-
-
Notifications
You must be signed in to change notification settings - Fork 4.4k
Pull requests: nocodb/nocodb
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
fix(security): V5 - sanitize error messages in base64 attachment processing
#12752
opened Dec 19, 2025 by
kolega-ai-dev
Loading…
1 of 7 tasks
fix(security): V4 - apply SSRF protection to axios.head() in uploadViaURL
#12751
opened Dec 19, 2025 by
kolega-ai-dev
Loading…
1 of 7 tasks
fix(security): V3 - add SSRF protection to attachment URL upload
#12750
opened Dec 19, 2025 by
kolega-ai-dev
Loading…
1 of 7 tasks
fix(security): V2 - properly validate WebSocket authentication in gateway middleware
#12749
opened Dec 19, 2025 by
kolega-ai-dev
Loading…
1 of 7 tasks
fix(security): V1 - resolve SQL injection vulnerabilities in Oracle client
#12748
opened Dec 19, 2025 by
kolega-ai-dev
Loading…
1 of 7 tasks
fix(nc-gui): correct target base default and refresh sidebar on table duplicate
#12744
opened Dec 17, 2025 by
iamgerwin
Loading…
fix hide column for model without display column
#12741
opened Dec 17, 2025 by
dstala
Loading…
7 tasks
fix: add webhook signature validation with HMAC-SHA256
#12734
opened Dec 12, 2025 by
FaizanKolega
Loading…
1 of 7 tasks
fix(security): sanitize error messages to prevent information disclosure
#12733
opened Dec 12, 2025 by
FaizanKolega
Loading…
1 of 7 tasks
fix(security): prevent credential exposure in plugin error logs
#12731
opened Dec 12, 2025 by
FaizanKolega
Loading…
1 of 7 tasks
fix(security): add configurable CORS origins via NC_ALLOWED_ORIGINS
#12730
opened Dec 12, 2025 by
FaizanKolega
Loading…
1 of 7 tasks
fix(security): implement rate limiting to prevent brute force attacks
#12729
opened Dec 12, 2025 by
FaizanKolega
Loading…
1 of 7 tasks
fix(security): auto-generate HTTP Basic Auth credentials to prevent h…
#12728
opened Dec 12, 2025 by
FaizanKolega
Loading…
1 of 7 tasks
chore: security update jsonwebtoken from 9.0.2 to 9.0.3
#12727
opened Dec 12, 2025 by
drizzd
Loading…
1 of 7 tasks
fix(api-v3): return full linked records instead of counts for UITypes.Links
#12724
opened Dec 11, 2025 by
iamgerwin
Loading…
5 tasks done
Nocodb/nc fix/v html xss sanitization
#12721
opened Dec 10, 2025 by
FaizanKolega
Loading…
1 of 7 tasks
fix: run Docker containers as non-root user for improved security
#12720
opened Dec 10, 2025 by
FaizanKolega
Loading…
1 of 7 tasks
[Snyk] Security upgrade nodemailer from 6.10.1 to 7.0.11
#12713
opened Dec 5, 2025 by
o1lab
Loading…
fix(nc-gui): Add comprehensive touch/tablet support using Pointer Events API
#12712
opened Dec 4, 2025 by
TiagoGranelli
Loading…
1 of 7 tasks
chore(renovate): Security update Update dependency @modelcontextprotocol/sdk to v1.24.0 [SECURITY]
renovate
#12707
opened Dec 3, 2025 by
renovate
bot
Loading…
1 task
chore(deps): bump nodemailer from 6.10.1 to 7.0.11
dependencies
Pull requests that update a dependency file
javascript
Pull requests that update javascript code
#12706
opened Dec 3, 2025 by
dependabot
bot
Loading…
chore(deps): bump validator from 13.15.15 to 13.15.22
dependencies
Pull requests that update a dependency file
javascript
Pull requests that update javascript code
#12705
opened Dec 2, 2025 by
dependabot
bot
Loading…
chore(deps): bump @modelcontextprotocol/sdk from 1.13.3 to 1.24.0
dependencies
Pull requests that update a dependency file
javascript
Pull requests that update javascript code
#12703
opened Dec 2, 2025 by
dependabot
bot
Loading…
chore(deps): bump express from 4.21.2 to 4.22.0
dependencies
Pull requests that update a dependency file
javascript
Pull requests that update javascript code
#12700
opened Dec 1, 2025 by
dependabot
bot
Loading…
[Snyk] Security upgrade validator from 13.15.15 to 13.15.22
#12698
opened Dec 1, 2025 by
DarkPhoenix2704
Loading…
Previous Next
ProTip!
Mix and match filters to narrow down what you’re looking for.