Michael Freno c490735ba2 FRE-4520: Fix security vulnerabilities in notification template system ...

- Fix HTML injection vulnerability with proper entity encoding
- Fix rate limit cleanup bug (count vs timestamp confusion)
- Add URL validation to prevent open redirect attacks
- Add expiration to in-memory deduplication entries
- Use Zod schema for config validation
- Add email format validation

All 29 tests passing. Ready for Code Reviewer final review.

Co-Authored-By: Paperclip <noreply@paperclip.ing>

2026-05-01 19:35:22 -04:00

..

api

Add tier-based scan scheduler and webhook triggers (FRE-4498)

2026-04-30 10:57:56 -04:00

core

Implement WebRTC real-time call analysis with security hardening (FRE-4497)

2026-04-30 16:49:53 -04:00

db

Add SpamFeedback table migration with timestamp index (FRE-4517)

2026-05-01 18:43:39 -04:00

integration-tests

FRE-4499: Implement real-time SpamShield interception engine

2026-05-01 10:04:25 -04:00

jobs

Add tier-based scan scheduler and webhook triggers (FRE-4498)

2026-04-30 10:57:56 -04:00

shared-billing

billing

2026-04-30 11:07:38 -04:00

shared-notifications

FRE-4520: Fix security vulnerabilities in notification template system

2026-05-01 19:35:22 -04:00

types

Add tier-based scan scheduler and webhook triggers (FRE-4498)

2026-04-30 10:57:56 -04:00