// VulnBank - Intentionally Vulnerable Demo Application
// DO NOT USE IN PRODUCTION - Contains security vulnerabilities for testing
package main

import (
	"fmt"
	"log"
	"net/http"

	"github.com/gorilla/mux"
)

func main() {
	r := mux.NewRouter()

	// API routes with vulnerabilities
	r.HandleFunc("/api/user", GetUserHandler).Methods("GET")
	r.HandleFunc("/api/verify", VerifyTokenHandler).Methods("POST")
	r.HandleFunc("/api/data", GetExternalDataHandler).Methods("GET")
	r.HandleFunc("/api/hash", HashDataHandler).Methods("POST")

	fmt.Println("VulnBank - Demo vulnerable application")
	fmt.Println("Run `aphoria scan` to detect vulnerabilities")

	log.Fatal(http.ListenAndServe(":8080", r))
}