issues Search Results · language:Dune language:HTML language:JavaScript language:HTML language:HTML language:JavaScript
Filter by
25.4M results
Parent bounty: #743
Bug
createNotification(payload) creates notifications as { id: generated, read: false, ...payload }, so caller-supplied id
and read fields can override server-owned notification metadata. ...
wangedmund77-cmyk
Parent bounty: #743
Bug
sendMessage(payload) creates messages as { id: generated, ...payload, sentAt: generated }, so a caller-supplied id can
override the server-generated msg_* identifier.
Expected ...
CVE-2026-53550 - Medium Severity Vulnerability
details summary img src= https://whitesource-resources.whitesourcesoftware.com/vulnerability_details.png width=19
height=20 Vulnerable Libraries - b js-yaml-3.14.1.tgz ...
Mend: dependency security vulnerability
mend-bolt-for-github[bot]
Parent bounty: #743
Bug
POST /api/payments forwards the request body directly into createPaymentIntent() without validating amount. The API
currently accepts zero, negative, missing, or non-numeric values ...
CVE-2026-49356 - Low Severity Vulnerability
details summary img src= https://whitesource-resources.whitesourcesoftware.com/vulnerability_details.png width=19
height=20 Vulnerable Library - b core-7.14.3.tgz ...
Mend: dependency security vulnerability
Parent bounty: #743
Bug
registerUser() currently generates the returned id and the access-token sub with separate Date.now() calls. If the clock
ticks between those calls, the registration response can ...
Parent bounty: #743
Bug
POST /api/auth/register accepts role: admin because the public registration schema includes admin in the allowed role
enum. That lets an unauthenticated caller self-register ...
CVE-2026-49356 - Low Severity Vulnerability
details summary img src= https://whitesource-resources.whitesourcesoftware.com/vulnerability_details.png width=19
height=20 Vulnerable Library - b core-7.9.0.tgz ...
Mend: dependency security vulnerability
CVE-2026-49356 - Low Severity Vulnerability
details summary img src= https://whitesource-resources.whitesourcesoftware.com/vulnerability_details.png width=19
height=20 Vulnerable Library - b core-7.15.8.tgz ...
Mend: dependency security vulnerability
According to the release notes:
crypto-policies now supports enabling post-quantum cryptography in LEGACY, DEFAULT, FUTURE, and FIPS cryptographic
policies. Apply the PQ sub-policy to enable post-quantum ...
EvilJordan
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.