Micsi / openbridgeserver Public

forked from abeggled/openbridgeserver

Notifications You must be signed in to change notification settings
Fork 0
Star 0

Code
Pull requests 54
Actions
Projects
Security and quality
Insights

Additional navigation options

Code
Pull requests
Actions
Projects
Security and quality
Insights

Pull requests: Micsi/openbridgeserver

Labels 13 Milestones 0

New pull request New

54 Open 18 Closed

Author

Filter by author

Uh oh!

There was an error while loading. Please reload this page.

Label

Filter by label

Uh oh!

There was an error while loading. Please reload this page.

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Uh oh!

There was an error while loading. Please reload this page.

Milestones

Filter by milestone

Uh oh!

There was an error while loading. Please reload this page.

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Assigned to nobody

Uh oh!

There was an error while loading. Please reload this page.

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Pull requests list

fix(auth): require admin for adapter config and binding mutations aardvark Berechtigungen codex promoted upstream

Fork PR has an associated upstream PR

#69 opened May 18, 2026 by Micsi Owner

Loading…

fix(logic): harden formula eval against sandbox escape aardvark codex promoted upstream

Fork PR has an associated upstream PR

#66 opened May 18, 2026 by Micsi Owner

Loading…

fix: harden AST sandboxing in logic executor to prevent sandbox escapes aardvark codex promoted upstream

Fork PR has an associated upstream PR

#65 opened May 18, 2026 by Micsi Owner

Loading…

fix(security): restrict logic graph mutations to admin users aardvark Berechtigungen codex

#63 opened May 18, 2026 by Micsi Owner

Loading…

fix(logic): block private-network SSRF in api_client node aardvark codex promoted upstream

Fork PR has an associated upstream PR

#62 opened May 18, 2026 by Micsi Owner

Loading…

fix(visu): enforce admin authorization on management mutations aardvark Berechtigungen codex

#60 opened May 18, 2026 by Micsi Owner

Loading…

fix(auth): require authentication for datapoint value reads and websocket connections aardvark codex promoted upstream

Fork PR has an associated upstream PR

#59 opened May 18, 2026 by Micsi Owner

Loading…

fix(api/security): restrict history settings read to admins aardvark Berechtigungen codex

#58 opened May 18, 2026 by Micsi Owner

Loading…

fix(history): deny unknown page IDs in access check aardvark codex promoted upstream

Fork PR has an associated upstream PR

#57 opened May 18, 2026 by Micsi Owner

Loading…

fix(api): restrict MQTT sample endpoint to admins and disallow wildcard topics aardvark Berechtigungen codex

#56 opened May 18, 2026 by Micsi Owner

Loading…

Enforce user ACL on datapoint write for authenticated non-admin users aardvark Berechtigungen codex

#55 opened May 18, 2026 by Micsi Owner

Loading…

fix(visu): enforce admin auth on visu mutation endpoints aardvark Berechtigungen codex

#54 opened May 18, 2026 by Micsi Owner

Loading…

fix(auth): use API key owner for authenticated subject to prevent admin spoofing aardvark Berechtigungen codex

#53 opened May 18, 2026 by Micsi Owner

Loading…

fix(frontend): sanitize markdown HTML rendering in Text widget aardvark codex promoted upstream

Fork PR has an associated upstream PR

#52 opened May 18, 2026 by Micsi Owner

Loading…

fix(auth): require admin for binding management endpoints aardvark Berechtigungen codex

#51 opened May 18, 2026 by Micsi Owner

Loading…

fix(config): preserve legacy OPENTWS envs and DB path to avoid rebrand-first-boot aardvark codex promoted upstream

Fork PR has an associated upstream PR

#50 opened May 18, 2026 by Micsi Owner

Loading…

fix: enforce server-side demo read-only restrictions aardvark Berechtigungen codex

#49 opened May 18, 2026 by Micsi Owner

Loading…

fix(security): sanitize SVG uploads and restrict icon import to admins aardvark codex promoted upstream

Fork PR has an associated upstream PR

#48 opened May 18, 2026 by Micsi Owner

Loading…

fix(security): restrict FontAwesome settings endpoints to admins and hide FA key aardvark Berechtigungen codex

#47 opened May 18, 2026 by Micsi Owner

Loading…

security: reject active/scriptable SVGs on icon import (prevent stored XSS) aardvark codex promoted upstream

Fork PR has an associated upstream PR

#46 opened May 18, 2026 by Micsi Owner

Loading…

fix(visu): prevent stored XSS via SVG icon rendering aardvark codex

#45 opened May 17, 2026 by Micsi Owner

Loading…

fix(frontend): sanitize inline SVG icon content before v-html render aardvark codex promoted upstream

Fork PR has an associated upstream PR

#44 opened May 17, 2026 by Micsi Owner

Loading…

fix(security): sanitize SVG icons before ValueDisplay injection aardvark codex promoted upstream

Fork PR has an associated upstream PR

#43 opened May 17, 2026 by Micsi Owner

Loading…

fix(visu): redact kamera secrets from API responses aardvark Berechtigungen codex

#42 opened May 17, 2026 by Micsi Owner

Loading…

fix(camera): restrict proxy to admins and add stream timeouts aardvark Berechtigungen codex

#41 opened May 17, 2026 by Micsi Owner

Loading…

Previous 1 2 3 Next

Previous Next

ProTip! Follow long discussions with comments:>50.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!