Skip to content

issues Search Results · language:Dune language:JavaScript language:JavaScript language:TypeScript language:CSS

Filter by

36.6M results  (678 ms)

36.6M results

1crushhaus-netizen/noobtopro
[P1-12] CSP keeps script-src 'unsafe-inline' — nonce middleware never implemented

Severity: P1 (XSS defense-in-depth) next.config.js:43 sets script-src self unsafe-inline … and there is no middleware.js, so the nonce-based script-src is the documented next step comment is an unimplemented ...
  • 1crushhaus-netizen
  • Opened 
    4 seconds ago
  • #114

eclipse-theia/theia
File dialog: editing the location path and pressing Enter does not navigate to a previously visited folder

Bug Description: In the browser application, the file dialog (e.g. Open… , Open Workspace from File… ) lets you switch the location bar to a text input and type a path. The first time you do this it navigates ...
bug
file dialog
filesystem
  • ndoschek
  • Opened 
    6 seconds ago
  • #17664

GruftNet/BOXMEOUT-STELLA
feat(backend): Implement Full Dispute Lifecycle API with Admin Review Flow and Email Notifications

Description The disputes table is fully defined in backend/src/db/schema.ts and backend/src/routes/disputes.routes.ts exists, but the route handlers and service logic are missing. Implement the full CRUD ...
difficulty: medium
  • GoSTEAN
  • Opened 
    8 seconds ago
  • #26

daun-gatal/chouse-ui
Adopt Architecture Decision Records (ADR) process for major changes

Summary Adopt Architecture Decision Records (ADRs) as a lightweight process for significant, multi-component changes, as proposed and agreed in discussion #271. The idea (from @RafPe): before dropping ...
documentation
enhancement
  • daun-gatal
  • Opened 
    10 seconds ago
  • #273

1crushhaus-netizen/noobtopro
[P1-11] Next.js bundles vulnerable postcss 8.4.31 (GHSA-qx2v-qp2m-jg93) — 5 moderate audit findings

Severity: P1 (dependency vuln) npm audit (verified live): 5 moderate, 0 high, 0 critical — all one root cause: postcss 8.4.31 ( 8.5.10, XSS via unescaped /style) bundled inside next@16.2.9, cascading ...
  • 1crushhaus-netizen
  • Opened 
    10 seconds ago
  • #113

Kauast/controle-os-next
Bugs pré-existentes: migration de enum quebrada + suíte de testes não roda sem env

Dois problemas pré-existentes descobertos durante o trabalho de robustez mobile/offline (não corrigidos no PR para não alterar checksums de migrations já aplicadas em produção)
  • Kauast
  • Opened 
    13 seconds ago
  • #7

factoriolab/factoriolab
Machine settings issues

- Alternating colors not working in empty space - Drag missing background color - Removing a machine preference seems to set it in the selector
  • dcbroad3
  • Opened 
    14 seconds ago
  • #1883

1crushhaus-netizen/noobtopro
[P1-10] Prompt-injection detector is trivially bypassable (the only runtime control gating an all-4 rubric)

Severity: P1 (grading manipulation) lib/abuseDetection.js:21-41 is ~12 hard-coded English regexes with no case/whitespace/leet folding (unlike lib/contentSafety.js). It s the only runtime countermeasure ...
  • 1crushhaus-netizen
  • Opened 
    17 seconds ago
  • #112

anct-cnum/suite-gestionnaire-numerique
Lieux d'intervention : Pouvoir modifier un lieu d'intervention

  • ketroadec
  • Opened 
    17 seconds ago
  • #1622

ntq2k3work/BossCare
Thiết kế lại toàn bộ UI dashboard

  • ntq2k3work
  • Opened 
    18 seconds ago
  • #4
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! Restrict your search to the title by using the in:title qualifier.
Issue origami icon

Learn how you can use GitHub Issues to plan and track your work.

Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub Issues
ProTip! Restrict your search to the title by using the in:title qualifier.