Kordant

Author	SHA1	Message	Date
Founding Engineer	7fb8b83810	Fix open redirect in Stripe customer portal returnUrl (FRE-5399) - Add isValidReturnUrl validation at route level for fast rejection - Add defense-in-depth validation in BillingService.createCustomerPortalSession - Fix isValidReturnUrl bug: origin comparison was never reached due to incorrect protocol check, allowing substring attacks (e.g., app.shieldai.com.evil.com) - Export isValidReturnUrl from shared-billing package index - Add unit tests for all attack vectors Files changed: - packages/api/src/routes/subscription.routes.ts - packages/shared-billing/src/services/billing.service.ts - packages/shared-billing/src/config/billing.config.ts - packages/shared-billing/src/index.ts - packages/shared-billing/src/__tests__/billing.config.test.ts	2026-05-17 05:39:13 -04:00
Michael Freno	3663e5b80a	FRE-4517, FRE-4499: Complete SpamShield implementation and billing updates - SpamFeedback table migration with timestamp index - Real-time interception engine completion - Billing service enhancements - Classifier and rule engine updates Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-05-01 19:53:19 -04:00
Michael Freno	19c5a951fe	billing	2026-04-30 11:07:38 -04:00
Michael Freno	9fb5379b7a	Add tier-based scan scheduler and webhook triggers (FRE-4498) - ScanScheduler: tier-based scheduling (BASIC=24h, PLUS=6h, PREMIUM=1h) - WebhookHandler: HMAC-verified webhook ingestion with SCAN_TRIGGER support - API routes: /scheduler and /webhooks endpoints under /api/v1/darkwatch - Jobs: scheduled scan checker + webhook retry processor via BullMQ - Schema: ScanSchedule, WebhookEvent models; ScanJob.scheduledBy field - Types: ScheduleStatus, WebhookEventType, WebhookTriggerInput - Tests: scheduler lifecycle + webhook signature/processing tests Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-04-30 10:57:56 -04:00

4 Commits