issues Search Results · language:Dune language:TypeScript language:HTML language:JavaScript language:Java linked:pr
Filter by
7.1M results
Description
The admin panel (/admin) is currently unprotected. Add a simple middleware that checks an ADMIN_API_KEY environment
variable on all /api/admin/* routes. Return 401 if missing/wrong.
On the ...
quick-win
security
Zweer
公開顯示名稱
勝勝
公開簡介
No response
進階:公開頭像圖片 URL
No response
公開 email
No response
GitHub
No response
個人網站
No response
Blog
No response
Instagram
No response
Telegram
No response
LinkedIn
No ...
profile-request
gnehs
Parent Algora bounty: #743
This issue is limited only to the creator of this issue. This means that only the issue author can attempt to solve this
issue. If you would like to work on it, please create ...
MAWXHUB
概要
GET /surveys/:survey_id にステータスフィルターがなく、closed 状態のアンケートの全質問を任意の認証済みユーザーが取得できる。
発生場所
- api/src/interface/survey/surveys/[survey_id]/route.ts lines 20-57
問題の詳細
GET /surveys 一覧は where(eq(surveys.status, ...
bug
shigurenimo
概要
GET /review/cycles に canAdministerCycle チェックがなく、member ロールを含む全認証済みユーザーが draft・closed 状態のレビューサイクルの一覧を取得できる。
発生場所
- api/src/interface/review/cycles/route.ts lines 7-19: ロールゲートなし
問題の詳細
他の全サイクル管理操作(作成・更新・削除・開放・閉鎖・結果閲覧)は ...
bug
In module Perspectives.CollectAffectedContexts we have function usersWithPerspectiveOnRoleBinding. I have reason to
believe that it is not correctly implemented in the sense that it returns an empty array ...
bug
Design
question
joopringelberg
Summary
When a chart s currency control leaves the Prefix or suffix field empty, Superset always places the currency symbol as a
suffix, regardless of the currency or the deployment locale.
In CurrencyFormatter.format() ...
i18n:general
Darth-ATA
Parent Algora bounty: #743
This issue is limited only to the creator of this issue. This means that only the issue author can attempt to solve this
issue. If you would like to work on it, please create ...
wind108369
EaseMotion has ease-hidden (display: none) but lacks visibility utilities. ease-invisible (visibility: hidden) preserves
layout space while hiding, which is essential for animated transitions, maintaining ...
accepted
animation
bug
gssoc:approved
GSSoC-26
level:intermediate
type:feature
zen-ash-dev
Flesh out the SPV treatment (Ch 17/19), as flagged during external review:
- Section 17.5.1: quantify Theorem 17.5 s cost: equivalent to mining k blocks — a worked example of the economics of
deceiving ...
melvincarvalho
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.