Torsten Schulz (local)
01cf0e58cb
Add support for multiple encryption keys in data handling
...
Code Analysis (JS/Vue) / analyze (push) Failing after 1m1s
This commit introduces a mechanism to handle multiple possible encryption keys for data decryption across various modules, including auth.js, members.js, newsletter.js, and encryption.js. It adds functions to retrieve potential old keys for migration purposes and updates the decryption logic to attempt decryption with these keys. Additionally, it includes warnings for users when old keys are used and provides guidance for re-encrypting data. This enhancement improves data migration capabilities and ensures backward compatibility with previously encrypted data.
2026-01-09 09:05:05 +01:00
Torsten Schulz (local)
6fda6ebad0
Enhance security and error handling in various components by refining error catch blocks to ignore specific errors, improving code clarity and consistency across the application.
Code Analysis (JS/Vue) / analyze (push) Failing after 4m10s
2025-12-20 15:05:49 +01:00
Torsten Schulz (local)
c9037fec45
Update path handling comments across multiple files to enhance security against path traversal vulnerabilities, ensuring consistent use of nosemgrep annotations for better code analysis.
Code Analysis (JS/Vue) / analyze (push) Successful in 3m19s
2025-12-20 14:49:57 +01:00
Torsten Schulz (local)
e128e1a77c
Enhance security by adding role-checking functions in ESLint configuration and updating Vue components to improve content sanitization comments, while refining error handling in API endpoints for better clarity.
Code Analysis (JS/Vue) / analyze (push) Failing after 3m40s
2025-12-20 14:19:55 +01:00
Torsten Schulz (local)
19024cd87e
Enhance security by adding DOMPurify comments in Vue components and updating path handling comments in server utilities to mitigate path traversal risks.
Code Analysis (JS/Vue) / analyze (push) Failing after 46s
2025-12-20 11:15:31 +01:00
Torsten Schulz (local)
968c749fe3
Enhance security by adding DOMPurify sanitization comments in newsletter and Vereins components, and update path handling comments in server utilities to address potential path traversal vulnerabilities.
Code Analysis (JS/Vue) / analyze (push) Failing after 3m28s
2025-12-20 10:54:49 +01:00
Torsten Schulz (local)
316cce1b26
Enhance content sanitization across various components by integrating 'dompurify' for improved security and update package dependencies in package.json and package-lock.json.
Code Analysis (JS/Vue) / analyze (push) Failing after 4m56s
2025-12-20 10:49:20 +01:00
Torsten Schulz (local)
680629e1f8
Add dotenv package for environment variable management and refactor SMTP credential handling in email services. Enhance error handling for missing SMTP credentials across various API endpoints to improve reliability and maintainability.
2025-12-18 12:19:23 +01:00
Torsten Schulz (local)
623a63c29f
Implement member management enhancements; add bulk import functionality and duplicate checking based on geburtsdatum. Update API to support new fields and improve error handling for member data submissions. Refactor member-related components for better user experience and data validation.
2025-11-05 14:34:31 +01:00
Torsten Schulz (local)
dd4691b462
Refactor authentication and data handling in API; implement encryption for user and member data storage. Update relevant components to utilize new encryption methods, ensuring secure data management across the application. Enhance error handling and streamline data writing processes for improved reliability.
2025-11-05 13:49:47 +01:00
Torsten Schulz (local)
344627f91f
Fix duplicated readUsers import by removing from members.js
2025-10-22 11:53:47 +02:00
Torsten Schulz (local)
f0b628d746
Replace timestamp-based IDs with UUIDs for guaranteed uniqueness and race condition safety
2025-10-21 15:23:48 +02:00
Torsten Schulz (local)
b024bfe884
Add smart member list with manual+login merge and duplicate detection
2025-10-21 14:35:21 +02:00
