsYSR8s=
+github.com/hertz-contrib/http2 v0.1.8 h1:kjfCGkUxJZHgfPsnRjx1FLJBG55KvtvSQD214guBQLw=
-github.com/go-playground/assert/v2 v2.2.0/go.mod h1:VDjEfimB/XKnb+ZQfWdccd7VUvScMdVu0Titje2rxJ4=
+github.com/hertz-contrib/http2 v0.1.8/go.mod h1:m42hrl8fiTwE4p8c7JdRUZpkePEthvV89q3elL2GeD0=
-github.com/go-playground/locales v0.14.1 h1:EWaQ/wswjilfKLTECiXz7Rh+3BjFhfDFKv/oXslEjJA=
+github.com/jtolds/gls v4.20.0+incompatible h1:xdiiI2gbIgH/gLH7ADydsJ1uDOEzR8yvV7C0MuV77Wo=
-github.com/go-playground/locales v0.14.1/go.mod h1:hxrqLVvrK65+Rwrd5Fc6F2O76J/NuW9t0sjnWqG1slY=
+github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
 github.com/go-playground/universal-translator v0.18.1 h1:Bcnm0ZwsGyWbCzImXv+pAJnYK9S473LQFuzCbDbfSFY=
 github.com/go-playground/universal-translator v0.18.1/go.mod h1:xekY+UJKNuX9WP91TpwSH2VMlDf28Uj24BCp08ZFTUY=
 github.com/go-playground/validator/v10 v10.23.0 h1:/PwmTwZhS0dPkav3cdK9kV1FsAmrL8sThn8IHr/sO+o=
 github.com/go-playground/validator/v10 v10.23.0/go.mod h1:dbuPbCMFw/DrkbEynArYaCwl3amGuJotoKCe95atGMM=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
 github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI=
 github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8=
 github.com/goccy/go-json v0.10.4 h1:JSwxQzIqKfmFX1swYPpUThQZp/Ka4wzJdK0LWVytLPM=
 github.com/goccy/go-json v0.10.4/go.mod h1:oq7eo15ShAhp70Anwd5lgX2pLfOS3QCiwU/PULtXL6M=
 github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
 github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad h1:a6HEuzUHeKH6hwfN/ZoQgRgVIWFJljSWa/zetS2WTvg=
 github.com/google/pprof v0.0.0-20241210010833-40e02aabc2ad/go.mod h1:vavhavw2zAxS5dIdcRluK6cSGGPlZynqzFM8NdvU144=
 github.com/hashicorp/errwrap v1.0.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4=
 github.com/hashicorp/errwrap v1.1.0 h1:OxrOeh75EUXMY8TBjag2fzXGZ40LB6IKw45YeGUDY2I=
 github.com/hashicorp/errwrap v1.1.0/go.mod h1:YH+1FKiLXxHSkmPseP+kNlulaMuP3n2brvKWEqk/Jc4=
 github.com/hashicorp/go-multierror v1.1.1 h1:H5DkEtf6CXdFp0N0Em5UCwQpXMWke8IA0+lD48awMYo=
 github.com/hashicorp/go-multierror v1.1.1/go.mod h1:iw975J/qwKPdAO1clOe2L8331t/9/fmwbPZ6JB6eMoM=
 github.com/imroc/req/v3 v3.49.1 h1:Nvwo02riiPEzh74ozFHeEJrtjakFxnoWNR3YZYuQm9U=
 github.com/imroc/req/v3 v3.49.1/go.mod h1:tsOk8K7zI6cU4xu/VWCZVtq9Djw9IWm4MslKzme5woU=
 github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
 github.com/json-iterator/go v1.1.12/go.mod h1:e30LSqwooZae/UwlEbR2852Gd8hjQvJoHmT4TnhNGBo=
 github.com/klauspost/compress v1.17.11 h1:In6xLpyWOi1+C7tXUUWv2ot1QvBjxevKAaI6IXrJmUc=
 github.com/klauspost/compress v1.17.11/go.mod h1:pMDklpSncoRMuLFrf1W9Ss9KT+0rH90U12bZKk7uwG0=
 github.com/klauspost/cpuid/v2 v2.0.9/go.mod h1:FInQzS24/EEf25PyTYn52gqo7WaD8xa0213Md/qVLRg=
-github.com/klauspost/cpuid/v2 v2.2.9 h1:66ze0taIn2H33fBvCkXuv9BmCwDfafmiIVpKV9kKGuY=
+github.com/klauspost/cpuid/v2 v2.2.10 h1:tBs3QSyvjDyFTq3uoc/9xFpCuOsJQFNPiAhYdw2skhE=
-github.com/klauspost/cpuid/v2 v2.2.9/go.mod h1:rqkxqrZ1EhYM9G+hXH7YdowN5R5RGN6NK4QwQ3WMXF8=
+github.com/klauspost/cpuid/v2 v2.2.10/go.mod h1:hqwkgyIinND0mEev00jJYCxPNVRVXFQeu1XKlok6oO0=
 github.com/knz/go-libedit v1.10.1/go.mod h1:MZTVkCWyz0oBc7JOWP3wNAzd002ZbM/5hgShxwh4x8M=
-github.com/leodido/go-urn v1.4.0 h1:WT9HwE9SGECu3lg4d/dIA+jxlljEa1/ffXKmRjqdmIQ=
+github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
-github.com/leodido/go-urn v1.4.0/go.mod h1:bvxc+MVxLKB4z00jd1z+Dvzr47oO32F/QSNjSBOlFxI=
+github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
-github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
+github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
-github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
+github.com/nyaruka/phonenumbers v1.6.0 h1:r9ax45fFg+YLUs2X4bNXm5RAxWl00hYjFgNlv32vtHk=
-github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
+github.com/nyaruka/phonenumbers v1.6.0/go.mod h1:7gjs+Lchqm49adhAKB5cdcng5ZXgt6x7Jgvi0ZorUtU=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/reflect2 v1.0.2 h1:xBagoLtFs94CBntxluKeaWgTMpvLxC4ur3nMaC9Gz0M=
 github.com/modern-go/reflect2 v1.0.2/go.mod h1:yWuevngMOJpCy52FWWMvUC8ws7m/LJsjYzDa0/r8luk=
 github.com/onsi/ginkgo/v2 v2.22.2 h1:/3X8Panh8/WwhU/3Ssa6rCKqPLuAkVY2I0RoyDLySlU=
 github.com/onsi/ginkgo/v2 v2.22.2/go.mod h1:oeMosUL+8LtarXBHu/c0bx2D/K9zyQ6uX3cTyztHwsk=
 github.com/onsi/gomega v1.36.2 h1:koNYke6TVk6ZmnyHrCXba/T/MoLBXFjeC1PtvYgw0A8=
 github.com/onsi/gomega v1.36.2/go.mod h1:DdwyADRjrc825LhMEkD76cHR5+pUnjhUN8GlHlRPHzY=
 github.com/pelletier/go-toml/v2 v2.2.3 h1:YmeHyLY8mFWbdkNWwpr+qIL2bEqT0o95WSdkNHvL12M=
 github.com/pelletier/go-toml/v2 v2.2.3/go.mod h1:MfCQTFTvCcUyyvvwm1+G6H/jORL20Xlb6rzQu9GuUkc=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
-github.com/quic-go/qpack v0.5.1 h1:giqksBPnT/HDtZ6VhtFKgoLOWmlyo9Ei6u9PqzIMbhI=
+github.com/satomitouka/touka-httpc v0.4.0 h1:cnOONdyJHJImMY8L64bvYF+7Ow/5CPf2Yr3RQRRMZOU=
-github.com/quic-go/qpack v0.5.1/go.mod h1:+PC4XFrEskIVkcLzpEkbLqq1uCoxPhQuvK5rH1ZgaEg=
+github.com/satomitouka/touka-httpc v0.4.0/go.mod h1:sNXyW5XBufkwB9ZJ+PIlgN/6xiJ7aZV1fWGrXR0u3bA=
-github.com/quic-go/quic-go v0.48.2 h1:wsKXZPeGWpMpCGSWqOcqpW2wZYic/8T3aqiOID0/KWE=
+github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d h1:zE9ykElWQ6/NYmHa3jpm/yHnI4xSofP+UP6SpjHcSeM=
-github.com/quic-go/quic-go v0.48.2/go.mod h1:yBgs3rWBOADpga7F+jJsb6Ybg1LSYiQvwWlLX+/6HMs=
+github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
-github.com/refraction-networking/utls v1.6.7 h1:zVJ7sP1dJx/WtVuITug3qYUq034cDq9B2MR1K67ULZM=
+github.com/smartystreets/goconvey v1.6.4 h1:fv0U8FUIMPNf1L9lnHLvLhgicrIVChEkdzIKYqbNC9s=
-github.com/refraction-networking/utls v1.6.7/go.mod h1:BC3O4vQzye5hqpmDTWUqi4P5DDhzJfkV1tdqtawQIH0=
+github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
 github.com/stretchr/objx v0.5.2 h1:xuMeJ0Sdp5ZMRXx/aWO6RZxdr3beISkG5/G/aIRr3pY=
 github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA=
 github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/tidwall/gjson v1.18.0 h1:FIDeeyB800efLX89e5a8Y0BNH+LOngJyGrIWxG2FKQY=
 github.com/tidwall/gjson v1.18.0/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
 github.com/tidwall/match v1.1.1 h1:+Ho715JplO36QYgwN9PGYNhgZvoUSc9X2c80KVTi+GA=
 github.com/tidwall/match v1.1.1/go.mod h1:eRSPERbgtNPcGhD8UCthc6PmLEQXEWd3PRB5JTxsfmM=
 github.com/tidwall/pretty v1.2.0/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
 github.com/tidwall/pretty v1.2.1 h1:qjsOFOWWQl+N3RsoF5/ssm1pHmJJwhjlSbZ51I6wMl4=
 github.com/tidwall/pretty v1.2.1/go.mod h1:ITEVvHYasfjBbM0u2Pg8T2nJnzm8xPwvNhhsoaGGjNU=
 github.com/twitchyliquid64/golang-asm v0.15.1 h1:SU5vSMR7hnwNxj24w34ZyCi/FmDZTkS4MhqMhdFk5YI=
 github.com/twitchyliquid64/golang-asm v0.15.1/go.mod h1:a1lVb/DtPvCB8fslRZhAngC2+aY1QWCk3Cedj/Gdt08=
-github.com/ugorji/go/codec v1.2.12 h1:9LC83zGrHhuUA9l16C9AHXAqEV/2wBQ4nkvumAE65EE=
+github.com/valyala/bytebufferpool v1.0.0 h1:GqA5TC/0021Y/b9FG4Oi9Mr3q7XYx6KllzawFIhcdPw=
-github.com/ugorji/go/codec v1.2.12/go.mod h1:UNopzCgEMSXjBc6AOMqYvWC1ktqTAfzJZUZgYf6w6lg=
+github.com/valyala/bytebufferpool v1.0.0/go.mod h1:6bBcMArwyJ5K/AmCkWv1jt77kVWyCJ6HpOuEn7z0Csc=
-github.com/xyproto/randomstring v1.0.5 h1:YtlWPoRdgMu3NZtP45drfy1GKoojuR7hmRcnhZqKjWU=
+github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
-github.com/xyproto/randomstring v1.0.5/go.mod h1:rgmS5DeNXLivK7YprL0pY+lTuhNQW3iGxZ18UQApw/E=
+golang.org/x/arch v0.16.0 h1:foMtLTdyOmIniqWCHjY6+JxuC54XP1fDwx4N0ASyW+U=
-go.uber.org/mock v0.5.0 h1:KAMbZvZPyBPWgD14IrIQ38QCyjwpvVVV6K/bHl1IwQU=
+golang.org/x/arch v0.16.0/go.mod h1:JmwW7aLIoRUKgaTzhkiEFxvcEiQGyOg9BMonBJUS7EE=
-go.uber.org/mock v0.5.0/go.mod h1:ge71pBPLYDk7QIi1LupWxdAykm7KIEFchiOqd6z7qMM=
+golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
-golang.org/x/arch v0.13.0 h1:KCkqVVV1kGg0X87TFysjCJ8MxtZEIU4Ja/yXGeoECdA=
+golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/arch v0.13.0/go.mod h1:FEVrYAQjsQXMVJ1nsMoVVXPZg6p2JE2mx8psSWTDQys=
+golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
-golang.org/x/crypto v0.32.0 h1:euUpcYgM8WcP71gNpTqQCn6rC2t6ULUPiOzfWaXVVfc=
+golang.org/x/crypto v0.22.0/go.mod h1:vr6Su+7cTlO45qkww3VDJlzDn0ctJvRgYbC2NvXHt+M=
-golang.org/x/crypto v0.32.0/go.mod h1:ZnnJkOaASj8g0AjIduWNlq2NRxL0PlBrbKVyZ6V/Ugc=
+golang.org/x/exp v0.0.0-20250408133849-7e4ce0ab07d0 h1:R84qjqJb5nVJMxqWYb3np9L5ZsaDtB+a39EqjV0JSUM=
-golang.org/x/exp v0.0.0-20250106191152-7588d65b2ba8 h1:yqrTHse8TCMW1M1ZCP+VAR/l0kKxwaAIqN/il7x4voA=
+golang.org/x/exp v0.0.0-20250408133849-7e4ce0ab07d0/go.mod h1:S9Xr4PYopiDyqSyp5NjCrhFrqg6A5zA2E/iPHPhqnS8=
-golang.org/x/exp v0.0.0-20250106191152-7588d65b2ba8/go.mod h1:tujkw807nyEEAamNbDrEGzRav+ilXA7PCRAd6xsmwiU=
+golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
-golang.org/x/mod v0.22.0 h1:D4nJWe9zXqHOmWqj4VMOJhvzj7bEZg4wEYa759z1pH4=
+golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.22.0/go.mod h1:6SkKJ3Xj0I0BrPOZoBy3bdMptDDU9oJrpohJ3eWZ1fY=
+golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
-golang.org/x/net v0.34.0 h1:Mb7Mrk043xzHgnRM88suvJFwzVrRfHEHJEl5/71CKw0=
+golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.34.0/go.mod h1:di0qlW3YNM5oh6GqDGQr92MyTozJPmybPK4Ev/Gm31k=
+golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/sync v0.10.0 h1:3NQrjDixjgGwUOCaF8w2+VYHv0Ve/vGYSbdkTa98gmQ=
+golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
-golang.org/x/sync v0.10.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
+golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
-golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
-golang.org/x/sys v0.29.0 h1:TPYlXGxvx1MGTn2GiZDhnjPA9wZzZeGKHHmKhHYvgaU=
+golang.org/x/net v0.24.0/go.mod h1:2Q7sJY5mzlzWjKtYUEXSlBWCdyaioyXzRB2RtU8KVE8=
-golang.org/x/sys v0.29.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/net v0.39.0 h1:ZCu7HMWDxpXpaiKdhzIfaltL9Lp31x/3fCP11bc6/fY=
-golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
+golang.org/x/net v0.39.0/go.mod h1:X7NRbYVEA+ewNkCNyJ513WmMdQ3BineSwVtN2zD/d+E=
-golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
+golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/time v0.9.0 h1:EsRrnYcQiGH+5FfbgvV4AP7qEZstoyrHB0DzarOQ4ZY=
+golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/time v0.9.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
+golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/tools v0.29.0 h1:Xx0h3TtM9rzQpQuR4dKLrdglAmCEN5Oi+P74JdhdzXE=
+golang.org/x/sync v0.8.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
-golang.org/x/tools v0.29.0/go.mod h1:KMQVMRsVxU6nHCFXrBPhDB8XncLNLM0lIy/F14RP588=
+golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
-google.golang.org/protobuf v1.36.2 h1:R8FeyR1/eLmkutZOM5CWghmo5itiG9z0ktFlTVLuTmU=
+golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-google.golang.org/protobuf v1.36.2/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
+golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
+golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.19.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.32.0 h1:s77OFDvIQeibCmezSnk/q6iAfkdiQaJi4VzroCFrN20=
 golang.org/x/sys v0.32.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
 golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
 golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo=
 golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
 golang.org/x/term v0.19.0/go.mod h1:2CuTdWZ7KHSQwUzKva0cbMg6q2DMI3Mmxp+gKJbskEk=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
 golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
 golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
 golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/text v0.24.0 h1:dd5Bzh4yt5KYA8f9CJHCP4FB4D51c2c6JvN37xJJkJ0=
 golang.org/x/text v0.24.0/go.mod h1:L8rBsPeo2pSS+xqN0d5u2ikmjtmoJbDBT1b7nHvFCdU=
 golang.org/x/time v0.11.0 h1:/bpjEDfN9tkoN/ryeYHnv5hcMlc8ncjMcM4XBk5NWV0=
 golang.org/x/time v0.11.0/go.mod h1:CDIdPxbZBQxdj6cxyCIdrNogrJKMJ7pr37NYpMcMDSg=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
 golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/protobuf v1.36.6 h1:z1NpPI8ku2WgiWnf+t9wTPsn6eP1L7ksHUlkfLvd9xY=
 google.golang.org/protobuf v1.36.6/go.mod h1:jduwjTPXsFjZGTmRluh+L6NjiWu7pchiJ2/5YcXBHnY=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
--- a/init.sh
+++ b/init.sh
@@ -1,31 +0,0 @@
 #!/bin/bash
 APPLICATON=ghproxy
 if [ ! -f /data/caddy/config/Caddyfile ]; then
    cp /data/caddy/Caddyfile /data/caddy/config/Caddyfile
 fi
 if [ ! -f /data/${APPLICATON}/config/blacklist.json ]; then
    cp /data/${APPLICATON}/blacklist.json /data/${APPLICATON}/config/blacklist.json
 fi
 if [ ! -f /data/${APPLICATON}/config/whitelist.json ]; then
    cp /data/${APPLICATON}/whitelist.json /data/${APPLICATON}/config/whitelist.json
 fi
 if [ ! -f /data/${APPLICATON}/config/config.yaml ]; then
    cp /data/${APPLICATON}/config.yaml /data/${APPLICATON}/config/config.yaml
 fi
 /data/caddy/caddy run --config /data/caddy/config/Caddyfile > /data/${APPLICATON}/log/caddy.log 2>&1 &
 /data/${APPLICATON}/${APPLICATON} > /data/${APPLICATON}/log/run.log 2>&1 &
 sleep 30
 while [[ true ]]; do
    curl -f http://localhost:8080/api/healthcheck || exit 1
    sleep 120
 done    
--- a/main.go
+++ b/main.go
@@ -1,35 +1,48 @@
 package main
 import (
 	"context"
 	"embed"
 	"flag"
 	"fmt"
 	"io/fs"
 	"log"
 	"net/http"
 	"os"
 	"runtime/debug"
 	"time"
 	"ghproxy/api"
 	"ghproxy/auth"
 	"ghproxy/config"
 	"ghproxy/middleware/loggin"
 	"ghproxy/proxy"
 	"ghproxy/rate"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
 	"github.com/hertz-contrib/http2/factory"
-	"github.com/gin-gonic/gin"
+	"github.com/cloudwego/hertz/pkg/app"
 	"github.com/cloudwego/hertz/pkg/app/middlewares/server/recovery"
 	"github.com/cloudwego/hertz/pkg/app/server"
 	"github.com/cloudwego/hertz/pkg/common/adaptor"
 	"github.com/cloudwego/hertz/pkg/common/hlog"
 	"github.com/cloudwego/hertz/pkg/network/standard"
 	_ "net/http/pprof"
 )
 var (
-	cfg        *config.Config
+	cfg         *config.Config
-	router     *gin.Engine
+	r           *server.Hertz
-	configfile = "/data/ghproxy/config/config.toml"
+	configfile  = "/data/ghproxy/config/config.toml"
-	cfgfile    string
+	hertZfile   *os.File
-	version    string
+	cfgfile     string
-	dev        string
+	version     string
-	runMode    string
+	runMode     string
-	limiter    *rate.RateLimiter
+	limiter     *rate.RateLimiter
-	iplimiter  *rate.IPRateLimiter
+	iplimiter   *rate.IPRateLimiter
 	showVersion bool
 	showHelp    bool
 )
 var (
@@ -39,42 +52,120 @@ var (
 var (
 	logw       = logger.Logw
 	logDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
 )
 func readFlag() {
-	flag.StringVar(&cfgfile, "cfg", configfile, "config file path")
+	flag.StringVar(&cfgfile, "c", configfile, "config file path")
 	flag.Func("cfg", "exit", func(s string) error {
 		// 被弃用的flag, fail退出
 		fmt.Printf("\n")
 		fmt.Println("[ERROR] cfg flag is deprecated, please use -c instead")
 		fmt.Printf("\n")
 		flag.Usage()
 		os.Exit(2)
 		return nil
 	})
 	flag.BoolVar(&showVersion, "v", false, "show version and exit")   // 添加-v标志
 	flag.BoolVar(&showHelp, "h", false, "show help message and exit") // 添加-h标志
 	// 捕获未定义的 flag
 	flag.Usage = func() {
 		fmt.Fprintf(os.Stderr, "Usage of %s:\n", os.Args[0])
 		flag.PrintDefaults()
 		fmt.Fprintln(os.Stderr, "\nInvalid flags:")
 		// 检查未定义的flags
 		invalidFlags := []string{}
 		for _, arg := range os.Args[1:] {
 			if arg[0] == '-' && arg != "-h" && arg != "-v" { // 检查是否是flag, 排除 -h 和 -v
 				defined := false
 				flag.VisitAll(func(f *flag.Flag) {
 					if "-"+f.Name == arg {
 						defined = true
 					}
 				})
 				if !defined {
 					invalidFlags = append(invalidFlags, arg)
 				}
 			}
 		}
 		for _, flag := range invalidFlags {
 			fmt.Fprintf(os.Stderr, "  %s\n", flag)
 		}
 		if len(invalidFlags) > 0 {
 			os.Exit(2)
 		}
 	}
 }
 func loadConfig() {
 	var err error
 	cfg, err = config.LoadConfig(cfgfile)
 	if err != nil {
-		log.Fatalf("Failed to load config: %v", err)
+		fmt.Printf("Failed to load config: %v\n", err)
 		// 如果配置文件加载失败，也显示帮助信息并退出
 		flag.Usage()
 		os.Exit(1)
 	}
 	if cfg != nil && cfg.Server.Debug { // 确保 cfg 不为 nil
 		fmt.Println("Config File Path: ", cfgfile)
 		fmt.Printf("Loaded config: %v\n", cfg)
 	}
 	fmt.Println("Config File Path: ", cfgfile)
 	fmt.Printf("Loaded config: %v\n", cfg)
 }
 func setupLogger(cfg *config.Config) {
 	var err error
 	err = logger.Init(cfg.Log.LogFilePath, cfg.Log.MaxLogSize)
 	if err != nil {
-		log.Fatalf("Failed to initialize logger: %v", err)
+		fmt.Printf("Failed to initialize logger: %v\n", err)
 		os.Exit(1)
 	}
 	err = logger.SetLogLevel(cfg.Log.Level)
 	if err != nil {
 		fmt.Printf("Logger Level Error: %v\n", err)
 		os.Exit(1)
 	}
 	fmt.Printf("Log Level: %s\n", cfg.Log.Level)
 	logDebug("Config File Path: ", cfgfile)
 	logDebug("Loaded config: %v\n", cfg)
 	logInfo("Logger Initialized Successfully")
 }
 func setupHertZLogger(cfg *config.Config) {
 	var err error
 	if cfg.Log.HertZLogPath != "" {
 		hertZfile, err = os.OpenFile(cfg.Log.HertZLogPath, os.O_CREATE|os.O_WRONLY|os.O_APPEND, 0644)
 		if err != nil {
 			hlog.SetOutput(os.Stdout)
 			logWarning("Failed to open hertz log file: %v", err)
 		} else {
 			hlog.SetOutput(hertZfile)
 		}
 		hlog.SetLevel(hlog.LevelInfo)
 	}
 }
 func setMemLimit(cfg *config.Config) {
 	if cfg.Server.MemLimit > 0 {
 		debug.SetMemoryLimit((cfg.Server.MemLimit) * 1024 * 1024)
 		logInfo("Set Memory Limit to %d MB", cfg.Server.MemLimit)
 	}
 	logInfo("Config File Path: ", cfgfile)
 	logInfo("Loaded config: %v\n", cfg)
 	logInfo("Init Completed")
 }
 func loadlist(cfg *config.Config) {
 	auth.Init(cfg)
 }
-func setupApi(cfg *config.Config, router *gin.Engine, version string) {
+func setupApi(cfg *config.Config, r *server.Hertz, version string) {
-	api.InitHandleRouter(cfg, router, version)
+	api.InitHandleRouter(cfg, r, version)
 }
 func setupRateLimit(cfg *config.Config) {
@@ -86,69 +177,308 @@ func setupRateLimit(cfg *config.Config) {
 		} else {
 			logError("Invalid RateLimit Method: %s", cfg.RateLimit.RateMethod)
 		}
 		logInfo("Rate Limit Loaded")
 	}
 }
 func InitReq(cfg *config.Config) {
 	proxy.InitReq(cfg)
 }
 // loadEmbeddedPages 加载嵌入式页面资源
 func loadEmbeddedPages(cfg *config.Config) (fs.FS, fs.FS, error) {
 	var pages fs.FS
 	var err error
 	switch cfg.Pages.Theme {
 	case "bootstrap":
 		pages, err = fs.Sub(pagesFS, "pages/bootstrap")
 	case "nebula":
 		pages, err = fs.Sub(pagesFS, "pages/nebula")
 	case "design":
 		pages, err = fs.Sub(pagesFS, "pages/design")
 	case "metro":
 		pages, err = fs.Sub(pagesFS, "pages/metro")
 	case "classic":
 		pages, err = fs.Sub(pagesFS, "pages/classic")
 	case "mino":
 		pages, err = fs.Sub(pagesFS, "pages/mino")
 	default:
 		pages, err = fs.Sub(pagesFS, "pages/bootstrap") // 默认主题
 		logWarning("Invalid Pages Theme: %s, using default theme 'bootstrap'", cfg.Pages.Theme)
 	}
 	if err != nil {
 		return nil, nil, fmt.Errorf("failed to load embedded pages: %w", err)
 	}
 	var assets fs.FS
 	assets, err = fs.Sub(pagesFS, "pages/assets")
 	return pages, assets, nil
 }
 // setupPages 设置页面路由
 func setupPages(cfg *config.Config, r *server.Hertz) {
 	switch cfg.Pages.Mode {
 	case "internal":
 		err := setInternalRoute(cfg, r)
 		if err != nil {
 			logError("Failed when processing internal pages: %s", err)
 			fmt.Println(err.Error())
 			return
 		}
 	case "external":
 		// 设置外部资源路径
 		indexPagePath := fmt.Sprintf("%s/index.html", cfg.Pages.StaticDir)
 		faviconPath := fmt.Sprintf("%s/favicon.ico", cfg.Pages.StaticDir)
 		javascriptsPath := fmt.Sprintf("%s/script.js", cfg.Pages.StaticDir)
 		stylesheetsPath := fmt.Sprintf("%s/style.css", cfg.Pages.StaticDir)
 		bootstrapPath := fmt.Sprintf("%s/bootstrap.min.css", cfg.Pages.StaticDir)
 		bootstrapBundlePath := fmt.Sprintf("%s/bootstrap.bundle.min.js", cfg.Pages.StaticDir)
 		// 设置外部资源路由
 		r.StaticFile("/", indexPagePath)
 		r.StaticFile("/favicon.ico", faviconPath)
 		r.StaticFile("/script.js", javascriptsPath)
 		r.StaticFile("/style.css", stylesheetsPath)
 		r.StaticFile("/bootstrap.min.css", bootstrapPath)
 		r.StaticFile("/bootstrap.bundle.min.js", bootstrapBundlePath)
 	default:
 		// 处理无效的Pages Mode
 		logWarning("Invalid Pages Mode: %s, using default embedded theme", cfg.Pages.Mode)
 		err := setInternalRoute(cfg, r)
 		if err != nil {
 			logError("Failed when processing internal pages: %s", err)
 			fmt.Println(err.Error())
 			return
 		}
 	}
 }
 func setInternalRoute(cfg *config.Config, r *server.Hertz) error {
 	// 加载嵌入式资源
 	pages, assets, err := loadEmbeddedPages(cfg)
 	if err != nil {
 		logError("Failed when processing pages: %s", err)
 		return err
 	}
 	// 设置嵌入式资源路由
 	r.GET("/", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(pages))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/favicon.ico", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(pages))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/script.js", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(pages))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/style.css", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(pages))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/bootstrap.min.css", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(assets))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	r.GET("/bootstrap.bundle.min.js", func(ctx context.Context, c *app.RequestContext) {
 		staticServer := http.FileServer(http.FS(assets))
 		req, err := adaptor.GetCompatRequest(&c.Request)
 		if err != nil {
 			logError("%s", err)
 			return
 		}
 		staticServer.ServeHTTP(adaptor.GetCompatResponseWriter(&c.Response), req)
 	})
 	return nil
 }
 func init() {
 	readFlag()
 	flag.Parse()
 	// 如果设置了 -h，则显示帮助信息并退出
 	if showHelp {
 		flag.Usage()
 		os.Exit(0)
 	}
 	// 如果设置了 -v，则显示版本号并退出
 	if showVersion {
 		fmt.Printf("GHProxy Version: %s \n", version)
 		os.Exit(0)
 	}
 	loadConfig()
-	setupLogger(cfg)
+	if cfg != nil { // 在setupLogger前添加空值检查
-	loadlist(cfg)
+		setupLogger(cfg)
-	setupRateLimit(cfg)
+		setupHertZLogger(cfg)
 		InitReq(cfg)
 		setMemLimit(cfg)
 		loadlist(cfg)
 		setupRateLimit(cfg)
-	if cfg.Server.Debug {
+		if cfg.Server.Debug {
-		dev = "true"
+			runMode = "dev"
-		version = "dev"
+		} else {
-	}
+			runMode = "release"
 	if dev == "true" {
 		gin.SetMode(gin.DebugMode)
 		runMode = "dev"
 	} else {
 		gin.SetMode(gin.ReleaseMode)
 		runMode = "release"
 	}
 	router = gin.Default()
 	//H2C默认值为true，而后遵循cfg.Server.EnableH2C的设置
 	if cfg.Server.EnableH2C == "on" {
 		router.UseH2C = true
 	} else if cfg.Server.EnableH2C == "" {
 		router.UseH2C = true
 	} else {
 		router.UseH2C = false
 	}
 	setupApi(cfg, router, version)
 	if cfg.Pages.Enabled {
 		indexPagePath := fmt.Sprintf("%s/index.html", cfg.Pages.StaticDir)
 		faviconPath := fmt.Sprintf("%s/favicon.ico", cfg.Pages.StaticDir)
 		router.GET("/", func(c *gin.Context) {
 			c.File(indexPagePath)
 			logInfo("IP:%s UA:%s METHOD:%s HTTPv:%s", c.ClientIP(), c.Request.UserAgent(), c.Request.Method, c.Request.Proto)
 		})
 		router.StaticFile("/favicon.ico", faviconPath)
 	} else if !cfg.Pages.Enabled {
 		pages, err := fs.Sub(pagesFS, "pages")
 		if err != nil {
 			log.Fatalf("Failed when processing pages: %s", err)
 		}
 		router.GET("/", gin.WrapH(http.FileServer(http.FS(pages))))
 		router.GET("/favicon.ico", gin.WrapH(http.FileServer(http.FS(pages))))
 	}
-	router.NoRoute(func(c *gin.Context) {
+		if cfg.Server.Debug {
-		proxy.NoRouteHandler(cfg, limiter, iplimiter, runMode)(c)
+			version = "Dev" // 如果是Debug模式，版本设置为"Dev"
-	})
+		}
 	}
 }
 func main() {
-	err := router.Run(fmt.Sprintf("%s:%d", cfg.Server.Host, cfg.Server.Port))
+	if showVersion || showHelp {
-	if err != nil {
+		return
 		logError("Failed to start server: %v\n", err)
 	}
 	logDebug("Run Mode: %s Netlib: %s", runMode, cfg.Server.NetLib)
 	if cfg == nil {
 		fmt.Println("Config not loaded, exiting.")
 		return
 	}
 	addr := fmt.Sprintf("%s:%d", cfg.Server.Host, cfg.Server.Port)
 	if cfg.Server.NetLib == "std" || cfg.Server.NetLib == "standard" || cfg.Server.NetLib == "net" || cfg.Server.NetLib == "net/http" {
 		if cfg.Server.H2C {
 			r = server.New(
 				server.WithH2C(true),
 				server.WithHostPorts(addr),
 				server.WithTransport(standard.NewTransporter),
 			)
 			r.AddProtocol("h2", factory.NewServerFactory())
 		} else {
 			r = server.New(
 				server.WithHostPorts(addr),
 				server.WithTransport(standard.NewTransporter),
 			)
 		}
 	} else if cfg.Server.NetLib == "netpoll" || cfg.Server.NetLib == "" {
 		if cfg.Server.H2C {
 			r = server.New(
 				server.WithH2C(true),
 				server.WithHostPorts(addr),
 			)
 			r.AddProtocol("h2", factory.NewServerFactory())
 		} else {
 			r = server.New(
 				server.WithHostPorts(addr),
 			)
 		}
 	} else {
 		logError("Invalid NetLib: %s", cfg.Server.NetLib)
 		fmt.Printf("Invalid NetLib: %s\n", cfg.Server.NetLib)
 		os.Exit(1)
 	}
 	// 添加Recovery中间件
 	r.Use(recovery.Recovery())
 	// 添加log中间件
 	r.Use(loggin.Middleware())
 	setupApi(cfg, r, version)
 	setupPages(cfg, r)
 	/*
 		// 1. GitHub Releases/Archive - Use distinct path segments for type
 		r.GET("/github.com/:username/:repo/releases/*filepath", func(ctx context.Context, c *app.RequestContext) { // Distinct path for releases
 			proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 		})
 		r.GET("/github.com/:username/:repo/archive/*filepath", func(ctx context.Context, c *app.RequestContext) { // Distinct path for archive
 			proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 		})
 		// 2. GitHub Blob/Raw - Use distinct path segments for type
 		r.GET("/github.com/:username/:repo/blob/*filepath", func(ctx context.Context, c *app.RequestContext) { // Distinct path for blob
 			proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 		})
 		r.GET("/github.com/:username/:repo/raw/*filepath", func(ctx context.Context, c *app.RequestContext) { // Distinct path for raw
 			proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 		})
 		r.GET("/github.com/:username/:repo/info/*filepath", func(ctx context.Context, c *app.RequestContext) { // Distinct path for info
 			proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 		})
 		r.GET("/github.com/:username/:repo/git-upload-pack", func(ctx context.Context, c *app.RequestContext) {
 			proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 		})
 		// 4. Raw GitHubusercontent - Keep as is (assuming it's distinct enough)
 		r.GET("/raw.githubusercontent.com/:username/:repo/*filepath", func(ctx context.Context, c *app.RequestContext) {
 			proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 		})
 		// 5. Gist GitHubusercontent - Keep as is (assuming it's distinct enough)
 		r.GET("/gist.githubusercontent.com/:username/*filepath", func(ctx context.Context, c *app.RequestContext) {
 			proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 		})
 		// 6. GitHub API Repos - Keep as is (assuming it's distinct enough)
 		r.GET("/api.github.com/repos/:username/:repo/*filepath", func(ctx context.Context, c *app.RequestContext) {
 			proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 		})
 	*/
 	r.NoRoute(func(ctx context.Context, c *app.RequestContext) {
 		proxy.NoRouteHandler(cfg, limiter, iplimiter)(ctx, c)
 	})
 	fmt.Printf("GHProxy Version: %s\n", version)
 	fmt.Printf("A Go Based High-Performance Github Proxy \n")
 	fmt.Printf("Made by WJQSERVER-STUDIO\n")
 	if cfg.Server.Debug {
 		go func() {
 			http.ListenAndServe("localhost:6060", nil)
 		}()
 	}
 	r.Spin()
 	defer logger.Close()
 	defer func() {
 		if hertZfile != nil {
 			var err error
 			err = hertZfile.Close()
 			if err != nil {
 				logError("Failed to close hertz log file: %v", err)
 			}
 		}
 	}()
 	fmt.Println("Program Exit")
 }
--- a/middleware/loggin/loggin.go
+++ b/middleware/loggin/loggin.go
@@ -0,0 +1,32 @@
 package loggin
 import (
 	"context"
 	"time"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 var (
 	logw       = logger.Logw
 	logDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
 )
 // 日志中间件
 func Middleware() app.HandlerFunc {
 	return func(ctx context.Context, c *app.RequestContext) {
 		startTime := time.Now()
 		c.Next(ctx)
 		endTime := time.Now()
 		timingResults := endTime.Sub(startTime)
 		logInfo("%s %s %s %s %s %d %v ", c.ClientIP(), c.Method(), c.Request.Header.GetProtocol(), string(c.Path()), c.Request.Header.UserAgent(), c.Response.StatusCode(), timingResults)
 	}
 }
--- a/middleware/nocache/nocache.go
+++ b/middleware/nocache/nocache.go
@@ -0,0 +1,17 @@
 package nocache
 import (
 	"context"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 func NoCacheMiddleware() app.HandlerFunc {
 	return func(ctx context.Context, c *app.RequestContext) {
 		// 设置禁止缓存的响应头
 		c.Response.Header.Set("Cache-Control", "no-store, no-cache, must-revalidate")
 		c.Response.Header.Set("Pragma", "no-cache")
 		c.Response.Header.Set("Expires", "0")
 		c.Next(ctx) // 继续处理请求
 	}
 }
--- a/pages/favicon.ico
+++ b/pages/favicon.ico
--- a/pages/index.html
+++ b/pages/index.html
@@ -1,441 +0,0 @@
 <!DOCTYPE html>
 <html lang="zh">
 <head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Github文件加速</title>
    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/css/bootstrap.min.css" rel="stylesheet">
    <link rel="preconnect" href="https://fonts.googleapis.com">
    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
    <link href="https://fonts.googleapis.com/css2?family=Noto+Sans+SC:wght@100..900&display=swap" rel="stylesheet">
    <style>
        /* 通用样式 */
        :root {
            --primary-color: #007aff;
            /* 主要按钮颜色 */
            --secondary-color: #34c759;
            /* 次要按钮颜色 */
            --background-color: #f9f9f9;
            /* 亮色模式背景 */
            --card-background: #ffffff;
            /* 卡片背景 */
            --text-color: #333333;
            /* 亮色模式文本颜色 */
            --border-color: #e0e0e0;
            /* 边框颜色 */
            --input-background: #ffffff;
            /* 输入框背景 */
            --input-border: #d1d1d6;
            /* 输入框边框 */
            --pre-background: #f1f3f4;
            /* 代码块背景 */
            --pre-text-color: #333333;
            /* 代码块文本颜色 */
            --version-badge-hover: #39c5bb;
            /* 说明文字颜色 */
            --muted-text-color: #6c757d;
        }
        body {
            background-color: var(--background-color);
            color: var(--text-color);
            font-family: "Noto Sans SC", sans-serif;
            line-height: 1.8;
            font-size: 15px;
            margin: 0;
            padding: 0;
        }
        h1, h2, h3, h4, h5, h6 {
            color: var(--text-color);
            font-weight: 800;
            letter-spacing: 0.5px;
            margin: 1rem 0;
        }
        p, span, a, li {
            color: var(--text-color);
            margin-bottom: 1rem;
        }
        a {
            text-decoration: none;
            color: var(--primary-color);
        }
        a:hover {
            color: #0056b3;
        }
        .card {
            background-color: var(--card-background);
            border: 1px solid var(--border-color);
            border-radius: 8px;
            padding: 16px;
            margin: 16px 0;
            box-shadow: 0 2px 8px rgba(0, 0, 0, 0.1);
            transition: transform 0.2s, box-shadow 0.2s;
        }
        .card:hover {
            box-shadow: 0 4px 20px rgba(0, 0, 0, 0.15);
            transform: translateY(-4px);
        }
        .btn-outline-secondary {
            border-radius: 50%;
            padding: 6px;
            transition: #e9e9e9 0.3s ease-in-out, color 0.3s ease-in-out;
        }
        .btn-outline-secondary:hover {
            background-color: var(--primary-color);
            color: white;
        }
        .form-control {
            background-color: var(--input-background);
            border: 1px solid var(--input-border);
            color: var(--text-color);
            padding: 10px;
            border-radius: 4px;
            font-size: 14px;
            outline: none;
            transition: border-color 0.2s, box-shadow 0.2s;
        }
        .form-control:focus {
            border-color: var(--primary-color);
            box-shadow: 0 0 0 3px rgba(10, 132, 255, 0.3);
        }
        .text-muted {
            color: var(--muted-text-color) !important;
        }
        .bg-light {
            background-color: var(--card-background) !important;
        }
        pre {
            background-color: var(--pre-background);
            color: var(--pre-text-color);
            padding: 16px;
            border-radius: 8px;
            overflow-x: auto;
            font-size: 14px;
            line-height: 1.6;
        }
        .version-badge {
            position: fixed;
            bottom: 20px;
            right: 20px;
            background-color: var(--secondary-color);
            color: white;
            padding: 6px 12px;
            border-radius: 20px;
            font-size: 0.8rem;
            box-shadow: 0 2px 10px rgba(0, 0, 0, 0.1);
            transition: background-color 0.3s ease-in-out;
        }
        .version-badge:hover {
            background-color: var(--version-badge-hover);
        }
        footer {
            padding: 16px;
            text-align: center;
            color: var(--text-color);
            font-size: 0.9rem;
            background-color: var(--card-background);
        }
        footer a {
            color: var(--primary-color);
        }
        footer a:hover {
            color: #0056b3;
        }
        /* 暗色模式 */
        @media (prefers-color-scheme: dark) {
            :root {
                --background-color: #121212;
                /* 深灰色背景 */
                --card-background: #1e1e1e;
                /* 卡片背景稍浅 */
                --text-color: #ffffff;
                /* 纯白文本 */
                --primary-color: #0a84ff;
                /* 按钮蓝色 */
                --secondary-color: #30d158;
                /* 次要按钮绿色 */
                --border-color: #3a3a3a;
                /* 边框颜色 */
                --input-background: #2c2c2c;
                /* 输入框背景 */
                --input-border: #4a4a4a;
                /* 输入框边框 */
                --pre-background: #3b3636;
                /* 代码块背景 */
                --pre-text-color: #ffffff;
                /* 代码块文本颜色 */
                --version-badge-hover: #39c5bc9a;
                /* 说明文字颜色 */
                --muted-text-color: #a0a0a0;
            }
            body {
                background-color: var(--background-color);
                color: var(--text-color);
            }
            h1,
            h2,
            h3,
            h4,
            h5,
            h6,
            p,
            span,
            a,
            li {
                color: var(--text-color);
            }
            .card {
                background-color: var(--card-background);
                color: var(--text-color);
                border: 1px solid var(--border-color);
            }
            .btn-outline-secondary {
                border-radius: 50%;
                padding: 6px;
                transition: background-color 0.3s ease-in-out, color 0.3s ease-in-out;
            }
            .btn-outline-secondary:hover {
                background-color: var(--primary-color);
                color: white;
            }
            .toast {
                background-color: var(--card-background);
                color: var(--text-color);
                border: 1px solid var(--border-color);
                border-radius: 8px;
                box-shadow: 0 2px 8px rgba(0, 0, 0, 0.1);
            }
            .toast-body {
                padding: 12px;
            }
            .form-control {
                background-color: var(--input-background);
                border: 1px solid var(--input-border);
                color: var(--text-color);
            }
            .bg-light {
                background-color: var(--card-background) !important;
            }
            pre {
                background-color: var(--pre-background);
                color: var(--pre-text-color);
            }
            footer {
                background-color: var(--card-background);
                color: var(--text-color);
            }
            footer a {
                color: var(--primary-color);
            }
        }
    </style>
 </head>
 <body>
    <div class="container py-4 py-md-5">
        <main>
            <div class="card mb-4">
                <div class="card-body">
                    <h1 class="text-center mb-4">Github文件加速</h1>
                    <p class="lead text-center mb-4">为访问Github文件进行加速</p>
                    <form id="github-form">
                        <div class="mb-3">
                            <input type="text" class="form-control form-control-lg" id="githubLinkInput"
                                placeholder="请键入需要代理的 Github 链接">
                        </div>
                        <button type="submit" class="btn btn-primary btn-lg w-100">获取文件链接</button>
                    </form>
                    <div id="output" class="mt-3 bg-light p-3 rounded position-relative" style="display: none;">
                        <pre id="formattedLinkOutput" class="mb-0"></pre>
                        <button id="copyButton"
                            class="btn btn-outline-secondary btn-sm position-absolute top-0 end-0 m-2" title="复制链接">
                            <svg xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor"
                                class="bi bi-clipboard" viewBox="0 0 16 16">
                                <path
                                    d="M4 1.5H3a2 2 0 0 0-2 2V14a2 2 0 0 0 2 2h10a2 2 0 0 0 2-2V3.5a2 2 0 0 0-2-2h-1v1h1a1 1 0 0 1 1 1V14a1 1 0 0 1-1 1H3a1 1 0 0 1-1-1V3.5a1 1 0 0 1 1-1h1v-1z" />
                                <path
                                    d="M9.5 1a.5.5 0 0 1 .5.5v1a.5.5 0 0 1-.5.5h-3a.5.5 0 0 1-.5-.5v-1a.5.5 0 0 1 .5-.5h3zm-3-1A1.5 1.5 0 0 0 5 1.5v1A1.5 1.5 0 0 0 6.5 4h3A1.5 1.5 0 0 0 11 2.5v-1A1.5 1.5 0 0 0 9.5 0h-3z" />
                            </svg>
                        </button>
                        <button id="openButton"
                            class="btn btn-outline-secondary btn-sm position-absolute top-0 end-0 m-2 me-5"
                            title="在新标签页中打开">
                            <svg xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor"
                                class="bi bi-box-arrow-up-right" viewBox="0 0 16 16">
                                <path fill-rule="evenodd"
                                    d="M8.636 3.5a.5.5 0 0 0-.5-.5H1.5A1.5 1.5 0 0 0 0 4.5v10A1.5 1.5 0 0 0 1.5 16h10a1.5 1.5 0 0 0 1.5-1.5V7.864a.5.5 0 0 0-1 0V14.5a.5.5 0 0 1-.5.5h-10a.5.5 0 0 1-.5-.5v-10a.5.5 0 0 1 .5-.5h6.636a.5.5 0 0 0 .5-.5z" />
                                <path fill-rule="evenodd"
                                    d="M16 .5a.5.5 0 0 0-.5-.5h-5a.5.5 0 0 0 0 1h3.793L6.146 9.146a.5.5 0 1 0 .708.708L15 1.707V5.5a.5.5 0 0 0 1 0v-5z" />
                            </svg>
                        </button>
                    </div>
                    <p class="text-muted small mt-3 mb-0">GitHub 链接带不带协议头均可，支持 release、archive 以及文件，转换后链接均可使用。</p>
                </div>
            </div>
            <div class="row">
                <div class="col-md-4 mb-3">
                    <div class="card h-100">
                        <div class="card-body">
                            <h5 class="card-title">文件大小限制</h5>
                            <p class="card-text" id="sizeLimitDisplay">...</p>
                        </div>
                    </div>
                </div>
                <div class="col-md-4 mb-3">
                    <div class="card h-100">
                        <div class="card-body">
                            <h5 class="card-title">白名单状态</h5>
                            <p class="card-text" id="whiteListStatus">...</p>
                        </div>
                    </div>
                </div>
                <div class="col-md-4 mb-3">
                    <div class="card h-100">
                        <div class="card-body">
                            <h5 class="card-title">黑名单状态</h5>
                            <p class="card-text" id="blackListStatus">...</p>
                        </div>
                    </div>
                </div>
            </div>
        </main>
        <footer class="text-center mt-4">
            <p class="text-muted">
                Copyright &copy; 2024-2025 WJQSERVER-STUDIO<br>
                <a href="https://github.com/WJQSERVER-STUDIO/ghproxy" class="text-decoration-none">GitHub 仓库</a> |
                <a href="https://t.me/ghproxy_go" class="text-decoration-none">Telegram 交流群</a>
            </p>
        </footer>
    </div>
    <div class="toast-container position-fixed top-0 end-0 p-3">
        <div id="toast" class="toast" role="alert" aria-live="assertive" aria-atomic="true">
            <div class="toast-body"></div>
        </div>
    </div>
    <div id="versionBadge" class="version-badge"></div>
    <script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.0/dist/js/bootstrap.bundle.min.js"></script>
    <script>
        const githubForm = document.getElementById('github-form');
        const githubLinkInput = document.getElementById('githubLinkInput');
        const formattedLinkOutput = document.getElementById('formattedLinkOutput');
        const output = document.getElementById('output');
        const copyButton = document.getElementById('copyButton');
        const openButton = document.getElementById('openButton');
        const toast = new bootstrap.Toast(document.getElementById('toast'));
        function showToast(message) {
            const toastBody = document.querySelector('.toast-body');
            toastBody.textContent = message;
            toast.show();
        }
        function formatGithubLink(githubLink) {
            const currentHost = window.location.host;
            let formattedLink = "";
            if (githubLink.startsWith("https://github.com/") || githubLink.startsWith("http://github.com/")) {
                formattedLink = "https://" + currentHost + "/github.com" + githubLink.substring(githubLink.indexOf("/", 8));
            } else if (githubLink.startsWith("github.com/")) {
                formattedLink = "https://" + currentHost + "/" + githubLink;
            } else if (githubLink.startsWith("https://raw.githubusercontent.com/") || githubLink.startsWith("http://raw.githubusercontent.com/")) {
                formattedLink = "https://" + currentHost + githubLink.substring(githubLink.indexOf("/", 7));
            } else if (githubLink.startsWith("raw.githubusercontent.com/")) {
                formattedLink = "https://" + currentHost + "/" + githubLink;
            } else if (githubLink.startsWith("https://gist.githubusercontent.com/") || githubLink.startsWith("http://gist.githubusercontent.com/")) {
                formattedLink = "https://" + currentHost + "/gist.github.com" + githubLink.substring(githubLink.indexOf("/", 18));
            } else if (githubLink.startsWith("gist.githubusercontent.com/")) {
                formattedLink = "https://" + currentHost + "/" + githubLink;
            } else {
                showToast('请输入有效的GitHub链接');
                return null;
            }
            return formattedLink;
        }
        githubForm.addEventListener('submit', function (e) {
            e.preventDefault();
            const formattedLink = formatGithubLink(githubLinkInput.value);
            if (formattedLink) {
                formattedLinkOutput.textContent = formattedLink;
                output.style.display = 'block';
            }
        });
        copyButton.addEventListener('click', function () {
            navigator.clipboard.writeText(formattedLinkOutput.textContent).then(() => {
                showToast('链接已复制到剪贴板');
            });
        });
        openButton.addEventListener('click', function () {
            window.open(formattedLinkOutput.textContent, '_blank');
        });
        function fetchAPI() {
            fetch('/api/size_limit')
                .then(response => response.json())
                .then(data => {
                    document.getElementById('sizeLimitDisplay').textContent = `${data.MaxResponseBodySize} MB`;
                });
            fetch('/api/whitelist/status')
                .then(response => response.json())
                .then(data => {
                    document.getElementById('whiteListStatus').textContent = data.Whitelist ? '已开启' : '已关闭';
                });
            fetch('/api/blacklist/status')
                .then(response => response.json())
                .then(data => {
                    document.getElementById('blackListStatus').textContent = data.Blacklist ? '已开启' : '已关闭';
                });
            fetch('/api/version')
                .then(response => response.json())
                .then(data => {
                    document.getElementById('versionBadge').textContent = data.Version;
                });
        }
        document.addEventListener('DOMContentLoaded', fetchAPI);
    </script>
 </body>
 </html>
--- a/proxy/authpass.go
+++ b/proxy/authpass.go
@@ -0,0 +1,37 @@
 package proxy
 import (
 	"ghproxy/config"
 	"net/http"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 func AuthPassThrough(c *app.RequestContext, cfg *config.Config, req *http.Request) {
 	if cfg.Auth.PassThrough {
 		token := c.Query("token")
 		if token != "" {
 			logDebug("%s %s %s %s %s Auth-PassThrough: token %s", c.ClientIP(), c.Method(), string(c.Path()), c.UserAgent(), c.Request.Header.GetProtocol(), token)
 			switch cfg.Auth.Method {
 			case "parameters":
 				if !cfg.Auth.Enabled {
 					req.Header.Set("Authorization", "token "+token)
 				} else {
 					logWarning("%s %s %s %s %s Auth-Error: Conflict Auth Method", c.ClientIP(), c.Method(), string(c.Path()), c.UserAgent(), c.Request.Header.GetProtocol())
 					// 500 Internal Server Error
 					c.JSON(http.StatusInternalServerError, map[string]string{"error": "Conflict Auth Method"})
 					return
 				}
 			case "header":
 				if cfg.Auth.Enabled {
 					req.Header.Set("Authorization", "token "+token)
 				}
 			default:
 				logWarning("%s %s %s %s %s Invalid Auth Method / Auth Method is not be set", c.ClientIP(), c.Method(), string(c.Path()), c.UserAgent(), c.Request.Header.GetProtocol())
 				// 500 Internal Server Error
 				c.JSON(http.StatusInternalServerError, map[string]string{"error": "Invalid Auth Method / Auth Method is not be set"})
 				return
 			}
 		}
 	}
 }
--- a/proxy/chunkreq.go
+++ b/proxy/chunkreq.go
@@ -0,0 +1,163 @@
 package proxy
 import (
 	"bytes"
 	"context"
 	"fmt"
 	"ghproxy/config"
 	"io"
 	"net/http"
 	"strconv"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 var (
 	respHeadersToRemove = map[string]struct{}{
 		"Content-Security-Policy":   {},
 		"Referrer-Policy":           {},
 		"Strict-Transport-Security": {},
 		"X-Github-Request-Id":       {},
 		"X-Timer":                   {},
 		"X-Served-By":               {},
 		"X-Fastly-Request-Id":       {},
 	}
 	reqHeadersToRemove = map[string]struct{}{
 		"CF-IPCountry":     {},
 		"CF-RAY":           {},
 		"CF-Visitor":       {},
 		"CF-Connecting-IP": {},
 		"CF-EW-Via":        {},
 		"CDN-Loop":         {},
 		"Upgrade":          {},
 		"Connection":       {},
 	}
 )
 func ChunkedProxyRequest(ctx context.Context, c *app.RequestContext, u string, cfg *config.Config, matcher string) {
 	var (
 		method     []byte
 		bodyReader *bytes.Buffer
 		req        *http.Request
 		resp       *http.Response
 		err        error
 	)
 	method = c.Request.Method()
 	bodyReader = bytes.NewBuffer(c.Request.Body())
 	req, err = client.NewRequest(string(method), u, bodyReader)
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to create request: %v", err))
 		return
 	}
 	setRequestHeaders(c, req)
 	//removeWSHeader(req) // 删除Conection Upgrade头, 避免与HTTP/2冲突(检查是否存在Upgrade头)
 	AuthPassThrough(c, cfg, req)
 	resp, err = client.Do(req)
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to send request: %v", err))
 		return
 	}
 	// 错误处理(404)
 	if resp.StatusCode == 404 {
 		//c.String(http.StatusNotFound, "File Not Found")
 		c.Status(http.StatusNotFound)
 		return
 	}
 	var (
 		bodySize      int
 		contentLength string
 		sizelimit     int
 	)
 	sizelimit = cfg.Server.SizeLimit * 1024 * 1024
 	contentLength = resp.Header.Get("Content-Length")
 	if contentLength != "" {
 		var err error
 		bodySize, err = strconv.Atoi(contentLength)
 		if err != nil {
 			logWarning("%s %s %s %s %s Content-Length header is not a valid integer: %v", c.ClientIP(), c.Method(), c.Path(), c.UserAgent(), c.Request.Header.GetProtocol(), err)
 			bodySize = -1
 		}
 		if err == nil && bodySize > sizelimit {
 			var finalURL string
 			finalURL = resp.Request.URL.String()
 			err = resp.Body.Close()
 			if err != nil {
 				logError("Failed to close response body: %v", err)
 			}
 			c.Redirect(http.StatusMovedPermanently, []byte(finalURL))
 			logWarning("%s %s %s %s %s Final-URL: %s Size-Limit-Exceeded: %d", c.ClientIP(), c.Method(), c.Path(), c.UserAgent(), c.Request.Header.GetProtocol(), finalURL, bodySize)
 			return
 		}
 	}
 	/*
 		for header := range headersToRemove {
 			resp.Header.Del(header)
 		}
 		for key := range resp.Header {
 			var values []string = resp.Header.Values(key)
 			for _, value := range values {
 				c.Header(key, value)
 			}
 		}
 	*/
 	// 复制响应头，排除需要移除的 header
 	for key, values := range resp.Header {
 		if _, shouldRemove := respHeadersToRemove[key]; !shouldRemove {
 			for _, value := range values {
 				c.Header(key, value)
 			}
 		}
 	}
 	switch cfg.Server.Cors {
 	case "*":
 		c.Header("Access-Control-Allow-Origin", "*")
 	case "":
 		c.Header("Access-Control-Allow-Origin", "*")
 	case "nil":
 		c.Header("Access-Control-Allow-Origin", "")
 	default:
 		c.Header("Access-Control-Allow-Origin", cfg.Server.Cors)
 	}
 	c.Status(resp.StatusCode)
 	if MatcherShell(u) && matchString(matcher, matchedMatchers) && cfg.Shell.Editor {
 		// 判断body是不是gzip
 		var compress string
 		if resp.Header.Get("Content-Encoding") == "gzip" {
 			compress = "gzip"
 		}
 		logInfo("Is Shell: %s %s %s %s %s", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Header.GetProtocol())
 		c.Header("Content-Length", "")
 		var reader io.Reader
 		reader, _, err = processLinks(resp.Body, compress, string(c.Request.Host()), cfg)
 		c.SetBodyStream(reader, -1)
 		if err != nil {
 			logError("%s %s %s %s %s Failed to copy response body: %v", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Header.GetProtocol(), err)
 			return
 		}
 	} else {
 		if contentLength != "" {
 			c.SetBodyStream(resp.Body, bodySize)
 			return
 		}
 		c.SetBodyStream(resp.Body, -1)
 	}
 }
--- a/proxy/dial.go
+++ b/proxy/dial.go
@@ -0,0 +1,135 @@
 /*
 	made&PR by @lfhy
 	https://github.com/WJQSERVER-STUDIO/ghproxy/pull/46
 */
 package proxy
 import (
 	"ghproxy/config"
 	"net/http"
 	"net/url"
 	"strings"
 	"golang.org/x/net/proxy"
 )
 // initTransport 初始化 HTTP 传输层的代理设置
 func initTransport(cfg *config.Config, transport *http.Transport) {
 	// 如果代理功能未启用，直接返回
 	if !cfg.Outbound.Enabled {
 		return
 	}
 	// 如果代理 URL 未设置，使用环境变量中的代理配置
 	if cfg.Outbound.Url == "" {
 		transport.Proxy = http.ProxyFromEnvironment
 		logWarning("Outbound proxy is not set, using environment variables")
 		return
 	}
 	// 尝试解析代理 URL
 	proxyInfo, err := url.Parse(cfg.Outbound.Url)
 	if err != nil {
 		// 如果解析失败，记录错误日志并使用环境变量中的代理配置
 		logError("Failed to parse outbound proxy URL %v", err)
 		transport.Proxy = http.ProxyFromEnvironment
 		return
 	}
 	// 根据代理 URL 的 scheme（协议类型）选择代理类型
 	switch strings.ToLower(proxyInfo.Scheme) {
 	case "http", "https": // 如果是 HTTP/HTTPS 代理
 		transport.Proxy = http.ProxyURL(proxyInfo) // 设置 HTTP(S) 代理
 		logInfo("Using HTTP(S) proxy: %s", proxyInfo.Redacted())
 	case "socks5": // 如果是 SOCKS5 代理
 		// 调用 newProxyDial 创建 SOCKS5 代理拨号器
 		proxyDialer := newProxyDial(cfg.Outbound.Url)
 		transport.Proxy = nil // 禁用 HTTP Proxy 设置，因为 SOCKS5 不需要 HTTP Proxy
 		// 尝试将 Dialer 转换为支持上下文的 ContextDialer
 		if contextDialer, ok := proxyDialer.(proxy.ContextDialer); ok {
 			transport.DialContext = contextDialer.DialContext
 		} else {
 			// 如果不支持 ContextDialer，则回退到传统的 Dial 方法
 			transport.Dial = proxyDialer.Dial
 			logWarning("SOCKS5 dialer does not support ContextDialer, using legacy Dial")
 		}
 		logInfo("Using SOCKS5 proxy chain: %s", cfg.Outbound.Url)
 	default: // 如果代理协议不支持
 		logError("Unsupported proxy scheme: %s", proxyInfo.Scheme)
 		transport.Proxy = http.ProxyFromEnvironment // 回退到环境变量代理
 	}
 }
 // newProxyDial 创建一个 SOCKS5 代理拨号器
 func newProxyDial(proxyUrls string) proxy.Dialer {
 	var proxyDialer proxy.Dialer = proxy.Direct // 初始为直接连接，不使用代理
 	// 支持多个代理 URL（以逗号分隔）
 	for _, proxyUrl := range strings.Split(proxyUrls, ",") {
 		proxyUrl = strings.TrimSpace(proxyUrl) // 去除首尾空格
 		if proxyUrl == "" {                    // 跳过空的代理 URL
 			continue
 		}
 		// 解析代理 URL
 		urlInfo, err := url.Parse(proxyUrl)
 		if err != nil {
 			// 如果 URL 解析失败，记录错误日志并跳过
 			logError("Failed to parse proxy URL %q: %v", proxyUrl, err)
 			continue
 		}
 		// 检查代理协议是否为 SOCKS5
 		if urlInfo.Scheme != "socks5" {
 			logWarning("Skipping non-SOCKS5 proxy: %s", urlInfo.Scheme)
 			continue
 		}
 		// 解析代理认证信息（用户名和密码）
 		auth := parseAuth(urlInfo)
 		// 创建 SOCKS5 代理拨号器
 		dialer, err := createSocksDialer(urlInfo.Host, auth, proxyDialer)
 		if err != nil {
 			// 如果创建失败，记录错误日志并跳过
 			logError("Failed to create SOCKS5 dialer for %q: %v", proxyUrl, err)
 			continue
 		}
 		// 更新代理拨号器，支持代理链
 		proxyDialer = dialer
 	}
 	return proxyDialer
 }
 // parseAuth 解析代理 URL 中的认证信息（用户名和密码）
 func parseAuth(urlInfo *url.URL) *proxy.Auth {
 	// 如果 URL 中没有用户信息，返回 nil
 	if urlInfo.User == nil {
 		return nil
 	}
 	// 获取用户名
 	username := urlInfo.User.Username()
 	// 获取密码（注意：Password() 返回两个值，需要显式处理第二个值）
 	password, passwordSet := urlInfo.User.Password()
 	if !passwordSet {
 		password = "" // 如果密码未设置，使用空字符串
 	}
 	// 返回包含用户名和密码的认证信息
 	return &proxy.Auth{
 		User:     username,
 		Password: password, // 允许空密码
 	}
 }
 // createSocksDialer 创建 SOCKS5 拨号器
 func createSocksDialer(host string, auth *proxy.Auth, previous proxy.Dialer) (proxy.Dialer, error) {
 	// 调用 golang.org/x/net/proxy 提供的 SOCKS5 方法创建拨号器
 	return proxy.SOCKS5("tcp", host, auth, previous)
 }
--- a/proxy/error.go
+++ b/proxy/error.go
@@ -0,0 +1,23 @@
 package proxy
 import (
 	"net/http"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 // 日志模块
 var (
 	logw       = logger.Logw
 	logDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
 )
 func HandleError(c *app.RequestContext, message string) {
 	c.JSON(http.StatusInternalServerError, map[string]string{"error": message})
 	logError(message)
 }
--- a/proxy/gitreq.go
+++ b/proxy/gitreq.go
@@ -0,0 +1,121 @@
 package proxy
 import (
 	"bytes"
 	"context"
 	"fmt"
 	"ghproxy/config"
 	"net/http"
 	"strconv"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 func GitReq(ctx context.Context, c *app.RequestContext, u string, cfg *config.Config, mode string) {
 	method := string(c.Request.Method())
 	logDump("Url Before FMT:%s", u)
 	if cfg.GitClone.Mode == "cache" {
 		userPath, repoPath, remainingPath, queryParams, err := extractParts(u)
 		if err != nil {
 			HandleError(c, fmt.Sprintf("Failed to extract parts from URL: %v", err))
 			return
 		}
 		// 构建新url
 		u = cfg.GitClone.SmartGitAddr + userPath + repoPath + remainingPath + "?" + queryParams.Encode()
 		logDump("New Url After FMT:%s", u)
 	}
 	var (
 		resp *http.Response
 		//err  error
 	)
 	body := c.Request.Body()
 	bodyReader := bytes.NewBuffer(body)
 	// 创建请求
 	if cfg.GitClone.Mode == "cache" {
 		req, err := gitclient.NewRequest(method, u, bodyReader)
 		if err != nil {
 			HandleError(c, fmt.Sprintf("Failed to create request: %v", err))
 			return
 		}
 		setRequestHeaders(c, req)
 		//removeWSHeader(req)
 		AuthPassThrough(c, cfg, req)
 		resp, err = gitclient.Do(req)
 		if err != nil {
 			HandleError(c, fmt.Sprintf("Failed to send request: %v", err))
 			return
 		}
 	} else {
 		req, err := client.NewRequest(method, u, bodyReader)
 		if err != nil {
 			HandleError(c, fmt.Sprintf("Failed to create request: %v", err))
 			return
 		}
 		setRequestHeaders(c, req)
 		//removeWSHeader(req)
 		AuthPassThrough(c, cfg, req)
 		resp, err = client.Do(req)
 		if err != nil {
 			HandleError(c, fmt.Sprintf("Failed to send request: %v", err))
 			return
 		}
 	}
 	contentLength := resp.Header.Get("Content-Length")
 	if contentLength != "" {
 		size, err := strconv.Atoi(contentLength)
 		sizelimit := cfg.Server.SizeLimit * 1024 * 1024
 		if err != nil {
 			logWarning("%s %s %s %s %s Content-Length header is not a valid integer: %v", c.ClientIP(), c.Method(), c.Path(), c.UserAgent(), c.Request.Header.GetProtocol(), err)
 		}
 		if err == nil && size > sizelimit {
 			finalURL := []byte(resp.Request.URL.String())
 			c.Redirect(http.StatusMovedPermanently, finalURL)
 			logWarning("%s %s %s %s %s Final-URL: %s Size-Limit-Exceeded: %d", c.ClientIP(), c.Method(), c.Path(), c.Request.Header.Get("User-Agent"), c.Request.Header.GetProtocol(), finalURL, size)
 			return
 		}
 	}
 	for key, values := range resp.Header {
 		for _, value := range values {
 			c.Header(key, value)
 		}
 	}
 	headersToRemove := map[string]struct{}{
 		"Content-Security-Policy":   {},
 		"Referrer-Policy":           {},
 		"Strict-Transport-Security": {},
 	}
 	for header := range headersToRemove {
 		resp.Header.Del(header)
 	}
 	switch cfg.Server.Cors {
 	case "*":
 		c.Header("Access-Control-Allow-Origin", "*")
 	case "":
 		c.Header("Access-Control-Allow-Origin", "*")
 	case "nil":
 		c.Header("Access-Control-Allow-Origin", "")
 	default:
 		c.Header("Access-Control-Allow-Origin", cfg.Server.Cors)
 	}
 	c.Status(resp.StatusCode)
 	if cfg.GitClone.Mode == "cache" {
 		c.Response.Header.Set("Cache-Control", "no-store, no-cache, must-revalidate")
 		c.Response.Header.Set("Pragma", "no-cache")
 		c.Response.Header.Set("Expires", "0")
 	}
 	c.SetBodyStream(resp.Body, -1)
 }
--- a/proxy/handler.go
+++ b/proxy/handler.go
@@ -0,0 +1,149 @@
 package proxy
 import (
 	"context"
 	"errors"
 	"fmt"
 	"ghproxy/auth"
 	"ghproxy/config"
 	"ghproxy/rate"
 	"net/http"
 	"regexp"
 	"strings"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 var re = regexp.MustCompile(`^(http:|https:)?/?/?(.*)`) // 匹配http://或https://开头的路径
 func NoRouteHandler(cfg *config.Config, limiter *rate.RateLimiter, iplimiter *rate.IPRateLimiter) app.HandlerFunc {
 	return func(ctx context.Context, c *app.RequestContext) {
 		// 限制访问频率
 		if cfg.RateLimit.Enabled {
 			var allowed bool
 			switch cfg.RateLimit.RateMethod {
 			case "ip":
 				allowed = iplimiter.Allow(c.ClientIP())
 			case "total":
 				allowed = limiter.Allow()
 			default:
 				logWarning("Invalid RateLimit Method")
 				return
 			}
 			if !allowed {
 				c.JSON(http.StatusTooManyRequests, map[string]string{"error": "Too Many Requests"})
 				logWarning("%s %s %s %s %s 429-TooManyRequests", c.ClientIP(), c.Method(), c.Request.RequestURI(), c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
 				return
 			}
 		}
 		var (
 			rawPath string
 			matches []string
 			errMsg  string
 		)
 		rawPath = strings.TrimPrefix(string(c.Request.RequestURI()), "/") // 去掉前缀/
 		matches = re.FindStringSubmatch(rawPath)                          // 匹配路径
 		logInfo("URL: %v", matches)
 		// 匹配路径错误处理
 		if len(matches) < 3 {
 			errMsg = fmt.Sprintf("%s %s %s %s %s Invalid URL", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol())
 			logWarning(errMsg)
 			c.String(http.StatusForbidden, "Invalid URL Format. Path: %s", rawPath)
 			return
 		}
 		// 制作url
 		rawPath = "https://" + matches[2]
 		var (
 			user    string
 			repo    string
 			matcher string
 			err     error
 		)
 		user, repo, matcher, err = Matcher(rawPath, cfg)
 		if err != nil {
 			if errors.Is(err, ErrInvalidURL) {
 				c.String(http.StatusForbidden, "Invalid URL Format. Path: %s", rawPath)
 				logWarning(err.Error())
 				return
 			}
 			if errors.Is(err, ErrAuthHeaderUnavailable) {
 				c.String(http.StatusForbidden, "AuthHeader Unavailable")
 				logWarning(err.Error())
 				return
 			}
 		}
 		logInfo("%s %s %s %s %s Matched-Username: %s, Matched-Repo: %s", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), user, repo)
 		// dump log 记录详细信息 c.ClientIP(), c.Method(), rawPath,c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), full Header
 		logDump("%s %s %s %s %s %s", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), c.Request.Header.Header())
 		var repouser string
 		repouser = fmt.Sprintf("%s/%s", user, repo)
 		// 白名单检查
 		if cfg.Whitelist.Enabled {
 			var whitelist bool
 			whitelist = auth.CheckWhitelist(user, repo)
 			if !whitelist {
 				errMsg = fmt.Sprintf("Whitelist Blocked repo: %s", repouser)
 				c.JSON(http.StatusForbidden, map[string]string{"error": errMsg})
 				logWarning("%s %s %s %s %s Whitelist Blocked repo: %s", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), repouser)
 				return
 			}
 		}
 		// 黑名单检查
 		if cfg.Blacklist.Enabled {
 			var blacklist bool
 			blacklist = auth.CheckBlacklist(user, repo)
 			if blacklist {
 				errMsg = fmt.Sprintf("Blacklist Blocked repo: %s", repouser)
 				c.JSON(http.StatusForbidden, map[string]string{"error": errMsg})
 				logWarning("%s %s %s %s %s Blacklist Blocked repo: %s", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), repouser)
 				return
 			}
 		}
 		// 若匹配api.github.com/repos/用户名/仓库名/路径, 则检查是否开启HeaderAuth
 		// 处理blob/raw路径
 		if matcher == "blob" {
 			rawPath = strings.Replace(rawPath, "/blob/", "/raw/", 1)
 		}
 		// 鉴权
 		if cfg.Auth.Enabled {
 			var authcheck bool
 			authcheck, err = auth.AuthHandler(ctx, c, cfg)
 			if !authcheck {
 				//c.AbortWithStatusJSON(401, gin.H{"error": "Unauthorized"})
 				c.AbortWithStatusJSON(401, map[string]string{"error": "Unauthorized"})
 				logWarning("%s %s %s %s %s Auth-Error: %v", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), err)
 				return
 			}
 		}
 		// IP METHOD URL USERAGENT PROTO MATCHES
 		logDebug("%s %s %s %s %s Matched: %v", c.ClientIP(), c.Method(), rawPath, c.Request.Header.UserAgent(), c.Request.Header.GetProtocol(), matcher)
 		switch matcher {
 		case "releases", "blob", "raw", "gist", "api":
 			ChunkedProxyRequest(ctx, c, rawPath, cfg, matcher)
 		case "clone":
 			GitReq(ctx, c, rawPath, cfg, "git")
 		default:
 			c.String(http.StatusForbidden, "Invalid input.")
 			fmt.Println("Invalid input.")
 			return
 		}
 	}
 }
--- a/proxy/httpc.go
+++ b/proxy/httpc.go
@@ -0,0 +1,144 @@
 package proxy
 import (
 	"fmt"
 	"ghproxy/config"
 	"net/http"
 	"time"
 	httpc "github.com/satomitouka/touka-httpc"
 )
 var BufferSize int = 32 * 1024 // 32KB
 var (
 	tr        *http.Transport
 	gittr     *http.Transport
 	client    *httpc.Client
 	gitclient *httpc.Client
 )
 func InitReq(cfg *config.Config) {
 	initHTTPClient(cfg)
 	if cfg.GitClone.Mode == "cache" {
 		initGitHTTPClient(cfg)
 	}
 }
 func initHTTPClient(cfg *config.Config) {
 	var proTolcols = new(http.Protocols)
 	proTolcols.SetHTTP1(true)
 	proTolcols.SetHTTP2(true)
 	proTolcols.SetUnencryptedHTTP2(true)
 	if cfg.Httpc.Mode == "auto" {
 		tr = &http.Transport{
 			IdleConnTimeout: 30 * time.Second,
 			WriteBufferSize: 32 * 1024, // 32KB
 			ReadBufferSize:  32 * 1024, // 32KB
 			Protocols:       proTolcols,
 		}
 	} else if cfg.Httpc.Mode == "advanced" {
 		tr = &http.Transport{
 			MaxIdleConns:        cfg.Httpc.MaxIdleConns,
 			MaxConnsPerHost:     cfg.Httpc.MaxConnsPerHost,
 			MaxIdleConnsPerHost: cfg.Httpc.MaxIdleConnsPerHost,
 			WriteBufferSize:     32 * 1024, // 32KB
 			ReadBufferSize:      32 * 1024, // 32KB
 			Protocols:           proTolcols,
 		}
 	} else {
 		// 错误的模式
 		logError("unknown httpc mode: %s", cfg.Httpc.Mode)
 		fmt.Println("unknown httpc mode: ", cfg.Httpc.Mode)
 		logWarning("use Auto to Run HTTP Client")
 		fmt.Println("use Auto to Run HTTP Client")
 		tr = &http.Transport{
 			IdleConnTimeout: 30 * time.Second,
 			WriteBufferSize: 32 * 1024, // 32KB
 			ReadBufferSize:  32 * 1024, // 32KB
 		}
 	}
 	if cfg.Outbound.Enabled {
 		initTransport(cfg, tr)
 	}
 	if cfg.Server.Debug {
 		client = httpc.New(
 			httpc.WithTransport(tr),
 			httpc.WithDumpLog(),
 		)
 	} else {
 		client = httpc.New(
 			httpc.WithTransport(tr),
 		)
 	}
 }
 func initGitHTTPClient(cfg *config.Config) {
 	if cfg.Httpc.Mode == "auto" {
 		gittr = &http.Transport{
 			IdleConnTimeout: 30 * time.Second,
 			WriteBufferSize: 32 * 1024, // 32KB
 			ReadBufferSize:  32 * 1024, // 32KB
 		}
 	} else if cfg.Httpc.Mode == "advanced" {
 		gittr = &http.Transport{
 			MaxIdleConns:        cfg.Httpc.MaxIdleConns,
 			MaxConnsPerHost:     cfg.Httpc.MaxConnsPerHost,
 			MaxIdleConnsPerHost: cfg.Httpc.MaxIdleConnsPerHost,
 			WriteBufferSize:     32 * 1024, // 32KB
 			ReadBufferSize:      32 * 1024, // 32KB
 		}
 	} else {
 		// 错误的模式
 		logError("unknown httpc mode: %s", cfg.Httpc.Mode)
 		fmt.Println("unknown httpc mode: ", cfg.Httpc.Mode)
 		logWarning("use Auto to Run HTTP Client")
 		fmt.Println("use Auto to Run HTTP Client")
 		gittr = &http.Transport{
 			//MaxIdleConns:    160,
 			IdleConnTimeout: 30 * time.Second,
 			WriteBufferSize: 32 * 1024, // 32KB
 			ReadBufferSize:  32 * 1024, // 32KB
 		}
 	}
 	if cfg.Outbound.Enabled {
 		initTransport(cfg, gittr)
 	}
 	if cfg.Server.Debug && cfg.GitClone.ForceH2C {
 		gitclient = httpc.New(
 			httpc.WithTransport(gittr),
 			httpc.WithDumpLog(),
 			httpc.WithProtocols(httpc.ProtocolsConfig{
 				ForceH2C: true,
 			}),
 		)
 	} else if !cfg.Server.Debug && cfg.GitClone.ForceH2C {
 		gitclient = httpc.New(
 			httpc.WithTransport(gittr),
 			httpc.WithProtocols(httpc.ProtocolsConfig{
 				ForceH2C: true,
 			}),
 		)
 	} else if cfg.Server.Debug && !cfg.GitClone.ForceH2C {
 		gitclient = httpc.New(
 			httpc.WithTransport(gittr),
 			httpc.WithDumpLog(),
 			httpc.WithProtocols(httpc.ProtocolsConfig{
 				Http1:           true,
 				Http2:           true,
 				Http2_Cleartext: true,
 			}),
 		)
 	} else {
 		gitclient = httpc.New(
 			httpc.WithTransport(gittr),
 			httpc.WithProtocols(httpc.ProtocolsConfig{
 				Http1:           true,
 				Http2:           true,
 				Http2_Cleartext: true,
 			}),
 		)
 	}
 }
--- a/proxy/match.go
+++ b/proxy/match.go
@@ -0,0 +1,361 @@
 package proxy
 import (
 	"bufio"
 	"compress/gzip"
 	"fmt"
 	"ghproxy/config"
 	"io"
 	"net/url"
 	"regexp"
 	"strings"
 )
 // 定义错误类型, error承载描述, 便于处理
 type MatcherErrors struct {
 	Code int
 	Msg  string
 	Err  error
 }
 var (
 	ErrInvalidURL = &MatcherErrors{
 		Code: 403,
 		Msg:  "Invalid URL Format",
 	}
 	ErrAuthHeaderUnavailable = &MatcherErrors{
 		Code: 403,
 		Msg:  "AuthHeader Unavailable",
 	}
 )
 func (e *MatcherErrors) Error() string {
 	if e.Err != nil {
 		return fmt.Sprintf("Code: %d, Msg: %s, Err: %s", e.Code, e.Msg, e.Err.Error())
 	}
 	return fmt.Sprintf("Code: %d, Msg: %s", e.Code, e.Msg)
 }
 func (e *MatcherErrors) Unwrap() error {
 	return e.Err
 }
 func Matcher(rawPath string, cfg *config.Config) (string, string, string, error) {
 	var (
 		user    string
 		repo    string
 		matcher string
 	)
 	// 匹配 "https://github.com"开头的链接
 	if strings.HasPrefix(rawPath, "https://github.com") {
 		remainingPath := strings.TrimPrefix(rawPath, "https://github.com")
 		if strings.HasPrefix(remainingPath, "/") {
 			remainingPath = strings.TrimPrefix(remainingPath, "/")
 		}
 		// 预期格式/user/repo/more...
 		// 取出user和repo和最后部分
 		parts := strings.Split(remainingPath, "/")
 		if len(parts) <= 2 {
 			return "", "", "", ErrInvalidURL
 		}
 		user = parts[0]
 		repo = parts[1]
 		// 匹配 "https://github.com"开头的链接
 		if len(parts) >= 3 {
 			switch parts[2] {
 			case "releases", "archive":
 				matcher = "releases"
 			case "blob", "raw":
 				matcher = "blob"
 			case "info", "git-upload-pack":
 				matcher = "clone"
 			default:
 				return "", "", "", ErrInvalidURL
 			}
 		}
 		return user, repo, matcher, nil
 	}
 	// 匹配 "https://raw"开头的链接
 	if strings.HasPrefix(rawPath, "https://raw") {
 		remainingPath := strings.TrimPrefix(rawPath, "https://")
 		parts := strings.Split(remainingPath, "/")
 		if len(parts) <= 3 {
 			return "", "", "", ErrInvalidURL
 		}
 		user = parts[1]
 		repo = parts[2]
 		matcher = "raw"
 		return user, repo, matcher, nil
 	}
 	// 匹配 "https://gist"开头的链接
 	if strings.HasPrefix(rawPath, "https://gist") {
 		remainingPath := strings.TrimPrefix(rawPath, "https://")
 		parts := strings.Split(remainingPath, "/")
 		if len(parts) <= 3 {
 			return "", "", "", ErrInvalidURL
 		}
 		user = parts[1]
 		repo = ""
 		matcher = "gist"
 		return user, repo, matcher, nil
 	}
 	// 匹配 "https://api.github.com/"开头的链接
 	if strings.HasPrefix(rawPath, "https://api.github.com/") {
 		matcher = "api"
 		remainingPath := strings.TrimPrefix(rawPath, "https://api.github.com/")
 		parts := strings.Split(remainingPath, "/")
 		if parts[0] == "repos" {
 			user = parts[1]
 			repo = parts[2]
 		}
 		if parts[0] == "users" {
 			user = parts[1]
 		}
 		if !cfg.Auth.ForceAllowApi {
 			if cfg.Auth.Method != "header" || !cfg.Auth.Enabled {
 				return "", "", "", ErrAuthHeaderUnavailable
 			}
 		}
 		return user, repo, matcher, nil
 	}
 	return "", "", "", ErrInvalidURL
 }
 func EditorMatcher(rawPath string, cfg *config.Config) (bool, string, error) {
 	var (
 		matcher string
 	)
 	// 匹配 "https://github.com"开头的链接
 	if strings.HasPrefix(rawPath, "https://github.com") {
 		remainingPath := strings.TrimPrefix(rawPath, "https://github.com")
 		if strings.HasPrefix(remainingPath, "/") {
 			remainingPath = strings.TrimPrefix(remainingPath, "/")
 		}
 		return true, "", nil
 	}
 	// 匹配 "https://raw.githubusercontent.com"开头的链接
 	if strings.HasPrefix(rawPath, "https://raw.githubusercontent.com") {
 		return true, matcher, nil
 	}
 	// 匹配 "https://raw.github.com"开头的链接
 	if strings.HasPrefix(rawPath, "https://raw.github.com") {
 		return true, matcher, nil
 	}
 	// 匹配 "https://gist.githubusercontent.com"开头的链接
 	if strings.HasPrefix(rawPath, "https://gist.githubusercontent.com") {
 		return true, matcher, nil
 	}
 	// 匹配 "https://gist.github.com"开头的链接
 	if strings.HasPrefix(rawPath, "https://gist.github.com") {
 		return true, matcher, nil
 	}
 	if cfg.Shell.RewriteAPI {
 		// 匹配 "https://api.github.com/"开头的链接
 		if strings.HasPrefix(rawPath, "https://api.github.com") {
 			matcher = "api"
 			return true, matcher, nil
 		}
 	}
 	return false, "", ErrInvalidURL
 }
 // 匹配文件扩展名是sh的rawPath
 func MatcherShell(rawPath string) bool {
 	/*
 		if strings.HasSuffix(rawPath, ".sh") {
 			return true
 		}
 		return false
 	*/
 	return strings.HasSuffix(rawPath, ".sh")
 }
 // LinkProcessor 是一个函数类型，用于处理提取到的链接。
 type LinkProcessor func(string) string
 // 自定义 URL 修改函数
 func modifyURL(url string, host string, cfg *config.Config) string {
 	// 去除url内的https://或http://
 	matched, _, err := EditorMatcher(url, cfg)
 	if err != nil {
 		logDump("Invalid URL: %s", url)
 		return url
 	}
 	if matched {
 		var u = url
 		u = strings.TrimPrefix(u, "https://")
 		u = strings.TrimPrefix(u, "http://")
 		logDump("Modified URL: %s", "https://"+host+"/"+u)
 		return "https://" + host + "/" + u
 	}
 	return url
 }
 var (
 	matchedMatchers = []string{
 		"blob",
 		"raw",
 		"gist",
 	}
 )
 // matchString 检查目标字符串是否在给定的字符串集合中
 func matchString(target string, stringsToMatch []string) bool {
 	matchMap := make(map[string]struct{}, len(stringsToMatch))
 	for _, str := range stringsToMatch {
 		matchMap[str] = struct{}{}
 	}
 	_, exists := matchMap[target]
 	return exists
 }
 // extractParts 从给定的 URL 中提取所需的部分
 func extractParts(rawURL string) (string, string, string, url.Values, error) {
 	// 解析 URL
 	parsedURL, err := url.Parse(rawURL)
 	if err != nil {
 		return "", "", "", nil, err
 	}
 	// 获取路径部分并分割
 	pathParts := strings.Split(parsedURL.Path, "/")
 	// 提取所需的部分
 	if len(pathParts) < 3 {
 		return "", "", "", nil, fmt.Errorf("URL path is too short")
 	}
 	// 提取 /WJQSERVER-STUDIO 和 /go-utils.git
 	repoOwner := "/" + pathParts[1]
 	repoName := "/" + pathParts[2]
 	// 剩余部分
 	remainingPath := strings.Join(pathParts[3:], "/")
 	if remainingPath != "" {
 		remainingPath = "/" + remainingPath
 	}
 	// 查询参数
 	queryParams := parsedURL.Query()
 	return repoOwner, repoName, remainingPath, queryParams, nil
 }
 var urlPattern = regexp.MustCompile(`https?://[^\s'"]+`)
 // processLinks 处理链接，返回包含处理后数据的 io.Reader
 func processLinks(input io.ReadCloser, compress string, host string, cfg *config.Config) (readerOut io.Reader, written int64, err error) {
 	pipeReader, pipeWriter := io.Pipe() // 创建 io.Pipe
 	readerOut = pipeReader
 	go func() { // 在 Goroutine 中执行写入操作
 		defer func() {
 			if pipeWriter != nil { // 确保 pipeWriter 关闭，即使发生错误
 				if err != nil {
 					if closeErr := pipeWriter.CloseWithError(err); closeErr != nil { // 如果有错误，传递错误给 reader
 						logError("pipeWriter close with error failed: %v, original error: %v", closeErr, err)
 					}
 				} else {
 					if closeErr := pipeWriter.Close(); closeErr != nil { // 没有错误，正常关闭
 						logError("pipeWriter close failed: %v", closeErr)
 						if err == nil { // 如果之前没有错误，记录关闭错误
 							err = closeErr
 						}
 					}
 				}
 			}
 		}()
 		defer func() {
 			if err := input.Close(); err != nil {
 				logError("input close failed: %v", err)
 			}
 		}()
 		var bufReader *bufio.Reader
 		if compress == "gzip" {
 			// 解压gzip
 			gzipReader, gzipErr := gzip.NewReader(input)
 			if gzipErr != nil {
 				err = fmt.Errorf("gzip解压错误: %v", gzipErr)
 				return // Goroutine 中使用 return 返回错误
 			}
 			defer gzipReader.Close()
 			bufReader = bufio.NewReader(gzipReader)
 		} else {
 			bufReader = bufio.NewReader(input)
 		}
 		var bufWriter *bufio.Writer
 		var gzipWriter *gzip.Writer
 		// 根据是否gzip确定 writer 的创建
 		if compress == "gzip" {
 			gzipWriter = gzip.NewWriter(pipeWriter)           // 使用 pipeWriter
 			bufWriter = bufio.NewWriterSize(gzipWriter, 4096) //设置缓冲区大小
 		} else {
 			bufWriter = bufio.NewWriterSize(pipeWriter, 4096) // 使用 pipeWriter
 		}
 		//确保writer关闭
 		defer func() {
 			var closeErr error // 局部变量，用于保存defer中可能发生的错误
 			if gzipWriter != nil {
 				if closeErr = gzipWriter.Close(); closeErr != nil {
 					logError("gzipWriter close failed %v", closeErr)
 					// 如果已经存在错误，则保留。否则，记录此错误。
 					if err == nil {
 						err = closeErr
 					}
 				}
 			}
 			if flushErr := bufWriter.Flush(); flushErr != nil {
 				logError("writer flush failed %v", flushErr)
 				// 如果已经存在错误，则保留。否则，记录此错误。
 				if err == nil {
 					err = flushErr
 				}
 			}
 		}()
 		// 使用正则表达式匹配 http 和 https 链接
 		for {
 			line, readErr := bufReader.ReadString('\n')
 			if readErr != nil {
 				if readErr == io.EOF {
 					break // 文件结束
 				}
 				err = fmt.Errorf("读取行错误: %v", readErr) // 传递错误
 				return                                 // Goroutine 中使用 return 返回错误
 			}
 			// 替换所有匹配的 URL
 			modifiedLine := urlPattern.ReplaceAllStringFunc(line, func(originalURL string) string {
 				logDump("originalURL: %s", originalURL)
 				return modifyURL(originalURL, host, cfg) // 假设 modifyURL 函数已定义
 			})
 			n, writeErr := bufWriter.WriteString(modifiedLine)
 			written += int64(n) // 更新写入的字节数
 			if writeErr != nil {
 				err = fmt.Errorf("写入文件错误: %v", writeErr) // 传递错误
 				return                                   // Goroutine 中使用 return 返回错误
 			}
 		}
 		// 在返回之前，再刷新一次 (虽然 defer 中已经有 flush，但这里再加一次确保及时刷新)
 		if flushErr := bufWriter.Flush(); flushErr != nil {
 			if err == nil { // 避免覆盖之前的错误
 				err = flushErr
 			}
 			return // Goroutine 中使用 return 返回错误
 		}
 	}()
 	return readerOut, written, nil // 返回 reader 和 written，error 由 Goroutine 通过 pipeWriter.CloseWithError 传递
 }
--- a/proxy/proxy.go
+++ b/proxy/proxy.go
@@ -1,410 +0,0 @@
 package proxy
 import (
 	"fmt"
 	"io"
 	"net/http"
 	"regexp"
 	"strconv"
 	"strings"
 	"ghproxy/auth"
 	"ghproxy/config"
 	"ghproxy/rate"
 	"github.com/WJQSERVER-STUDIO/go-utils/logger"
 	"github.com/gin-gonic/gin"
 	"github.com/imroc/req/v3"
 )
 // 日志模块
 var (
 	logw       = logger.Logw
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
 )
 var exps = []*regexp.Regexp{
 	regexp.MustCompile(`^(?:https?://)?github\.com/([^/]+)/([^/]+)/(?:releases|archive)/.*`),
 	regexp.MustCompile(`^(?:https?://)?github\.com/([^/]+)/([^/]+)/(?:blob|raw)/.*`),
 	regexp.MustCompile(`^(?:https?://)?github\.com/([^/]+)/([^/]+)/(?:info|git-).*`),
 	regexp.MustCompile(`^(?:https?://)?raw\.github(?:usercontent|)\.com/([^/]+)/([^/]+)/.+?/.+`),
 	regexp.MustCompile(`^(?:https?://)?gist\.github(?:usercontent|)\.com/([^/]+)/.+?/.+`),
 	regexp.MustCompile(`^(?:https?://)?api\.github\.com/repos/([^/]+)/([^/]+)/.*`),
 }
 func NoRouteHandler(cfg *config.Config, limiter *rate.RateLimiter, iplimiter *rate.IPRateLimiter, runMode string) gin.HandlerFunc {
 	return func(c *gin.Context) {
 		// 限制访问频率
 		if cfg.RateLimit.Enabled {
 			var allowed bool
 			switch cfg.RateLimit.RateMethod {
 			case "ip":
 				allowed = iplimiter.Allow(c.ClientIP())
 			case "total":
 				allowed = limiter.Allow()
 			default:
 				logWarning("Invalid RateLimit Method")
 				return
 			}
 			if !allowed {
 				c.JSON(http.StatusTooManyRequests, gin.H{"error": "Too Many Requests"})
 				logWarning("%s %s %s %s %s 429-TooManyRequests", c.ClientIP(), c.Request.Method, c.Request.URL.RequestURI(), c.Request.Header.Get("User-Agent"), c.Request.Proto)
 				return
 			}
 		}
 		rawPath := strings.TrimPrefix(c.Request.URL.RequestURI(), "/")
 		re := regexp.MustCompile(`^(http:|https:)?/?/?(.*)`)
 		matches := re.FindStringSubmatch(rawPath)
 		if len(matches) < 3 {
 			errMsg := fmt.Sprintf("%s %s %s %s %s Invalid URL", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto)
 			logWarning(errMsg)
 			c.String(http.StatusForbidden, "Invalid URL Format. Path: %s", rawPath)
 			return
 		}
 		rawPath = "https://" + matches[2]
 		username, repo := MatchUserRepo(rawPath, cfg, c, matches)
 		logInfo("%s %s %s %s %s Matched-Username: %s, Matched-Repo: %s", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, username, repo)
 		repouser := fmt.Sprintf("%s/%s", username, repo)
 		// 白名单检查
 		if cfg.Whitelist.Enabled {
 			whitelist := auth.CheckWhitelist(repouser, username, repo)
 			if !whitelist {
 				logErrMsg := fmt.Sprintf("%s %s %s %s %s Whitelist Blocked repo: %s", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, repouser)
 				errMsg := fmt.Sprintf("Whitelist Blocked repo: %s", repouser)
 				c.JSON(http.StatusForbidden, gin.H{"error": errMsg})
 				logWarning(logErrMsg)
 				return
 			}
 		}
 		// 黑名单检查
 		if cfg.Blacklist.Enabled {
 			blacklist := auth.CheckBlacklist(repouser, username, repo)
 			if blacklist {
 				logErrMsg := fmt.Sprintf("%s %s %s %s %s Whitelist Blocked repo: %s", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, repouser)
 				errMsg := fmt.Sprintf("Blacklist Blocked repo: %s", repouser)
 				c.JSON(http.StatusForbidden, gin.H{"error": errMsg})
 				logWarning(logErrMsg)
 				return
 			}
 		}
 		matches = CheckURL(rawPath, c)
 		if matches == nil {
 			c.AbortWithStatus(http.StatusNotFound)
 			logError("%s %s %s %s %s 404-NOMATCH", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto)
 			return
 		}
 		// 若匹配api.github.com/repos/用户名/仓库名/路径, 则检查是否开启HeaderAuth
 		if exps[5].MatchString(rawPath) {
 			if cfg.Auth.AuthMethod != "header" || !cfg.Auth.Enabled {
 				c.JSON(http.StatusForbidden, gin.H{"error": "HeaderAuth is not enabled."})
 				logWarning("%s %s %s %s %s HeaderAuth-Error: HeaderAuth is not enabled.", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto)
 				return
 			}
 		}
 		// 处理blob/raw路径
 		if exps[1].MatchString(rawPath) {
 			rawPath = strings.Replace(rawPath, "/blob/", "/raw/", 1)
 		}
 		// 鉴权
 		authcheck, err := auth.AuthHandler(c, cfg)
 		if !authcheck {
 			c.AbortWithStatusJSON(401, gin.H{"error": "Unauthorized"})
 			logWarning("%s %s %s %s %s Auth-Error: %v", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, err)
 			return
 		}
 		// IP METHOD URL USERAGENT PROTO MATCHES
 		logInfo("%s %s %s %s %s Matches: %v", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, matches)
 		switch {
 		case exps[0].MatchString(rawPath), exps[1].MatchString(rawPath), exps[3].MatchString(rawPath), exps[4].MatchString(rawPath):
 			ProxyRequest(c, rawPath, cfg, "chrome", runMode)
 		case exps[2].MatchString(rawPath):
 			ProxyRequest(c, rawPath, cfg, "git", runMode)
 		default:
 			c.String(http.StatusForbidden, "Invalid input.")
 			fmt.Println("Invalid input.")
 			return
 		}
 	}
 }
 // 提取用户名和仓库名
 func MatchUserRepo(rawPath string, cfg *config.Config, c *gin.Context, matches []string) (string, string) {
 	var gistregex = regexp.MustCompile(`^(?:https?://)?gist\.github(?:usercontent|)\.com/([^/]+)/([^/]+)/.*`)
 	var gistmatches []string
 	if gistregex.MatchString(rawPath) {
 		gistmatches = gistregex.FindStringSubmatch(rawPath)
 		logInfo("%s %s %s %s %s Matched-Username: %s", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto, gistmatches[1])
 		return gistmatches[1], ""
 	}
 	// 定义路径
 	pathRegex := regexp.MustCompile(`^([^/]+)/([^/]+)/([^/]+)/.*`)
 	if pathMatches := pathRegex.FindStringSubmatch(matches[2]); len(pathMatches) >= 4 {
 		return pathMatches[2], pathMatches[3]
 	}
 	// 返回错误信息
 	errMsg := fmt.Sprintf("%s %s %s %s %s Invalid URL", c.ClientIP(), c.Request.Method, rawPath, c.Request.Header.Get("User-Agent"), c.Request.Proto)
 	logWarning(errMsg)
 	c.String(http.StatusForbidden, "Invalid path; expected username/repo, Path: %s", rawPath)
 	return "", ""
 }
 func ProxyRequest(c *gin.Context, u string, cfg *config.Config, mode string, runMode string) {
 	method := c.Request.Method
 	logInfo("%s %s %s %s %s", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto)
 	client := createHTTPClient(mode)
 	if runMode == "dev" {
 		client.DevMode()
 	}
 	// 发送HEAD请求, 预获取Content-Length
 	headReq := client.R()
 	setRequestHeaders(c, headReq)
 	authPassThrough(c, cfg, headReq)
 	headResp, err := headReq.Head(u)
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to send request: %v", err))
 		return
 	}
 	defer headResp.Body.Close()
 	if err := HandleResponseSize(headResp, cfg, c); err != nil {
 		logWarning("%s %s %s %s %s Response-Size-Error: %v", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto, err)
 		return
 	}
 	body, err := readRequestBody(c)
 	if err != nil {
 		HandleError(c, err.Error())
 		return
 	}
 	req := client.R().SetBody(body)
 	setRequestHeaders(c, req)
 	authPassThrough(c, cfg, req)
 	resp, err := SendRequest(c, req, method, u)
 	if err != nil {
 		HandleError(c, fmt.Sprintf("Failed to send request: %v", err))
 		return
 	}
 	defer resp.Body.Close()
 	if err := HandleResponseSize(resp, cfg, c); err != nil {
 		logWarning("%s %s %s %s %s Response-Size-Error: %v", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto, err)
 		return
 	}
 	CopyResponseHeaders(resp, c, cfg)
 	c.Status(resp.StatusCode)
 	if err := copyResponseBody(c, resp.Body); err != nil {
 		logError("%s %s %s %s %s Response-Copy-Error: %v", c.ClientIP(), method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto, err)
 	}
 }
 // 判断并选择TLS指纹
 func createHTTPClient(mode string) *req.Client {
 	client := req.C()
 	switch mode {
 	case "chrome":
 		client.SetUserAgent("Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36").
 			SetTLSFingerprintChrome().
 			ImpersonateChrome()
 	case "git":
 		client.SetUserAgent("git/2.33.1")
 	}
 	return client
 }
 // 读取请求体
 func readRequestBody(c *gin.Context) ([]byte, error) {
 	body, err := io.ReadAll(c.Request.Body)
 	if err != nil {
 		return nil, fmt.Errorf("failed to read request body: %v", err)
 	}
 	defer c.Request.Body.Close()
 	return body, nil
 }
 // 设置请求头
 func setRequestHeaders(c *gin.Context, req *req.Request) {
 	for key, values := range c.Request.Header {
 		for _, value := range values {
 			req.SetHeader(key, value)
 		}
 	}
 }
 /*
 	func authPassThrough(c *gin.Context, cfg *config.Config, req *req.Request) {
 		if cfg.Auth.PassThrough && cfg.Auth.AuthMethod == "parameters" && !cfg.Auth.Enabled {
 			// only mode
 			token := c.Query("token")
 			req.SetHeader("Authorization", "token "+token)
 		} else if cfg.Auth.PassThrough && cfg.Auth.AuthMethod == "header" && cfg.Auth.Enabled {
 			// mix mode
 			token := c.Query("token")
 			req.SetHeader("Authorization", "token "+token)
 		} else if cfg.Auth.PassThrough && cfg.Auth.AuthMethod == "parameters" && cfg.Auth.Enabled {
 			// conflict
 			logWarning("%s %s %s %s %s Auth-Error: Conflict Auth Method", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto)
 			c.JSON(http.StatusForbidden, gin.H{"error": "Conflict Auth Method"})
 			return
 		} else if cfg.Auth.PassThrough && cfg.Auth.AuthMethod == "header" && !cfg.Auth.Enabled {
 			// only mode
 			token := c.Query("token")
 			req.SetHeader("Authorization", "token "+token)
 		}
 	}
 */
 func authPassThrough(c *gin.Context, cfg *config.Config, req *req.Request) {
 	if cfg.Auth.PassThrough {
 		token := c.Query("token")
 		if token != "" {
 			switch cfg.Auth.AuthMethod {
 			case "parameters":
 				if !cfg.Auth.Enabled {
 					req.SetHeader("Authorization", "token "+token)
 				} else {
 					logWarning("%s %s %s %s %s Auth-Error: Conflict Auth Method", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto)
 					// 500 Internal Server Error
 					c.JSON(http.StatusInternalServerError, gin.H{"error": "Conflict Auth Method"})
 					return
 				}
 			case "header":
 				if cfg.Auth.Enabled {
 					req.SetHeader("Authorization", "token "+token)
 				}
 			default:
 				logWarning("%s %s %s %s %s Invalid Auth Method / Auth Method is not be set", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto)
 				// 500 Internal Server Error
 				c.JSON(http.StatusInternalServerError, gin.H{"error": "Invalid Auth Method / Auth Method is not be set"})
 				return
 			}
 		}
 	}
 }
 // 复制响应体
 func copyResponseBody(c *gin.Context, respBody io.Reader) error {
 	_, err := io.Copy(c.Writer, respBody)
 	return err
 }
 func SendRequest(c *gin.Context, req *req.Request, method, url string) (*req.Response, error) {
 	switch method {
 	case "GET":
 		return req.Get(url)
 	case "POST":
 		return req.Post(url)
 	case "PUT":
 		return req.Put(url)
 	case "DELETE":
 		return req.Delete(url)
 	default:
 		// IP METHOD URL USERAGENT PROTO UNSUPPORTED-METHOD
 		errmsg := fmt.Sprintf("%s %s %s %s %s Unsupported method", c.ClientIP(), method, url, c.Request.Header.Get("User-Agent"), c.Request.Proto)
 		logWarning(errmsg)
 		return nil, fmt.Errorf(errmsg)
 	}
 }
 func HandleResponseSize(resp *req.Response, cfg *config.Config, c *gin.Context) error {
 	contentLength := resp.Header.Get("Content-Length")
 	sizelimit := cfg.Server.SizeLimit * 1024 * 1024
 	if contentLength != "" {
 		size, err := strconv.Atoi(contentLength)
 		if err == nil && size > sizelimit {
 			finalURL := resp.Request.URL.String()
 			c.Redirect(http.StatusMovedPermanently, finalURL)
 			logWarning("%s %s %s %s %s Final-URL: %s Size-Limit-Exceeded: %d", c.ClientIP(), c.Request.Method, c.Request.URL.String(), c.Request.Header.Get("User-Agent"), c.Request.Proto, finalURL, size)
 			return fmt.Errorf("Path: %s size limit exceeded: %d", finalURL, size)
 		}
 	}
 	return nil
 }
 func CopyResponseHeaders(resp *req.Response, c *gin.Context, cfg *config.Config) {
 	copyHeaders(resp, c)
 	removeHeaders(resp)
 	setCORSHeaders(c, cfg)
 	setDefaultHeaders(c)
 }
 // 移除指定响应头
 func removeHeaders(resp *req.Response) {
 	headersToRemove := map[string]struct{}{
 		"Content-Security-Policy":   {},
 		"Referrer-Policy":           {},
 		"Strict-Transport-Security": {},
 	}
 	for header := range headersToRemove {
 		resp.Header.Del(header)
 	}
 }
 // 复制响应头
 func copyHeaders(resp *req.Response, c *gin.Context) {
 	for key, values := range resp.Header {
 		for _, value := range values {
 			c.Header(key, value)
 		}
 	}
 }
 // CORS配置
 func setCORSHeaders(c *gin.Context, cfg *config.Config) {
 	if cfg.CORS.Enabled {
 		c.Header("Access-Control-Allow-Origin", "*")
 	} else {
 		c.Header("Access-Control-Allow-Origin", "")
 	}
 }
 // 默认响应
 func setDefaultHeaders(c *gin.Context) {
 	c.Header("Age", "10")
 	c.Header("Cache-Control", "max-age=300")
 }
 func HandleError(c *gin.Context, message string) {
 	c.String(http.StatusInternalServerError, fmt.Sprintf("server error %v", message))
 	logWarning(message)
 }
 func CheckURL(u string, c *gin.Context) []string {
 	for _, exp := range exps {
 		if matches := exp.FindStringSubmatch(u); matches != nil {
 			return matches[1:]
 		}
 	}
 	errMsg := fmt.Sprintf("%s %s %s %s %s Invalid URL", c.ClientIP(), c.Request.Method, u, c.Request.Header.Get("User-Agent"), c.Request.Proto)
 	logWarning(errMsg)
 	return nil
 }
--- a/proxy/reqheader.go
+++ b/proxy/reqheader.go
@@ -0,0 +1,37 @@
 package proxy
 import (
 	"net/http"
 	"github.com/cloudwego/hertz/pkg/app"
 )
 /*
 // 设置请求头
 func setRequestHeaders(c *app.RequestContext, req *http.Request) {
 	c.Request.Header.VisitAll(func(key, value []byte) {
 		req.Header.Set(string(key), string(value))
 	})
 }
 */
 func setRequestHeaders(c *app.RequestContext, req *http.Request) {
 	c.Request.Header.VisitAll(func(key, value []byte) {
 		headerKey := string(key)
 		headerValue := string(value)
 		if _, shouldRemove := reqHeadersToRemove[headerKey]; !shouldRemove {
 			req.Header.Set(headerKey, headerValue)
 		}
 	})
 }
 /*
 // removeWSHeader removes the "Upgrade" and "Connection" headers from the given
 // Request, which are added by the client when it wants to upgrade the
 // connection to a WebSocket connection.
 func removeWSHeader(req *http.Request) {
 	req.Header.Del("Upgrade")
 	req.Header.Del("Connection")
 }
 */
--- a/rate/rate.go
+++ b/rate/rate.go
@@ -10,6 +10,8 @@ import (
 // 日志输出
 var (
 	logw       = logger.Logw
 	logDump    = logger.LogDump
 	logDebug   = logger.LogDebug
 	logInfo    = logger.LogInfo
 	logWarning = logger.LogWarning
 	logError   = logger.LogError
Author	SHA1	Message	Date
WJQSERVER	c656aa41ca	Merge pull request #93 from WJQSERVER-STUDIO/dev 3.0.3	2025-04-19 21:26:39 +08:00
wjqserver	0b052f9c7f	add debug output	2025-04-19 21:23:31 +08:00
wjqserver	6fb7e1150e	25w29b	2025-04-19 21:14:09 +08:00
wjqserver	5e0f95dae3	3.0.3	2025-04-19 20:44:43 +08:00
wjqserver	c1c39a5a1f	remove unused bufferpool	2025-04-17 22:30:00 +08:00
wjqserver	dd2f5b5a12	25w29a	2025-04-17 22:20:06 +08:00
wjqserver	7e5b12dff8	Fix: Optimize header forwarding by excluding headers in a single pass	2025-04-16 15:50:04 +08:00
wjqserver	26a42b6510	add pprof for debug	2025-04-16 15:47:46 +08:00
wjqserver	254c9a8bad	25w29t-1	2025-04-15 15:05:36 +08:00
WJQSERVER	060453f070	Merge pull request #88 from WJQSERVER-STUDIO/dev 3.0.2	2025-04-15 13:26:46 +08:00
wjqserver	f110c96c1f	update readme	2025-04-15 13:22:51 +08:00
wjqserver	73aac79c1b	3.0.2	2025-04-15 13:14:53 +08:00
wjqserver	bed6c486dc	25w28b	2025-04-15 10:23:29 +08:00
wjqserver	ab77c5c7da	25w28a	2025-04-14 12:27:12 +08:00
wjqserver	bf21bd197a	25w28t-2	2025-04-11 07:29:03 +08:00
wjqserver	8af107c584	update for touka-httpc 0.4.0	2025-04-11 07:24:50 +08:00
wjqserver	d6d54b222f	dix auth checker	2025-04-10 23:07:48 +08:00
wjqserver	005a4543d4	update deps	2025-04-10 23:07:13 +08:00
wjqserver	a85eb38de5	update deps	2025-04-08 20:50:55 +08:00
里見灯花	152fb8aa71	Merge pull request #84 from WJQSERVER-STUDIO/dev 3.0.1	2025-04-08 20:49:27 +08:00
wjqserver	3e9e43cd44	3.0.1	2025-04-08 20:48:56 +08:00
wjqserver	8a50b311fc	25w27a	2025-04-07 18:51:22 +08:00
wjqserver	dcc50401c4	update deps	2025-04-07 18:34:00 +08:00
wjqserver	d62a1f9769	[docs] update config docs	2025-04-07 18:33:47 +08:00
wjqserver	c522eba7ae	update	2025-04-04 16:40:34 +08:00
wjqserver	3da54f0599	update changelog	2025-04-04 11:28:00 +08:00
wjqserver	886c99f53d	update	2025-04-03 18:23:16 +08:00
wjqserver	d3520a2133	update	2025-04-03 18:20:41 +08:00
wjqserver	1f0b43ec43	fix docker build issue	2025-04-03 18:20:28 +08:00
wjqserver	36646ebf7e	25w26a	2025-04-03 18:17:08 +08:00
wjqserver	d7ed4fc6ad	update changelog	2025-04-03 18:13:09 +08:00
wjqserver	7cbce12316	update reademe.md	2025-04-03 17:59:01 +08:00
wjqserver	ff412f94ec	add docs	2025-04-03 16:39:56 +08:00
wjqserver	b02aaeba8a	update for merge	2025-04-01 22:00:10 +08:00
wjqserver	395f641468	[break] change auth config & add auth key	2025-04-01 18:32:45 +08:00
wjqserver	978ece6fa0	remove reWriteEncodeHeader	2025-03-30 17:25:36 +08:00
wjqserver	1adc3a3192	update	2025-03-30 17:02:45 +08:00
wjqserver	a66452cf10	e3.0.7	2025-03-29 12:26:26 +08:00
wjqserver	d231fd839f	add no-cache for smart-git	2025-03-29 12:23:19 +08:00
wjqserver	4b37c6bb2b	depr -cfg flag & change to -c	2025-03-29 12:01:46 +08:00
wjqserver	153b544024	e3.0.6	2025-03-28 12:05:38 +08:00
wjqserver	635c22f9a7	fix status code	2025-03-28 12:05:19 +08:00
wjqserver	f342312b40	update dockerfile	2025-03-28 11:26:46 +08:00
wjqserver	acaf38b88d	e3.0.5	2025-03-28 11:06:18 +08:00
wjqserver	50cfd64db8	update readme.md	2025-03-28 10:37:07 +08:00
wjqserver	53e115242a	add default config	2025-03-28 05:58:51 +08:00
wjqserver	cef0338d36	e3.0.3	2025-03-27 12:00:59 +08:00
wjqserver	f8edb0e0bc	update&sync changelog	2025-03-27 11:48:02 +08:00
wjqserver	c11f368a9c	update&sync changelog	2025-03-27 11:46:08 +08:00
wjqserver	db38b2a402	update v3 workflow	2025-03-27 11:38:12 +08:00
wjqserver	accb52b952	e3.0.3rc2	2025-03-27 11:36:57 +08:00
wjqserver	70fb808acf	[port] update matcher	2025-03-27 11:25:08 +08:00
wjqserver	b684227191	[port] config add rewriteAPI	2025-03-27 11:19:42 +08:00
wjqserver	1498156f56	e3.0.3rc1	2025-03-25 23:38:51 +08:00
wjqserver	55158c0cb1	update	2025-03-25 23:35:40 +08:00
WJQSERVER	6c3280f850	3.0.2 (fix 3.0.1) 3.0.2 (fix 3.0.1)	2025-03-21 20:00:12 +08:00
wjqserver	866275aad3	update deps	2025-03-21 19:55:25 +08:00
wjqserver	f4cd7eecf1	3.0.2	2025-03-21 19:53:55 +08:00
wjqserver	5501cd3e3c	25w22a	2025-03-21 18:53:08 +08:00
WJQSERVER	f9f37262f0	v3.0.1 Next Step (Fix & Optimize) v3.0.1 Next Step Fix & Optimize	2025-03-21 02:14:00 +08:00
wjqserver	026039e0bc	25w21e	2025-03-21 02:03:29 +08:00
wjqserver	8739027772	3.0.1	2025-03-21 01:28:32 +08:00
wjqserver	cafc713a65	25w21c	2025-03-20 23:01:44 +08:00
wjqserver	8f2cc820aa	25w21b	2025-03-20 15:02:27 +08:00
wjqserver	139fc92abc	fix log output	2025-03-20 15:01:15 +08:00
wjqserver	e9d793c104	fix log output	2025-03-20 14:57:20 +08:00
wjqserver	c931017f03	25w21a	2025-03-20 14:47:02 +08:00
里見灯花	448e06d350	v3 ! ! ! Go to Next Gen ! ! ! v3 Next Gen v3 下一个起点	2025-03-19 18:10:04 +08:00
wjqserver	27cc30ab8b	Next Gen	2025-03-19 18:03:17 +08:00
wjqserver	a65e44ac02	update changelog	2025-03-19 17:33:43 +08:00
wjqserver	a0cfe826ea	25w20b	2025-03-19 17:28:01 +08:00
wjqserver	2e974ad7ae	remove unuse things	2025-03-18 22:37:39 +08:00
wjqserver	b7b9cd5db5	fix log print issues	2025-03-18 22:26:25 +08:00
wjqserver	bcb73c18de	add mino theme	2025-03-18 22:25:54 +08:00
wjqserver	ed839b828d	update .gitignore	2025-03-18 21:59:38 +08:00
wjqserver	801b8c6cda	remove pages	2025-03-18 21:56:13 +08:00
wjqserver	a92bbb7fb6	25w20a	2025-03-18 21:53:59 +08:00
WJQSERVER	3e40146281	Merge pull request #67 from WJQSERVER-STUDIO/dev 2.5.0	2025-03-17 14:01:33 +08:00
wjqserver	ac7e1e43b5	update changelog	2025-03-17 13:53:37 +08:00
wjqserver	f134d22540	2.5.0	2025-03-17 13:48:53 +08:00
wjqserver	79153c0f7d	update readme.md	2025-03-17 13:45:36 +08:00
wjqserver	4fd47812f7	25w19a	2025-03-16 21:03:28 +08:00
wjqserver	17c49d534b	update readme.md	2025-03-16 12:28:00 +08:00
WJQSERVER	284b38bab4	Merge pull request #66 from WJQSERVER-STUDIO/dev v2.4.2	2025-03-14 21:56:18 +08:00
wjqserver	d73dfe7db5	2.4.2	2025-03-14 21:48:25 +08:00
wjqserver	dc286e002c	25w18a	2025-03-14 21:40:21 +08:00
WJQSERVER	5c54ae788c	Merge pull request #65 from WJQSERVER-STUDIO/dev Rewrite path matcher (v2.4.1)	2025-03-13 22:48:27 +08:00
wjqserver	bfcb1c9901	2.4.1	2025-03-13 22:41:13 +08:00
wjqserver	9bfe8517cb	rewrite path matcher	2025-03-13 18:16:17 +08:00
WJQSERVER	50ba185aab	Merge pull request #63 from WJQSERVER-STUDIO/dev v2.4.0	2025-03-13 00:34:24 +08:00
wjqserver	6ee928b0c7	update readme.md	2025-03-12 23:36:50 +08:00
wjqserver	979f59545b	2.4.0	2025-03-12 23:33:17 +08:00
wjqserver	da89b3f45e	25w16d	2025-03-12 23:01:52 +08:00
wjqserver	498266e08e	25w16c	2025-03-11 18:07:17 +08:00
wjqserver	e2faa497ab	update frontend	2025-03-11 10:20:43 +08:00
wjqserver	8def955151	25w16b	2025-03-11 08:40:19 +08:00
wjqserver	a18660121a	25w16a	2025-03-10 18:53:12 +08:00
wjqserver	d26f6d1e1b	update deps	2025-03-09 12:23:37 +08:00
WJQSERVER	60a1f6073d	Merge pull request #54 from WJQSERVER-STUDIO/dev	2025-02-28 20:06:27 +08:00
wjqserver	2cc5409dd0	2.3.1	2025-02-28 19:57:25 +08:00
wjqserver	ad9cffe9e2	25w15a	2025-02-26 16:04:08 +08:00
里見灯花	9af5010b79	Merge pull request #52 from WJQSERVER-STUDIO/dev 2.3.0	2025-02-19 16:10:00 +08:00
wjqserver	19cd77afd2	update readme.md	2025-02-19 16:07:21 +08:00
wjqserver	91cd76e541	2.3.0	2025-02-19 13:42:11 +08:00
WJQSERVER	0faddce474	change License to WJQserver Studio License 2.0	2025-02-18 11:59:43 +08:00
WJQSERVER	f7ba0c28b4	remove docker frontend & change to internel	2025-02-18 10:38:36 +08:00
WJQSERVER	146dedea21	25w14a	2025-02-18 10:34:24 +08:00
WJQSERVER	8336896979	feat(pages): add page theme configuration and static files	2025-02-18 10:19:11 +08:00
WJQSERVER	785a74dfeb	25w14t-2	2025-02-16 19:48:53 +08:00
WJQSERVER	bd666e08d1	25w14t-1	2025-02-14 15:50:42 +08:00
WJQSERVER	459aa24f89	Merge pull request #49 from liangshengmoran/frontend-refactoring 前端页面大型变动	2025-02-14 09:31:30 +08:00
WJQSERVER	a1e8e3e373	add 404 HTTP Error Handling	2025-02-14 07:20:34 +08:00
WJQSERVER	40c9ca5f38	optimize blacklist	2025-02-14 07:19:17 +08:00
WJQSERVER	97ae0044e7	Merge pull request #50 from WJQSERVER-STUDIO/dev 2.2.0	2025-02-12 19:30:46 +08:00
WJQSERVER	55afe7676c	fix drak mode	2025-02-12 19:26:10 +08:00
里見灯花	b95582ae1a	fix wrong transport	2025-02-12 19:14:13 +08:00
WJQSERVER	9aaa3e64d3	2.2.0	2025-02-12 18:45:13 +08:00
WJQSERVER	9e0f222125	25w13b	2025-02-12 18:26:58 +08:00
清韵's	0d6c1d7e35	动态适配示例链接协议	2025-02-12 09:04:26 +08:00
清韵's	5c14aeb48d	Refactor the front-end page.	2025-02-11 12:06:43 +08:00
WJQSERVER	21d30dee53	update deploy bash	2025-02-10 23:25:16 +08:00
WJQSERVER	a061b8d369	fix deploy/config.toml	2025-02-10 19:10:58 +08:00
WJQSERVER	68346717a5	25w13a	2025-02-10 18:54:20 +08:00
WJQSERVER	2b7fbd2a0d	update outbound	2025-02-10 18:53:16 +08:00
三千	4c5d288f03	Support using proxy dial-up connection to GitHub. (#46 )	2025-02-10 00:45:37 +08:00
WJQSERVER	09163ed4df	2.1.0 (#47 ) 2.1.0 --- - RELEASE: v2.1.0正式版发布; - CHANGE: 加入`FreeBSD`与`Darwin`系统支持 - CHANGE: 更新安全政策, v1和24w版本序列生命周期正式结束 - ADD: 加入`timing`中间件记录响应时间 - ADD: 加入`loggin`中间件包装日志输出 - CHANGE: 更新logger版本至v1.3.0 - CHANGE: 改进日志相关 - ADD: 加入日志等级配置项	2025-02-09 23:13:57 +08:00
WJQSERVER	f5c32915b9	2.0.7 (#45 ) 2.0.7 --- - RELEASE: v2.0.7正式版发布; - CHANGE: 更新Go版本至1.23.6 - CHANGE: 更新Logger版本至v1.2.0	2025-02-05 19:17:36 +08:00
WJQSERVER	286fa0f311	2.0.6 (#42 ) 2.0.6 --- - RELEASE: v2.0.6正式版发布;祝各位新春快乐! - CHANGE: 优化前端的连接转换逻辑 - CHANGE: 优化代码内不必要的函数化, 1.4之后, 函数化疑似有点太多了 - 优化`HTTP Client`参数 - CHANGE: 为api路由组增加no-cache标头	2025-01-28 23:54:51 +08:00
WJQSERVER	5d08993cbc	2.0.5 (#40 ) - RELEASE: v2.0.5正式版发布; - CHANGE: 优化响应体分块复制实现 - ADD: 加入缓存池 - CHANGE: 改进缓存实现 - CHANGE: 部分杂项改进	2025-01-27 15:00:19 +08:00
WJQSERVER	6e787ced6e	2.0.4 (#39 ) - RELEASE: v2.0.4正式版发布; - CHANGE: 优化GitReq的`HTTP Client`参数, 使其更符合本项目使用场景 - CHANGE: 优化Matches - REMOVE: 移除Caddyfile残留 - REMOVE: 由于v2改进后稳定性增强, 故移除健康检测	2025-01-26 16:24:37 +08:00
WJQSERVER	460b7514a9	2.0.3 (#37 ) * Add support for reusing the Go net/http Client. * Enhance HTTP Client parameters. * 25w07a * update deps * Optimize HTTP Client parameters. * 25w07b * 2.0.3 * Update README.md --------- Co-authored-by: 里見灯花 <172008506+satomitouka@users.noreply.github.com>	2025-01-24 19:15:52 +08:00
WJQSERVER	c90140a898	2.0.2 (#36 ) * 25w06a * update * 25w06b * update * update changelog * 2.0.2 --------- Co-authored-by: 里見灯花 <172008506+satomitouka@users.noreply.github.com>	2025-01-21 22:49:25 +08:00
WJQSERVER	f7e4fe71d7	update	2025-01-21 14:38:22 +08:00
WJQSERVER	33973b786d	update config	2025-01-20 11:33:38 +08:00
WJQSERVER	36fe815e35	v2.0.1 (#34 )	2025-01-20 10:53:05 +08:00
WJQSERVER	c393191b93	v2 (#33 ) - CHANGE: 优化`proxy`核心模块, 使用Chuncked Buffer传输数据, 减少内存占用 - REMOVE: caddy - REMOVE: nocache - CHANGE: 优化前端页面	2025-01-19 22:00:10 +08:00
WJQSERVER	beb441f0b0	update go to 1.23.5 (#31 ) * update go to 1.23.5 * 1.8.3	2025-01-18 09:47:04 +08:00
WJQSERVER	c45adfb915	fix	2025-01-15 07:33:16 +08:00
WJQSERVER	102dc00b27	dev update	2025-01-15 07:22:25 +08:00
里見灯花	b0042397c9	fix	2025-01-15 07:00:13 +08:00
里見灯花	70b46c0fb2	1.8.2 (#30 ) - RELEASE: v1.8.2正式版发布; 这或许会是v1的最后一个版本 - FIX: 修复部分日志表述错误 - CHANGE: 关闭gin框架的fmt日志打印, 在高并发场景下提升一定性能(go 打印终端日志性能较差，可能造成性能瓶颈)	2025-01-15 06:40:23 +08:00
WJQSERVER	5258046faa	25w03a	2025-01-12 17:07:34 +08:00