singlexyz/ChatGPT-Next-Web
1
0
Fork 0
forked from XiaoMo/ChatGPT-Next-Web
Code Pull Requests Activity
1,419 Commits 1 Branch 57 Tags 479 MiB
adb860b464
Commit Graph

5 Commits

Author SHA1 Message Date
Yidadaa
6f83fbd212 feat: add webdav support 2023-09-13 02:51:02 +08:00
B0zal
605dd72354
[+] CodeQL Report Fix log injection vulnerability in useSyncStore 
Severity : High
Sanitize the 'res' object before logging it in the 'check' method of useSyncStore to prevent log injection attacks.
The 'res' object is now sanitized by extracting only the necessary properties ('status', 'statusText', and 'headers') and logging the sanitized object instead.
This ensures that only safe and expected data is logged, mitigating the risk of log injection vulnerabilities.
 2023-09-11 08:49:08 +07:00
Yidadaa
415e9dc913 fixup: minor sync fixup 2023-09-11 00:34:51 +08:00
Yidadaa
38f6956e71 feat: close #2754 add import/export to file 2023-09-11 00:20:23 +08:00
Yidadaa
1dd75b63de feat: [WIP] support webdav 2023-06-28 00:34:01 +08:00