release: v1.0.2

- 124 sources (+1 xposedornot, bgpview replaced with ripestat)
- Fix gravatar MD5 transform, fofa base64 query encoding
- Fix misp_search URL resolution, threatconnect HMAC placeholder
- Fix spycloud, duckduckgo, mailboxlayer/numverify/ipstack/ipinfodb endpoints
- Fix DeHashEngine v1→v2, DorkEngine engine label, backup_endpoints consumed
- Fix Retry-After HTTP-date parsing, Hashmob API schema, FIPS hashlib crash
- Fix DB.close() event loop leak, _random_headers CH-UA override
- Add query_transform mechanism (md5_lower, fofa_domain)
- Lower scores: spyonweb, pipl_search, twitter_v2, hudsonrock rate_limit
- Clean all internal tracking comments, fix Italian docstring

sources/xposedornot.json

@@ -0,0 +1,36 @@
+{
+    "name": "xposedornot",
+    "category": "breach_data",
+    "endpoint": "https://api.xposedornot.com/v1/breach-analytics?email={target}",
+    "method": "GET",
+    "requires_auth": false,
+    "selectors": {
+        "breaches": "$.ExposedBreaches.breaches_details"
+    },
+    "rate_limit": 2.0,
+    "headers": {
+        "User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36"
+    },
+    "api_key_slots": [],
+    "input_type": "email",
+    "output_type": [
+        "email",
+        "domain"
+    ],
+    "normalization_map": {
+        "breach": "breach_name",
+        "domain": "domain",
+        "xposed_date": "breach_date",
+        "xposed_data": "data_types",
+        "password_risk": "password_risk"
+    },
+    "tags": [
+        "passive",
+        "stealth"
+    ],
+    "health_check_url": "https://api.xposedornot.com",
+    "expected_status": 200,
+    "reliability_score": 4,
+    "backup_endpoints": [],
+    "confidence": 0.75
+}