boha_admin/app
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 26 Wiki Activity
167 Commits 1 Branch 37 Tags
528e55991bd5de8658e99221326d69647062eef7
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
BOHA 528e55991b security: fix all Critical and High findings from FLAWS_REPORT audit 
- Auth: pessimistic locking on login tokens and refresh token rotation,
  backup code attempt counter, rate limiting verification
- Schema: unique constraints on business numbers, FK relations,
  unsigned/signed alignment, attendance duplicate prevention
- Invoices/PDFs: DOMPurify sanitization, bounded queries in stats
  and alerts, VAT rounding, Puppeteer error handling
- Orders/Offers: transactional parent+child creation, Zod NaN
  refinement, status enums, uniqueness checks
- Projects/Files: path traversal protection, streamed uploads,
  permission guards, query param validation
- Attendance/HR: duplicate checks, ownership validation, GPS
  restrictions, trip distance validation
- Frontend: modal lock reference counting, XSS escaping in print
  HTML, ref mutation fixes, accessibility attributes

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-04-24 00:58:35 +02:00
.claude
style: run prettier on entire codebase
2026-03-24 19:59:14 +01:00
docs
style: run prettier on entire codebase
2026-03-24 19:59:14 +01:00
prisma
security: fix all Critical and High findings from FLAWS_REPORT audit
2026-04-24 00:58:35 +02:00
public
feat: invoice due date email alerts, add favicon
2026-03-26 11:02:22 +01:00
scripts
feat: NAS storage for invoices/offers, code cleanup, date/time fixes
2026-03-26 10:36:39 +01:00
src
security: fix all Critical and High findings from FLAWS_REPORT audit
2026-04-24 00:58:35 +02:00
.env.example
feat: add email notification for new leave requests
2026-03-23 11:54:29 +01:00
.gitignore
chore: gitignore release archives and claude worktrees
2026-03-27 10:16:25 +01:00
CLAUDE.md
docs: update CLAUDE.md release process and file count
2026-04-23 21:36:49 +02:00
index.html
feat: system settings, dynamic logos, template numbering, permission consolidation
2026-03-27 10:15:47 +01:00
package-lock.json
security: fix all Critical and High findings from FLAWS_REPORT audit
2026-04-24 00:58:35 +02:00
package.json
security: fix all Critical and High findings from FLAWS_REPORT audit
2026-04-24 00:58:35 +02:00
tsconfig.app.json
initial commit
2026-03-23 08:46:51 +01:00
tsconfig.json
initial commit
2026-03-23 08:46:51 +01:00
tsconfig.server.json
initial commit
2026-03-23 08:46:51 +01:00
vite.config.ts
initial commit
2026-03-23 08:46:51 +01:00
vitest.config.ts
security: fix all Critical and High findings from FLAWS_REPORT audit
2026-04-24 00:58:35 +02:00
Description
No description provided
16 MiB
Releases 26
v1.5.1 Latest
2026-04-02 20:01:44 +02:00
Languages
TypeScript 94%
CSS 5.9%