Hartmut/CapaKraken
1
0
Fork 0
Code Issues 10 Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
df191d1e030d92cb4aaf7aab408675b65318fff4
CapaKraken/apps/web
T
History
Hartmut 9e31c6d972 fix(security): harden cron and API route authentication 
- public-holidays cron: replace fail-open inline auth check with verifyCronSecret
  (was open to unauthenticated access when CRON_SECRET unset)
- /api/perf: replace timing-unsafe string comparison with verifyCronSecret
- /api/health: strip baseUrl and latency fields from response to avoid
  leaking infrastructure details (NEXTAUTH_URL config, internal timings)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-09 21:38:02 +02:00
..
e2e
test(e2e): add Playwright tests for core workflows
2026-04-09 19:30:43 +02:00
public
feat: user invite flow, deactivate/delete, favicon, dashboard loading fix, admin full-width
2026-04-02 20:19:26 +02:00
src
fix(security): harden cron and API route authentication
2026-04-09 21:38:02 +02:00
.gitignore
test(e2e): fix dev-system test suite — storageState + strict-mode + signout
2026-04-01 19:09:49 +02:00
next-env.d.ts
feat(platform): checkpoint current implementation state
2026-04-01 07:42:03 +02:00
next.config.ts
feat(web): add error boundaries, loading skeletons, render fixes and tree-shaking
2026-04-09 08:35:28 +02:00
package.json
feat(timeline): add pulse animation for in-flight drag mutations
2026-04-09 13:28:46 +02:00
playwright.ci.config.ts
ci(e2e): add Playwright smoke tests to deploy-test workflow
2026-04-02 23:25:12 +02:00
playwright.config.ts
feat(planning): ship holiday-aware planning and assistant upgrades
2026-03-28 22:49:28 +01:00
playwright.dev.config.ts
test(e2e): fix dev-system test suite — storageState + strict-mode + signout
2026-04-01 19:09:49 +02:00
postcss.config.js
chore(repo): initialize planarchy workspace
2026-03-14 14:31:09 +01:00
sentry.client.config.ts
feat: integrate Sentry error tracking
2026-03-22 18:38:27 +01:00
sentry.edge.config.ts
feat: integrate Sentry error tracking
2026-03-22 18:38:27 +01:00
sentry.server.config.ts
feat: integrate Sentry error tracking
2026-03-22 18:38:27 +01:00
tailwind.config.ts
fix: add missing brand-950 to Tailwind config
2026-03-22 20:39:08 +01:00
tsconfig.json
feat(planning): ship holiday-aware planning and assistant upgrades
2026-03-28 22:49:28 +01:00
tsconfig.typecheck.json
feat(platform): checkpoint current implementation state
2026-04-01 07:42:03 +02:00
typecheck-env.d.ts
feat(platform): checkpoint current implementation state
2026-04-01 07:42:03 +02:00
vitest.config.mts
feat(platform): checkpoint current implementation state
2026-04-01 07:42:03 +02:00