b9dfb86260
Security hardening release addressing CodeQL and Dependabot alerts: - Fix stack trace exposure in error responses - Add SSRF protection with DNS resolution checking - Implement proper URL hostname validation (replaces substring matching) - Add centralized path sanitization to prevent path traversal - Fix ReDoS vulnerability in email validation regex - Improve HTML sanitization in validation utilities - Fix capability wildcard matching in auth utilities - Update glob dependency to address CVE - Add CodeQL suppression comments for verified false positives 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
42 lines
325 B
Plaintext
42 lines
325 B
Plaintext
# Dependencies
|
|
node_modules/
|
|
|
|
# Next.js build output
|
|
.next/
|
|
out/
|
|
|
|
# Production
|
|
build/
|
|
|
|
# Testing
|
|
coverage/
|
|
|
|
# Environment
|
|
.env
|
|
.env.*
|
|
|
|
# IDE
|
|
.vscode/
|
|
.idea/
|
|
*.swp
|
|
*.swo
|
|
*~
|
|
|
|
# Version control
|
|
.git/
|
|
.gitignore
|
|
|
|
# Documentation
|
|
README.md
|
|
*.md
|
|
|
|
# Logs
|
|
*.log
|
|
npm-debug.log*
|
|
yarn-debug.log*
|
|
yarn-error.log*
|
|
|
|
# Misc
|
|
.DS_Store
|
|
*.pem
|