senke/veza
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
veza/veza-backend-api/internal
History
senke d3bcfd8e60 [BE-SEC-009] be-sec: Implement input sanitization 
- Created comprehensive sanitization utility functions
- SanitizeInput, SanitizeText, SanitizeHTML, SanitizeURL, SanitizeEmail, SanitizeUsername
- Applied sanitization to profile handler (username, bio, names, search)
- Applied sanitization to social posts content
- Applied sanitization to comment content
- Applied sanitization to playlist titles and descriptions
- All functions prevent XSS via HTML escaping and remove dangerous URL schemes
- Removes control characters and limits input length to prevent DoS
2025-12-24 12:15:25 +01:00
..
api [BE-SEC-007] security: Implement account lockout after failed login attempts 2025-12-24 12:10:41 +01:00
common refonte: backend-api go first; phase 1 2025-12-12 21:34:34 -05:00
config stabilizing apps/web: THIRD BATCH - FIXED Playwright 2025-12-21 18:55:51 -05:00
core [BE-SEC-007] security: Implement account lockout after failed login attempts 2025-12-24 12:10:41 +01:00
database stabilizing apps/web: THIRD BATCH - FIXED Playwright 2025-12-21 18:55:51 -05:00
dto [BE-API-001] api: Implement 2FA endpoints (setup, verify, disable) 2025-12-23 01:40:28 +01:00
email STABILISATION: phase 3–5 – API contract, tests & chat-server hardening 2025-12-06 17:21:59 +01:00
errors refactor(marketplace): enforce unified api response envelope 2025-12-06 17:39:04 +01:00
eventbus adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
features adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
handlers [BE-SEC-009] be-sec: Implement input sanitization 2025-12-24 12:15:25 +01:00
infrastructure STABILISATION: phase 3–5 – API contract, tests & chat-server hardening 2025-12-06 17:21:59 +01:00
interfaces adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
jobs STABILISATION: phase 3–5 – API contract, tests & chat-server hardening 2025-12-06 17:21:59 +01:00
logging adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
metrics stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00
middleware [BE-SEC-008] be-sec: Implement session timeout and refresh 2025-12-24 12:12:29 +01:00
models stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00
monitoring stabilizing veza-backend-api: P1 & P2 2025-12-16 13:34:08 -05:00
repositories [BE-API-011] be-api: Implement conversation participants endpoints 2025-12-23 10:49:17 +01:00
repository adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
response stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00
security adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
services [BE-SEC-007] security: Implement account lockout after failed login attempts 2025-12-24 12:10:41 +01:00
testutils stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00
types adding initial backend API (Go) 2025-12-03 20:29:37 +01:00
utils [BE-SEC-009] be-sec: Implement input sanitization 2025-12-24 12:15:25 +01:00
validators [BE-SEC-006] security: Implement comprehensive password strength validation 2025-12-24 12:08:03 +01:00
workers stabilizing veza-backend-api: phase 1 2025-12-16 11:23:49 -05:00