Hartmut/CapaKraken
1
0
Fork 0
Code Issues 10 Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
df191d1e030d92cb4aaf7aab408675b65318fff4
CapaKraken/packages
T
History
Hartmut df191d1e03 fix(security): rate-limit public invite and password-reset endpoints 
- requestPasswordReset: rate-limited by email (authRateLimiter, 5/15 min)
  to prevent email bombing
- resetPassword: rate-limited by token to add explicit brute-force defence
- getInvite + acceptInvite: rate-limited by invite token (authRateLimiter)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-04-09 21:38:08 +02:00
..
api
fix(security): rate-limit public invite and password-reset endpoints
2026-04-09 21:38:08 +02:00
application
Merge branch 'worktree-agent-a8de1898' - Phase 2A entitlement use-cases
2026-04-09 20:16:38 +02:00
db
feat(api): add audit helpers, tool registry, shared tool manifest types, and UI primitives
2026-04-09 21:14:26 +02:00
engine
feat(timeline): add pulse animation for in-flight drag mutations
2026-04-09 13:28:46 +02:00
shared
feat(api): add audit helpers, tool registry, shared tool manifest types, and UI primitives
2026-04-09 21:14:26 +02:00
staffing
fix(merge): resolve post-merge type errors from batch-1 agents
2026-04-09 14:38:32 +02:00
ui
fix(infra): apply missing migrations, fix Dockerfile.dev ui package reference
2026-04-09 20:29:21 +02:00