rosslh/coolify
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
coolify/app/Livewire/Project/Shared
History
Andras Bacsai 48ba4ece3c fix: harden GetLogs Livewire component with locked properties and input validation 
Add #[Locked] attributes to security-sensitive properties (resource, servicesubtype,
server, container) to prevent client-side modification via Livewire wire protocol.
Add container name validation using ValidationPatterns::isValidContainerName() and
server ownership authorization via Server::ownedByCurrentTeam() in both getLogs()
and downloadAllLogs() methods.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-03-28 12:28:54 +01:00
..
EnvironmentVariable fix(environment-variable): guard refresh against missing or stale variables 2026-03-23 10:52:59 +01:00
ScheduledTask fix: prevent scheduled task input fields from losing focus 2026-02-27 19:07:28 +08:00
Storages fix(storages): hide PR suffix for services and fix instantSave logic 2026-03-16 21:10:00 +01:00
ConfigurationChecker.php feat(event): introduce ApplicationConfigurationChanged event to handle team-specific configuration updates and broadcast changes 2025-09-22 09:44:30 +02:00
Danger.php feat(livewire): add selectedActions parameter and error handling to delete methods 2026-03-11 15:04:45 +01:00
Destination.php feat(livewire): add selectedActions parameter and error handling to delete methods 2026-03-11 15:04:45 +01:00
ExecuteContainerCommand.php fix(livewire): add Locked attributes and consolidate container name validation 2026-03-25 20:21:39 +01:00
GetLogs.php fix: harden GetLogs Livewire component with locked properties and input validation 2026-03-28 12:28:54 +01:00
HealthChecks.php fix(health-checks): sanitize and validate CMD healthcheck commands 2026-02-25 11:28:33 +01:00
Logs.php Squashed commit from '565g-9j4m-wqmr-cross-team-idor-logs-fix' 2026-03-10 22:11:52 +01:00
Metrics.php Removed debug logging for metrics 2025-09-19 23:28:25 +05:30
ResourceLimits.php Complete Livewire legacy model binding migration (25+ components) 2025-10-13 15:38:59 +02:00
ResourceOperations.php chore: prepare for PR 2026-02-25 11:18:46 +01:00
Tags.php feat(acl): Change views/backend code to able to use proper ACL's later on. Currently it is not enabled. 2025-08-26 10:27:38 +02:00
Terminal.php fix(livewire): add Locked attributes and consolidate container name validation 2026-03-25 20:21:39 +01:00
UploadConfig.php Revert "rector: arrrrr" 2025-01-07 15:31:43 +01:00
Webhooks.php feat(acl): Change views/backend code to able to use proper ACL's later on. Currently it is not enabled. 2025-08-26 10:27:38 +02:00