binarybeach/bb-plane-fork
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
6908 commits 2 branches 0 tags 138 MiB
Commit graph

6908 commits

This branch
This branch
All branches
Author SHA1 Message Date
Anmol Singh Bhatia
a75301d6c6
[WEB-6420] chore: migrate community references from Discord to Forum (#8657) 
* chore: replace Discord references with Forum links

* chore: migrate help and community CTAs from Discord to Forum

* refactor: replace Discord icons with lucide MessageSquare

* chore: rename Discord labels and keys to Forum

* chore: remove obsolete Discord icon component

* chore: update Discord references to Forum in templates

* chore: code refactoring
 2026-03-04 13:08:36 +05:30
Nikhil
351344ecbb
[WEB-5225] feat: enhance authentication logging with detailed error and info message (#7998) 
* feat: enhance authentication logging with detailed error and info messages

- Added logging for various authentication events in the Adapter and its subclasses, including email validation, user existence checks, and password strength validation.
- Implemented error handling for GitHub OAuth email retrieval, ensuring proper logging of unexpected responses and missing primary emails.
- Updated logging configuration in local and production settings to include a dedicated logger for authentication events.

* chore: address copilot comments

* chore: addressed some additional comments

* chore: update log

* fix: lint
 2026-03-03 19:35:34 +05:30
Bavisetti Narayan
a58642ed10
[WIKI-852] chore: update page version save logic (#8440) 
* chore: updated the logic for page version task

* chore: updated the html variable

* chore: handled the exception

* chore: changed the function name

* chore: added a custom variable
 2026-03-03 19:10:42 +05:30
Saurabh Kumar
a9d688f290
[SILO-1028] feat: Project Summary external API (#8661) 
* add project summary endpoint

* update response structure
 2026-03-03 01:33:07 +05:30
sriram veeraghanta
da870a1513
chore(deps): minimatch and rollup package vulnerabilities (#8675) 
* fix: package updates

* fix: package upgrades

* fix: minimatch package vulnerabilities

* fix: ajv package vulnerabilities

* fix: lint

* fix: format
 2026-03-03 01:26:29 +05:30
sriram veeraghanta
c5542438a1
fix: replace eslint with oxlint (#8677) 
* fix: replace eslint with oxlint

* chore: adding max warning

* fix: formatting
 2026-03-03 00:46:05 +05:30
sriram veeraghanta
41abaffc6e
chore: replace prettier with oxfmt (#8676) 2026-03-02 20:40:50 +05:30
Vipin Chaudhary
9ee73d57ef
fix: merge lists in editor (#8639) 2026-03-02 20:29:20 +05:30
Vipin Chaudhary
779f5e272f
[WIKI-887] fix: add scroll in heading layout (#8596) 
* fix: add scroll in heading layout

* chore: remove visible scroll  bar

* fix :format

* chore: fix outline scroll

* chore: fix format

* chore: fix translation

---------

Co-authored-by: Aaryan Khandelwal <aaryankhandu123@gmail.com>
 2026-03-02 18:59:07 +05:30
sriram veeraghanta
bf52fa22be
Change Dependabot update interval from weekly to daily 2026-03-02 18:58:07 +05:30
Akshat Jain
5c9f2a17c2
fix: Update healthcheck endpoint in Dockerfile to target /spaces/ path (#8674) 2026-03-02 18:52:57 +05:30
Vihar Kurama
9425c66eb5
chore: Add forum link and remove discord link on readme (#8655) 
* Update README to remove Discord and add Forum link

Removed Discord badge and replaced Releases link with Forum link.

* Fix forum link in README.md
 2026-02-23 17:11:17 +05:30
sriram veeraghanta
f53446340b
fix: Member Information Disclosure via Public Endpoint #8646 2026-02-20 18:33:45 +05:30
sriram veeraghanta
9070acbbe8
fix: IDOR Vulnerabilities in Asset & Attachment Endpoints (#8644) 
* fix: idor issues in project assets and issue attachements

* fix: comments
 2026-02-20 18:02:12 +05:30
Sangeetha
b5fe8a2825
[WEB-6194]migration: added archived_at in IssueView #8641 
* migration: added archived_at in IssueView

* fix: lint
 2026-02-17 19:06:13 +05:30
Sangeetha
c4b3d52466
[WEB-5878] chore: add validation for project name/identifier for special characters (#8529) 
* chore: update ProjectSerializer to raise validation for special characters in name and identifier

* chore: update external endpoints

* fix: external api serializer validation

* update serializer to send error code

* fix: move the regex expression to Project model
 2026-02-17 00:49:02 +05:30
b-saikrishnakanth
f0dcf66167
[WEB-5917] fix: generate clean plain text from HTML email template #8535 2026-02-17 00:44:52 +05:30
Prateek Shourya
e9b011896d
[VPAT-27] chore(security): disable autocomplete on sensitive input fields #8517 
Disable autocomplete on authentication and security-related forms to prevent
browsers from storing sensitive credentials. This affects sign-in, password
reset, account security, and onboarding forms across admin, web, and space apps.

Modified components:
- Auth forms (email, password, unique code, forgot/reset/set password)
- Account security pages
- Instance setup and profile onboarding
- Shared UI components (auth-input, password-input)
 2026-02-17 00:43:35 +05:30
Anmol Singh Bhatia
d3c6e5ec94
[WEB-5827] fix: persist external cover image URLs (Unsplash) in project updates #8482 2026-02-17 00:21:43 +05:30
Prateek Shourya
e10deb10f2
[VPAT-16] improvement: add file validation to prevent malicious uploads #8493 
Add client-side checks for double extensions, dangerous file types,
dot files, and path traversal patterns. Addresses security audit
recommendations for file upload validation.
 2026-02-17 00:21:21 +05:30
Prateek Shourya
49fc6aa0a0
[VPAT-55] chore(security): implement input validation across authentication and workspace forms (#8528) 
* chore(security): implement input validation across authentication and workspace forms

  - Add OWASP-compliant autocomplete attributes to all auth input fields
  - Create centralized validation utilities blocking injection-risk characters
  - Apply validation to names, display names, workspace names, and slugs
  - Block special characters: < > ' " % # { } [ ] * ^ !
  - Secure sensitive input fields across admin, web, and space apps

* chore: add missing workspace name validation to settings and admin forms

* feat: enhance validation regex for international names and usernames

- Updated regex patterns to support Unicode characters for person names, display names, company names, and slugs.
- Improved validation functions to block injection-risk characters in names and slugs.
 2026-02-17 00:18:46 +05:30
Anmol Singh Bhatia
55e89cb8fc
[WEB-5863] fix: estimate point input validation #8492 
Co-authored-by: sriram veeraghanta <veeraghanta.sriram@gmail.com>
 2026-02-17 00:12:33 +05:30
Vamsi Krishna
4d1e6c499f
[WEB-5829] fix: Intake open work count (#8547) 
* fix: open intake count at sidebar header

* chore: reverted inbox store arguments to core store

* fix: intake count update
 2026-02-17 00:05:20 +05:30
Sangeetha
3a99ecf8f3
[WEB-5871] chore: added intake count for projects (#8497) 
* chore: add intake_count in project list endpoint

* chore: sidebar project navigation intake count added

* fix: filter out closed intake issues in the count

* chore: code refactor

* chore: code refactor

* fix: filter out deleted intake issues

---------

Co-authored-by: Anmol Singh Bhatia <anmolsinghbhatia@plane.so>
 2026-02-17 00:04:03 +05:30
Dheeraj Kumar Ketireddy
ef5d481a19
[VPAT-51] fix: update workspace invitation flow to use token for validation #8508 
- Modified the invite link to include a token for enhanced security.
- Updated the WorkspaceJoinEndpoint to validate the token instead of the email.
- Adjusted the workspace invitation task to generate links with the token.
- Refactored the frontend to handle token in the invitation process.

Co-authored-by: sriram veeraghanta <veeraghanta.sriram@gmail.com>
 2026-02-17 00:02:18 +05:30
Dheeraj Kumar Ketireddy
c8a800104c
[SILO-820] fix: update serializer for module detail API endpoint to use ModuleUpdateSerializer (#8496) 2026-02-17 00:01:33 +05:30
Anmol Singh Bhatia
e92b835869
[WEB-5873] fix: user avatar ui consistency (#8495) 
* fix: user avatar ui consistency

* chore: code refactor
 2026-02-13 19:04:57 +05:30
Cornelius
7e5b5066c5
Update translations.ts: issue-artifacts discoverd (#7979) 2026-02-13 19:04:02 +05:30
Jayash Tripathy
53b3358a63
[GIT-44] refactor(auth): add PASSWORD_TOO_WEAK error code (#8522) 
* refactor(auth): add PASSWORD_TOO_WEAK error code and update related error handling in password change flow

* fix(auth): update import to use type for EAuthenticationErrorCodes in security page

* Update apps/web/app/(all)/profile/security/page.tsx

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

* Update apps/web/app/(all)/[workspaceSlug]/(settings)/settings/account/security/page.tsx

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>

* refactor: updated auth error exception accross zxcvbn usages

* fix: improve error handling for password strength validation and update error messages

* i18n(ru): update Russian translations for stickies and automation description

Added translation for 'stickies' and improved formatting of the automation description in Russian locale.

---------

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-02-13 18:51:33 +05:30
Anmol Singh Bhatia
bf521b7b03
[WEB-1201] chore: dropdown options hierarchy improvements (#8501) 
* chore: sortBySelectedFirst and sortByCurrentUserThenSelected utils added

* chore: members dropdown updated

* chore: module dropdown updated

* chore: project and label dropdown updated

* chore: code refactor
 2026-02-13 18:50:18 +05:30
Anmol Singh Bhatia
7607cc9b10
[WEB-5884] chore: layout loader enhancements #8500 2026-02-13 18:49:53 +05:30
Aaryan Khandelwal
d497304de5
refactor: table drag preview using decorations (#8597) 
* refactor: table drag preview using decorations

* fix: history meta for table drag state
 2026-02-13 17:59:37 +05:30
Anmol Singh Bhatia
8fa08b2506
[GIT-57 | WEB-5912] fix: app sidebar ux and responsiveness (#8560) 
* fix: project extended sidebar accordion ux

* fix: app sidebar mobile responsiveness ux

* chore: code refactor
 2026-02-13 17:43:07 +05:30
sriram veeraghanta
efc600ad8c chore(deps): update axios dependency 2026-02-13 16:35:16 +05:30
stelmsk
a3a1d141cb
i18n(ru): expand Russian translation coverage (#8603) 
Added missing translations for:
- Profile preferences (language, timezone settings)
- Account settings sections (preferences, notifications, security, api-tokens, activity)
- Workspace settings (billing, exports, webhooks headings/descriptions)
- Project settings (states, labels, estimates, automations headings/descriptions)
- Power-K command palette (contextual actions, navigation, creation, preferences, help)
- Sidebar elements (stickies, your_work, pin/unpin)
- Common actions (copy_markdown, overview)
- Navigation customization options
 2026-02-13 16:30:33 +05:30
sriram veeraghanta
dfce8c6278
chore: admin folder structure (#8632) 
* chore: admin folder structure

* fix: copy right check and formatting

* fix: types
 2026-02-13 16:29:45 +05:30
Vamsi Krishna
fab84eb058
[WEB-5899]fix: project sort order (#8530) 
* fix: project sort order

* chore: updated queryset for sort_order
 2026-02-13 15:52:22 +05:30
Vipin Chaudhary
60734b25ba
[WIKI-877] fix: order of this dropdown options in pages #8563 2026-02-13 15:49:10 +05:30
Sangeetha
cd613e5f8f
[SECUR-105] fix: csv injection vulnerability sanitization #8611 2026-02-13 15:37:13 +05:30
Anmol Singh Bhatia
a8d81656fc
[WEB-6137] fix: work item peek view outside click #8610 2026-02-12 16:28:51 +05:30
Anmol Singh Bhatia
dbe059b7b5
fix: workitem description input inital load (#8617) 2026-02-12 14:03:01 +05:30
Anmol Singh Bhatia
c93f9fc865
[WEB-6038] fix: work item empty title flicker #8618 2026-02-12 13:35:08 +05:30
Akshat Jain
bcc8fb4d1d
style: update ASCII art in install script header (#8628) 2026-02-12 13:34:31 +05:30
dependabot[bot]
b59e541b35
chore(deps): bump cryptography (#8625) 
Bumps the pip group with 1 update in the /apps/api/requirements directory: [cryptography](https://github.com/pyca/cryptography).


Updates `cryptography` from 44.0.1 to 46.0.5
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/44.0.1...46.0.5)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-version: 46.0.5
  dependency-type: direct:production
  dependency-group: pip
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-02-11 13:06:42 +05:30
sriram veeraghanta
2b6e24d526
chore: merge helpers and layouts (#8624) 
* fix: remove constants and services

* fix: formatting

* chore: merge helpers and layouts

* fix: workspace disbale flag handling
 2026-02-10 22:04:07 +05:30
sriram veeraghanta
7793febcf8
chore: merge constants and services (#8623) 
* fix: remove constants and services

* fix: formatting

* fix: types check
 2026-02-10 21:10:54 +05:30
sriram veeraghanta
06e4a1624c
fix: remove ee folder from web (#8622) 2026-02-10 20:01:42 +05:30
Sangeetha
57ce2a5429
[WEB-6149] migration: change estimate point key max value to 50 #8620 2026-02-10 17:07:14 +05:30
sriramveeraghanta
0887cbbda8 chore(deps): update lodash package 2026-02-09 19:26:39 +05:30
M. Palanikannan
e1227f0b58
fix: type fix for description payload (#8619) 
* fix: type fix

* fix: duplicate type fix
 2026-02-09 15:18:09 +05:30