pullrequests Search Results · language:Dune language:Python language:Java language:Python language:HTML language:TypeScript
Filter by
27.8M results
Critical privilege escalation (audit finding #0)
Any authenticated user could promote themselves to platform admin. The user_profiles Users can update own profile RLS
policy was USING-only (no WITH CHECK) ...
MichaelMakhoul
@
P1 #33: 销售订单 ≥ 研发预估价 跨流约束 (G流 SP10 → E流销售)
转录需求: 销售订单价不应低于研发预估价 (SP10 报价). 审计确认当前无此跨流校验 → 销售可低于研发建议售价下单.
决策对齐 #693 (毛利红线防呆)
低于预估价 = 警告放行 (200 + priceWarnings 字段), 不 409 硬拦 (防呆 Rule 1: 提交前看到边界, 不提交后被拒). ...
Stevenjxie
Bumps the all-dependencies group with 11 updates in the / directory:
| Package | From | To |
| --- | --- | --- |
| org.openapitools:openapi-generator-core | 7.22.0 | 7.23.0 |
| io.swagger.parser.v3:swagger-parser ...
dependencies
java
dependabot[bot]
Interactive demos for modeldeploy, docsearch, ordermatching.
Each demo is one self-contained file under src/demos with a co-located stylesheet, auto-discovered by the registry. No
shared files were touched. ...
SAY-5
Backport of https://github.com/inventree/InvenTree/pull/12151
bug
plugin
SchrodingersGat
Summary
- replace gt-next s ClientProviderWrapper with gt-react/context GTProvider
- build locale-scoped dictionary and translation snapshots from I18NConfiguration
- add provider coverage for snapshot ...
ErnestM1234
Bumps the pip group with 1 update in the / directory: torch.
Updates torch from 2.8.0 to 2.12.0 details summary Release notes /summary p em Sourced from a href=
https://github.com/pytorch/pytorch/releases ...
dependencies
python
Bug
Deploy pertama via docker-compose.prod.yml gagal: service migrate (alembic upgrade head) exit 1 di database fresh.
Akar masalah: migrasi 0001_baseline menjalankan Base.metadata.create_all — yang ...
antonset1104
Closes #1265
Problem
Transaction.reimbursement is documented as a percentage in [0, 100], validated at read and write boundaries — but that
contract was only half-enforced. Two boundaries let an out-of-range ...
natb1
Rinitial