issues Search Results · language:Dune language:JavaScript language:JavaScript language:JavaScript language:Python linked:pr
Filter by
4.5M results
Bug: Notification creation allows callers to override server-owned id and read fields
File: apps/api/src/services/notificationService.js
Description: createNotification spreads the raw caller payload ...
XananasX7
Bug: OAuth callback route accepts unsupported provider strings
File: apps/api/src/controllers/authController.js
Description: GET /api/auth/oauth/:provider/callback reflects back the :provider path segment ...
Bug: Token refresh endpoint issues new tokens without a valid refresh token
File: apps/api/src/controllers/authController.js and apps/api/src/services/authService.js
Description: POST /api/auth/refresh ...
Bug: User listing endpoint requires no authentication
File: apps/api/src/routes/userRoutes.js
Description: GET /api/users calls getUsers with no authMiddleware applied. Any unauthenticated caller can ...
Bug: Payment creation endpoint requires no authentication
File: apps/api/src/routes/paymentRoutes.js
Description: POST /api/payments calls createPayment with no authMiddleware applied. Any unauthenticated ...
Bug: Registration allows admin role self-assignment
File: apps/api/src/validators/auth.js
Description: The registerSchema currently permits any caller to pass role: admin in the registration body, because ...
Goal / Problem
Observed behavior scripts/analysis/build_manifest_lineage_graph.py documents --artifact-candidates as optional, but the
attached review reports that graph is assigned only inside the if ...
bug
evidence:proposal
priority: high
resource:local
state:ready
type:workflow
ll7
Summary
Implement ONE-006 from ops/EXECUTION_BACKLOG.md: add a documented architecture policy that keeps future 1/1 product
surfaces satellite/read-adapter/library/release-artifact first while StreamCore ...
punk6529
BankBuddy is a uv-managed Python project, and Base now supports explicit uv project management through python.manager:
uv plus command-level runner: uv.
Update BankBuddy s Base manifest so the repo can ...
enhancement
codeforester
Thesis
The current hazard-to-formation path is technically strong but under-presented: Qwen-style or live Qwen bbox evidence
becomes an integer hazard cell, local agents form an X/surround/line/diamond, ...
go-gate
research
omarespejel
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.