Mike/Kordant
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
a10ef7eb701998eb77a52fb3e761a42e552ca321
Kordant/packages
History
Senior Engineer a10ef7eb70 Harden CORS origin validation in production (FRE-4749) 
- Add ALLOWED_ORIGINS env var with comma-separated origin list
- Validate origins at startup in production: reject wildcards, empty values,
  and malformed URLs (non-http/https protocol)
- Update both server entry points (server.ts, index.ts) to use getCorsOrigins()
- Development mode retains existing localhost fallback behavior

Co-Authored-By: Paperclip <noreply@paperclip.ing>
2026-05-09 11:48:33 -04:00
..
api
Harden CORS origin validation in production (FRE-4749)
2026-05-09 11:48:33 -04:00
core
Implement WebRTC real-time call analysis with security hardening (FRE-4497)
2026-04-30 16:49:53 -04:00
correlation
FRE-4474 Phase 5: Verify and resolve security review findings for SpamShield and Cross-Service Correlation
2026-05-02 18:36:29 -04:00
db
FRE-4474 Phase 5: Verify and resolve security review findings for SpamShield and Cross-Service Correlation
2026-05-02 18:36:29 -04:00
integration-tests
Add integration tests README documentation (FRE-4522)
2026-05-02 13:23:12 -04:00
jobs
FRE-4474 Phase 5: Verify and resolve security review findings for SpamShield and Cross-Service Correlation
2026-05-02 18:36:29 -04:00
mobile
FRE-4533: Merge apps/{api,web,mobile} and shared-db into ShieldAI repo
2026-05-02 10:19:11 -04:00
shared-analytics
use crypto package instead
2026-05-03 22:44:48 -04:00
shared-auth
FRE-4529: Transfer ShieldAI code from FrenoCorp repo
2026-05-02 10:13:13 -04:00
shared-billing
FRE-4529: Transfer ShieldAI code from FrenoCorp repo
2026-05-02 10:13:13 -04:00
shared-db
FRE-4533: Merge apps/{api,web,mobile} and shared-db into ShieldAI repo
2026-05-02 10:16:18 -04:00
shared-notifications
FRE-4474 Phase 5: Verify and resolve security review findings for SpamShield and Cross-Service Correlation
2026-05-02 18:36:29 -04:00
shared-ui
FRE-4529: Transfer ShieldAI code from FrenoCorp repo
2026-05-02 10:13:13 -04:00
shared-utils
FRE-4474 Phase 5: Verify and resolve security review findings for SpamShield and Cross-Service Correlation
2026-05-02 18:36:29 -04:00
types
Add request ID validation and CSPRNG fallback (FRE-4516)
2026-05-02 09:43:13 -04:00
web
FRE-4533: Merge apps/{api,web,mobile} and shared-db into ShieldAI repo
2026-05-02 10:19:11 -04:00