Torsten Schulz (local)
9c54b6907e
Apply non-major audit updates and harden path handling for Semgrep.
...
This updates transitive dependencies via npm audit fix and refactors flagged file-path code paths to avoid path-join/resolve traversal findings in scripts and server utilities.
Made-with: Cursor
2026-04-15 21:00:28 +02:00
Torsten Schulz (local)
edfab28fd3
Add security comments to path handling in various scripts to clarify internal constant usage and mitigate path traversal risks. Update logging in registration and verification processes for improved clarity.
Code Analysis (JS/Vue) / analyze (push) Failing after 2m48s
2026-04-15 20:52:38 +02:00
Torsten Schulz (local)
0d533710cd
Refactor file handling to prioritize internal data directories for backups and uploads; enhance error handling and logging for metadata and CSV operations.
Code Analysis (JS/Vue) / analyze (push) Failing after 47s
2026-02-11 11:42:24 +01:00
Torsten Schulz (local)
3e956ac46b
Update path handling comments across multiple files to enhance security against path traversal vulnerabilities, ensuring consistent use of nosemgrep annotations for better code analysis.
2025-12-20 14:49:57 +01:00
Torsten Schulz (local)
fbdb6f6b6f
Enhance security by adding DOMPurify comments in Vue components and updating path handling comments in server utilities to mitigate path traversal risks.
2025-12-20 11:15:31 +01:00
Torsten Schulz (local)
8fcb71b946
Enhance content sanitization across various components by integrating 'dompurify' for improved security and update package dependencies in package.json and package-lock.json.
2025-12-20 10:49:20 +01:00
Torsten Schulz (local)
4b2b587541
membership: refactor form filling, add smoke tests and debug-guard fallback; fix mappings
2025-10-23 14:21:05 +02:00
