pullrequests Search Results · language:Edge language:TypeScript language:JavaScript language:JavaScript is:merged language:Python
Filter by
139M results
Summary
Declares verify_jwt = false in config.toml for admin-alert and deposit-watcher-tron.
Why
Both are invoked server-to-server without a user JWT:
- admin-alert — fired by a DB pg_net trigger ...
creator744-ui
cluis11
See Commits and Changes for more details.
Created by img src= https://prod.download/pull-18h-svg valign= bottom / pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please ...
⤵️ pull
pull[bot]
See Commits and Changes for more details.
Created by img src= https://prod.download/pull-18h-svg valign= bottom / pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please ...
⤵️ pull
Arturhk05
Summary
Hardens the .eml/attachment write paths against traversal (Aikido SAST, High, #203).
- assertInside(baseDir, targetPath) in MessageExportService: resolves the final path and throws if it escapes ...
p1
security
cbitterfield
elasticfusion
See Commits and Changes for more details.
Created by img src= https://prod.download/pull-18h-svg valign= bottom / pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please ...
⤵️ pull
See Commits and Changes for more details.
Created by img src= https://prod.download/pull-18h-svg valign= bottom / pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please ...
⤵️ pull
See Commits and Changes for more details.
Created by img src= https://prod.download/pull-18h-svg valign= bottom / pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please ...
⤵️ pull