Per-IP rate limiting added to the frontend proxy (
e0a7b0c)
The frontend route now checks a Cloudflare rate-limit binding before proxying to Cloud Run, using CF-Connecting-IP as the key and returning a 429 with Retry-After: 60 when exceeded. This targets scraper-driven cache-miss load while falling open in local dev or direct Cloud Run access, so normal users and other services are unaffected.
Other misc changes
- Cloudflare provider lockfile updated
- Random provider lockfile updated