issues Search Results · language:Dune language:Python language:JavaScript linked:pr language:JavaScript language:CSS
Filter by
223k results
Description
In backend/src/lib/utils.js, the generateTokenAndSetCookie function respects the FORCE_SECURE_COOKIES environment
variable:
secure: process.env.NODE_ENV !== development || process.env.FORCE_SECURE_COOKIES ...
sanrishi
🔴 Critical: Multiple Hardcoded API Keys and Weak Secrets Exposed Across 12+ Projects
Issues Found
1. 🔴 TMDB API Key Hardcoded
File: public/movie-selector/app.js:3
const MOVIE_DISCOVER_API = ...api_key=8f2467d3e6205844a4b1f4faaa387eb3... ...
Follow-up to #3 (merged in #7). JSON is a poor fit for a hand-edited config — no comments, fussy punctuation — and the
dedicated subdirectory is unnecessary.
Change
- Config format: JSON → YAML, parsed ...
mairas
Description
The validator s GitHub identity-pinning guarantee is documented as permanent and per-hotkey:
This identity is permanently locked to the hotkey — the same hotkey cannot switch to a different ...
bug
galuis116
Sentry: https://thunderbird.sentry.io/issues/7461177063/?environment=prod project=4508965616680960 query=is%3Aunresolved
referrer=issue-stream
This can be triggered easily with the admin panel, and it ...
MelissaAutumn
Parent bounty: #743
Bug
The /jobs/[id] route renders the requested route id as placeholder text instead of looking up the selected job from
apps/web/lib/mock.ts. The job list links to concrete ids such ...
henryle1
The POST /api/complaints route has zero rate limiting. Every other mutating API route in this codebase — /api/register,
/api/notifications, /api/attendance/record, /api/auth/session, /api/auth/csrf — applies ...
bug
siddharth277
Bug Description
In specific containerized environments, delegate_task calls fail with a HTTP 500 proxy error: Could not establish
connection. This is caused by the Gateway s security middleware rejecting ...
herr-schreiber
Tell us about the bug A stateful Quix Streams application can get stuck when its committed source-topic offset is no
longer retained by Kafka. librdkafka resets the fetch position according to auto.offset.reset, ...
peter-quix
Summary
reconstruct_table(..., stream=True) uses a server-side named cursor (DECLARE CURSOR), which PostgreSQL only permits
inside a transaction block. On an autocommit connection it raises psycopg.errors.NoActiveSqlTransaction ...
tauvin
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.