egg/PROJECT-CONTORL
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
ed8d30e9bd0b28190a9f67d4354a9c3bba1087bb
PROJECT-CONTORL/frontend
History
beabigegg 3da0bf5c3a security: fix XSS vulnerabilities in GanttChart and AuditPage 
- Add escapeHtml utility function for HTML entity encoding
- Apply escapeHtml to GanttChart popup HTML template
- Apply escapeHtml to AuditPage PDF export HTML template

This prevents potential XSS attacks if task names, user names,
or other dynamic content contains malicious HTML/JavaScript.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-13 21:26:06 +08:00
..
e2e
Fix test failures and workload/websocket behavior
2026-01-11 08:37:21 +08:00
public/locales
feat: implement 5 QA-driven security and quality proposals
2026-01-12 23:19:05 +08:00
src
security: fix XSS vulnerabilities in GanttChart and AuditPage
2026-01-13 21:26:06 +08:00
.gitignore
feat: implement user authentication module
2025-12-28 23:41:37 +08:00
index.html
feat: implement user authentication module
2025-12-28 23:41:37 +08:00
package-lock.json
Fix test failures and workload/websocket behavior
2026-01-11 08:37:21 +08:00
package.json
Fix test failures and workload/websocket behavior
2026-01-11 08:37:21 +08:00
playwright.config.ts
Fix test failures and workload/websocket behavior
2026-01-11 08:37:21 +08:00
tsconfig.json
feat: implement user authentication module
2025-12-28 23:41:37 +08:00
tsconfig.node.json
feat: implement user authentication module
2025-12-28 23:41:37 +08:00
vite.config.ts
feat: enhance weekly report and realtime notifications
2025-12-30 20:52:08 +08:00
vitest.config.ts
feat: complete LOW priority code quality improvements
2026-01-07 21:24:36 +08:00