-
Notifications
You must be signed in to change notification settings - Fork 787
Pull requests: SecureBananaLabs/bug-bounty
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
fix: add role-based access control to admin routes
#11017
opened Jul 8, 2026 by
cff26541-dev
Loading…
fix: prevent weak JWT secret in production environments
#11016
opened Jul 8, 2026 by
cff26541-dev
Loading…
fix: add bcrypt password hashing and login verification
#11015
opened Jul 8, 2026 by
cff26541-dev
Loading…
fix: remove admin role from registration to prevent privilege escalation
#11014
opened Jul 8, 2026 by
cff26541-dev
Loading…
fix(api): target concrete test files to resolve Node 22 MODULE_NOT_FOUND
#11009
opened Jul 8, 2026 by
gsrtech100-wq
Loading…
fix: reject inverted budget ranges in job validation (Closes #2853)
#11008
opened Jul 8, 2026 by
foxyManTou
Loading…
fix: protect refresh endpoint with auth middleware and sign token for authenticated user
#11007
opened Jul 8, 2026 by
sumarna35
Loading…
fix: handle Zod validation errors in job controller with structured 400 response
#11005
opened Jul 8, 2026 by
sumarna35
Loading…
fix: login endpoint verifies password against registered user store
#11003
opened Jul 8, 2026 by
sumarna35
Loading…
fix: add user validation to prevent admin role self-assignment
#10998
opened Jul 7, 2026 by
sumarna35
Loading…
Previous Next
ProTip!
Adding no:label will show everything without a label.