Skip to content

issues Search Results · language:Edge language:Python language:PHP language:JavaScript linked:pr language:JavaScript

Filter by

4.8M results  (471 ms)

4.8M results

SecureBananaLabs/bug-bounty
fix(api): Missing input validation on user creation

Vulnerability: Missing Input Validation on User Creation The postUser endpoint in pps/api/src/controllers/userController.js accepts user payloads and passes them directly to the database layer without ...
  • Ajithkelangath
  • Opened 
    10 minutes ago
  • #3918

hilma-tech/actions
fix emoji load capish new error

  • RivkaYo
  • Opened 
    12 minutes ago
  • #169

majlis-erc/majlis-data
Remove works 84 to 87

  • mMoliere
  • Opened 
    14 minutes ago
  • #1940

SecureBananaLabs/bug-bounty
security(api): Fix unbounded file upload Memory Exhaustion (DoS)

Vulnerability: Unbounded File Upload Memory Exhaustion (DoS) The uploadFile endpoint in pps/api/src/routes/uploadRoutes.js uses multer.memoryStorage() without any limits on file size. This allows an attacker ...
  • Ajithkelangath
  • Opened 
    14 minutes ago
  • #3916

souliane/teatree
Loop reacts :merge: on the user's OWN review-request message (self-reaction)

Summary The merge-react scanner (#1797) adds a :merge: reaction to a review-request s Slack message once the requested MR merges. The reaction is meant as a colleague signal — this review request landed ...
  • souliane
  • Opened 
    14 minutes ago
  • #1832

bartfeenstra/betty
Move `betty.plugins.server` to `betty.servers`

BC break
DX
enhancement
python
  • bartfeenstra
  • Opened 
    15 minutes ago
  • #4281

SecureBananaLabs/bug-bounty
fix(api): CORS allowlist, PORT validation, and search limits

Three fixes: 1. CORS origin allowlist via CORS_ORIGIN env var, default localhost:3000 2. PORT validation rejecting invalid/zero/negative/out-of-range values 3. Search query length capped at 200 chars ...
  • Ajithkelangath
  • Opened 
    18 minutes ago
  • #3914

adefilippo83/redundanet
[Join Request] Node: 34292828

New Node Application Node Information | Field | Value | | --- | --- | | GPG Key ID | F3EEFCA34292828 | | Storage Contribution | 10GB | | Region | europe | | Device Type | raspberry-pi | | Public IP | ...
join-request
  • adefilippo83
  • 1
  • Opened 
    18 minutes ago
  • #43

NousResearch/hermes-agent
fix(slack): enforce gateway auth on approval buttons

fix(slack): enforce gateway auth on approval buttons Severity Assessment CVSS Assessment | Metric | v3.1 | v4.0 | | --- | --- | --- | | Score | 7.5 / 10.0 | 8.7 / 10.0 | | Severity | High | High | | ...
area/auth
comp/gateway
duplicate
P2
platform/slack
type/security
  • coygeek
  • 1
  • Opened 
    19 minutes ago
  • #38068

smartassert/worker
Remove parentheses around `new`

  • webignition
  • Opened 
    19 minutes ago
  • #1237
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! Restrict your search to the title by using the in:title qualifier.
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! Restrict your search to the title by using the in:title qualifier.