nyk
|
5e94d79e66
|
Merge pull request #26 from builderz-labs/fix/p2-quality
fix: P2 quality — strict mode, tests, pagination, N+1, CSP
|
2026-02-27 14:03:34 +07:00 |
Nyk
|
bf0df9b6d0
|
fix: strict mode, test stubs, pagination counts, N+1 queries, CSP hardening
- Enable TypeScript strict mode and fix all resulting type errors
- Add auth test stubs for requireRole and safeCompare
- Add proper COUNT(*) pagination totals to agents, tasks, notifications,
messages, conversations, and standup history endpoints
- Fix N+1 queries by hoisting db.prepare() outside loops in agents,
activities, notifications, conversations, standup, gateway health,
and notification delivery routes
- Remove unsafe-eval from CSP script-src directive
- Remove deprecated X-XSS-Protection header
|
2026-02-27 14:02:52 +07:00 |
|
nyk
|
704c661bad
|
Merge pull request #25 from builderz-labs/fix/p1-security-high
fix: P1 security high — legacy auth, rate limit, SSRF, SQL injection
|
2026-02-27 14:02:12 +07:00 |
|
Nyk
|
3b600d817e
|
fix: remove legacy auth, add login rate limiting, block SSRF metadata, parameterize migration SQL
|
2026-02-27 13:58:52 +07:00 |
|
nyk
|
98f1990b57
|
Merge pull request #21 from builderz-labs/fix/p0-security-critical
fix: P0 security critical — auth guards, timing-safe compare, XSS
|
2026-02-27 13:56:50 +07:00 |
|
Nyk
|
1ee506b4cf
|
fix: add auth checks on all GET endpoints, timing-safe comparisons, and XSS sanitization
|
2026-02-27 13:04:24 +07:00 |
|
nyk
|
84ba833454
|
docs: fix roadmap issue number references
|
2026-02-27 12:29:47 +07:00 |
|
nyk
|
de69a87fdf
|
docs: add project status, known limitations, and roadmap to README
|
2026-02-27 12:21:31 +07:00 |
|
Nyk
|
99815d20b3
|
feat: initial open-source release
OpenClaw Mission Control — agent orchestration dashboard.
Built with Next.js 16, React 19, TypeScript, SQLite, and Tailwind CSS.
MIT License.
|
2026-02-23 02:00:44 +07:00 |