issues Search Results · language:Edge language:TypeScript language:PHP language:C# language:JavaScript
Filter by
12.9M results
The feature-design.yml workflow prompts Claude with the issue text and asks it to produce a design, but never instructs
it to investigate first. As a result:
- Claude does not read the existing relevant ...
bug
status: in progress
zhaoanliu
Summary
apps/api/src/routes/scan.ts builds the OCR request URL from process.env.ML_SERVICE_URL with no validation that the value
is a safe external endpoint.
Affected File
apps/api/src/routes/scan.ts ...
gssoc:approved
anshul23102
Incident
Fresh scheduler health capture detected a P1 tactical runtime alert for owned-structure damage in shardX/E29N57:
multiple rampart hits decreased by ~6,300 ticks while rooms remain alive and hostiles ...
kind:incident
priority:p1
roadmap:combat
roadmap
runtime-alert
lanyusea
Summary
After OCR extraction in apps/api/src/routes/scan.ts, words from the scanned image are inserted directly into a Supabase
ILIKE filter. Characters % and _ in scanned text act as wildcards and cause ...
gssoc:approved
Problem
We need to determine the optimal routing strategy for the Thorne business infrastructure audit flow and connect it with
Stripe Checkout for paid diagnostics, routing customers to a premium success ...
enhancement
stripe
ui/ux
pelayooj7260
Summary
apps/api/src/controllers/admin.controller.ts checks for an existing district alert and then inserts in separate queries
without a transaction. Concurrent admin actions on the same district can ...
gssoc:approved
Feature Description
Agregar infraestructura de testing para los 3 frontends usando Vitest + React Testing Library.
Problem Statement
Actualmente solo la API tiene tests (Jest, 63 tests). Los frontends ...
enhancement
JulioN02
Summary
POST /reports/ validates image entries only as valid URL format, not destination. An attacker can supply cloud metadata
endpoints or internal service URLs that may be fetched server-side.
Affected ...
gssoc:approved
Priority: Low Source: Repo audit 2026-05-30
src/molecules/CopyButton/CopyButton.stories.tsx:57-58 uses a real-looking OpenAI/Anthropic key prefix (sk-proj-…).
Fix
Replace with an obviously-fake demo_key_… ...
documentation
ArianZargaran
Priority: Low — dev-only Ladle story Source: Repo audit 2026-05-30
src/stories/Decisions.stories.tsx:68,153 — dangerouslySetInnerHTML of marked.parse(...) with no sanitizer.
Dev-only Ladle story over ...
bug
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip! Restrict your search to the title by using the in:title qualifier.