Mike/ShieldAI
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c490735ba26c652a7b1e02179dd69ccaf119fb7f
ShieldAI/packages/shared-notifications
History
Michael Freno c490735ba2 FRE-4520: Fix security vulnerabilities in notification template system 
- Fix HTML injection vulnerability with proper entity encoding
- Fix rate limit cleanup bug (count vs timestamp confusion)
- Add URL validation to prevent open redirect attacks
- Add expiration to in-memory deduplication entries
- Use Zod schema for config validation
- Add email format validation

All 29 tests passing. Ready for Code Reviewer final review.

Co-Authored-By: Paperclip <noreply@paperclip.ing>
2026-05-01 19:35:22 -04:00
..
src
FRE-4520: Fix security vulnerabilities in notification template system
2026-05-01 19:35:22 -04:00
test
FRE-4520: Add unit tests for notification template system
2026-05-01 10:08:48 -04:00
package.json
FRE-4521 Implement Redis integration for rate limiting and deduplication
2026-05-01 16:13:17 -04:00
SECURITY_REMEDIATION.md
FRE-4520: Fix security vulnerabilities in notification template system
2026-05-01 19:35:22 -04:00
tsconfig.json
Add tier-based scan scheduler and webhook triggers (FRE-4498)
2026-04-30 10:57:56 -04:00
vitest.config.ts
FRE-4521 Implement Redis integration for rate limiting and deduplication
2026-05-01 16:13:17 -04:00