QT/bigcapital
1
0
Fork 0
mirror of https://github.com/bigcapitalhq/bigcapital.git synced 2026-06-01 07:29:01 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
c23bc76afad0e882081ebe25627202aeff9bafc0
bigcapital/packages/server
History
Ahmed Bouhuolia c23bc76afa fix(server): prevent SQL injection via sortOrder in DynamicListing (GHSA-hcp2-qqg6-jjpm) 
Validate sortOrder against an allowlist at the DTO layer, normalize the
direction centrally in DynamicFilterSortBy.buildQuery, and re-sanitize
inside every orderByRaw modifier so attacker-controlled SQL cannot reach
the ORDER BY clause.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-16 21:35:22 +02:00
..
public/pdf
fix:create customer/vendor
2025-06-29 16:55:02 +02:00
src
fix(server): prevent SQL injection via sortOrder in DynamicListing (GHSA-hcp2-qqg6-jjpm)
2026-05-16 21:35:22 +02:00
static
fix: delete inventory adjustment gl entries
2025-06-15 17:51:44 +02:00
test
Fix pagination params silently ignored on collection GET endpoints
2026-04-29 11:51:49 +00:00
.env.example
fix(server): Dockerfile
2026-01-09 23:38:52 +02:00
.eslintrc.js
feat(nestjs): migrate to NestJS
2025-04-07 11:51:24 +02:00
.gitignore
feat(nestjs): migrate to NestJS
2025-04-07 11:51:24 +02:00
.prettierrc
feat(nestjs): migrate to NestJS
2025-04-07 11:51:24 +02:00
.todo
feat(nestjs): migrate to NestJS
2025-04-07 11:51:24 +02:00
Dockerfile
chore(docker): upgrade pnpm version in Dockerfiles for server and webapp
2026-03-08 04:55:16 +02:00
nest-cli.json
fix(server): copy .js migration files
2026-02-01 16:53:21 +02:00
package.json
Merge pull request #1045 from bigcapitalhq/self-contained-e2e-github-action
2026-03-15 23:49:49 +02:00
README.md
feat(nestjs): migrate to NestJS
2025-04-07 11:51:24 +02:00
tsconfig.build.json
feat(nestjs): migrate to NestJS
2025-04-07 11:51:24 +02:00
tsconfig.json
feat(nestjs): migrate to NestJS
2025-04-07 11:51:24 +02:00

README.md

@bigcapitalhq/server

Reference in New Issue View Git Blame Copy Permalink