This website requires JavaScript.
f7c9a1ab80
chore(tests): enable server start during end-to-end tests
2026-01-20 20:38:11 -08:00
af07a73a07
feat(auth): enhance authentication system with login attempt tracking and configuration options
2026-01-20 19:55:32 -08:00
865285fbb7
fix: sync pasted/uploaded images across collaborating tabs (#36 )
2026-01-20 10:50:11 -08:00
77c22916a8
Fix: Save complete app state (#40 )
2026-01-20 23:32:03 +05:30
08d1479a01
Bump react-router and react-router-dom in /frontend
2026-01-09 00:13:05 +00:00
7ea1c3ebf0
Bump qs from 6.14.0 to 6.14.1 in /backend
2026-01-14 19:26:39 +00:00
81918b00cd
chore: release v0.3.1
2026-01-20 13:41:22 -08:00
3b384dc5fb
CSRF token validation failing behind nginx proxy (#38 ) Express was not configured to trust proxy headers, causing req.ip to return nginx's internal container IP instead of the actual client IP. In Docker environments, nginx can appear with different internal IPs between requests, causing the CSRF clientId to change and token validation to fail.
2026-01-20 13:38:51 -08:00
5d819b0234
Bump diff from 5.2.0 to 5.2.2 in /frontend
2026-01-20 20:46:06 +00:00
0ba96c47a8
"Claude Code Review workflow"
2026-01-20 10:55:24 -08:00
0f93f1ab76
"Claude PR Assistant workflow"
2026-01-20 10:55:22 -08:00
bea26a3abd
fix: support both legacy and current currentItemRoundness formats
2026-01-20 09:37:14 -08:00
260a898e3e
test: stabilize e2e auth and rate limits
2026-01-18 21:22:03 -08:00
15ac634d15
feat(auth): add password reset functionality and user model update
2026-01-18 12:33:25 -08:00
1a52fe80f3
feat(auth): enhance authentication system with multi-user support and admin role management
2026-01-18 09:43:32 -08:00
a8615d9087
pass rest of appState in put request
2026-01-18 02:07:54 +05:30
20ef4ee295
feat: implement basic authentication system
2026-01-16 21:34:58 -08:00
d1dbde95e4
chore(frontend): add eslint v9 config and fix lint issues
2026-01-16 21:34:58 -08:00
7c238701b7
Update RELEASE.md with CSRF_SECRET instructions (#33 )
2026-01-14 13:11:25 -08:00
71f18a2053
Update RELEASE.md with CSRF_SECRET instructions
2026-01-14 13:11:13 -08:00
c5c8b15e75
Update README header to remove version number
2026-01-14 13:10:43 -08:00
9bc3c7c8fc
chore: release v0.3.0
2026-01-14 11:26:20 -08:00
0476315322
0.2.1 Release (#32 )
2026-01-14 11:25:27 -08:00
44fb456405
chore: pre-release v0.2.1-dev
2026-01-14 10:38:28 -08:00
8f9b9b4945
feat/upload-bar (#30 )
2026-01-15 01:25:17 +08:00
cae8f3cbf6
add K8S note in README, fix broken e2e
2026-01-14 08:57:04 -08:00
e4e48b13d8
chore: clean up CSRF implementation
2026-01-14 08:21:49 -08:00
8a78b2bb2e
feat(security): implement CSRF protection
2025-12-21 02:47:14 -08:00
e75b727a5a
Bump body-parser from 2.2.0 to 2.2.1 in /backend (#11 )
2025-12-19 15:22:06 -08:00
c2aa742a79
Bump express from 5.1.0 to 5.2.0 in /backend (#16 )
2025-12-19 15:21:55 -08:00
49b413bf07
Testing infrastructure, fix truncating of dataURLs (#26 )
2025-12-19 15:09:15 -08:00
18c8595c2e
bump version 0.1.7
2025-12-01 14:09:37 -08:00
2e6b94644f
bump version 0.1.7
2025-12-01 14:02:32 -08:00
b0bdc05071
Merge pull request #15 from AdrianAcala/perf/drawings-optim
2025-12-01 13:59:08 -08:00
2520d7e7a2
fix(drawings): stabilize lazy loading, improve export error handling, and tidy cache invalidation
2025-12-01 13:58:24 -08:00
32985ea6fe
Merge pull request #13 from AdrianAcala/12-backend-url-config-fix
2025-12-01 13:28:44 -08:00
f8830a8b0f
add example in docker-compose, clarify README, add clearer validation, longer timeouts for websocket connections
2025-12-01 13:27:31 -08:00
c4352185d6
refactor: optimize drawing data handling and cache management
2025-11-29 11:35:57 -08:00
f9986513f8
Refactor nginx configuration and update README
2025-11-29 11:29:43 -08:00
6f050aec7d
perf: optimize drawings endpoint with caching and lazy loading
2025-11-29 04:28:03 +00:00
05b787bc27
Add backend URL configuration for frontend and update nginx setup
2025-11-28 17:56:19 -08:00
4bc66ab014
MVP passwords
2025-11-28 10:19:44 -08:00
971046d568
Update README
2025-11-24 15:04:52 -08:00
602350d2e6
Merge pull request #9 from ZimengXiong/pre-release
2025-11-24 15:01:02 -08:00
f20d48fea2
fix migration issues
2025-11-24 14:53:17 -08:00
c53dc010de
Merge branch '8-export-drawing' into pre-release
2025-11-24 14:43:58 -08:00
03e778a06f
add export functionality via exportUtils
2025-11-24 14:39:38 -08:00
fa73708d97
allow importing of libraries via URL, update db schema
2025-11-24 14:32:37 -08:00
ee8204532d
Update README.md
2025-11-23 10:23:24 -08:00
a347403a26
Fix caution message formatting in README
2025-11-23 10:15:51 -08:00
8becfd87bb
Merge pull request #6 from ZimengXiong/pre-release
2025-11-23 10:08:42 -08:00
1b78597649
Merge branch 'main' into pre-release
2025-11-23 10:06:08 -08:00
d93b6493c1
fix database import in docker
2025-11-23 09:40:00 -08:00
d581eb3e88
fix database import, allow sqlite and db format
2025-11-23 09:22:01 -08:00
4728ef151c
release notes
2025-11-23 09:12:24 -08:00
eb5f54a6d0
unify version numbering
2025-11-23 08:53:36 -08:00
c502f1c0bd
add version card to settings, branch push protection
2025-11-23 08:35:36 -08:00
8f9ac1f9c0
add dev tag to pre release dockerhub images
2025-11-23 08:03:48 -08:00
0787989496
add version managment script
2025-11-23 07:56:28 -08:00
9bc25a3dc2
update README, release notes
2025-11-23 07:39:35 -08:00
3cc3fd18f4
add prerelease docker script
2025-11-23 07:30:20 -08:00
997fa4af03
add prisma cli to dependencies, make zod checks more permissive
2025-11-23 06:56:45 -08:00
b864e82318
Merge branch '1-413-request-entity-too-large' into pre-release
2025-11-22 22:50:40 -08:00
2f22be2bd7
Merge branch 'fix-CPU-blocking' into pre-release
2025-11-22 22:48:51 -08:00
fcfb850168
Merge branch 'fix-DoS-event-blocking' into pre-release
2025-11-22 22:44:27 -08:00
4a224c1f92
Merge branch 'fix-rce-via-upload' into pre-release
2025-11-22 22:43:47 -08:00
d1d17e1288
Merge branch 'fix-xss-root-execution' into pre-release
2025-11-22 22:43:31 -08:00
bb42187ba8
make async database integrity check
2025-11-22 21:59:18 -08:00
9055661b51
make async database integrity check
2025-11-22 21:59:18 -08:00
d25a32cdd3
Fix license badge URL in README.md
2025-11-22 21:56:14 -08:00
8d65404514
Fix license badge URL in README.md
2025-11-22 21:56:14 -08:00
1b6c32d773
Merge pull request #3 from ZimengXiong/ZimengXiong-patch-1
2025-11-22 21:54:46 -08:00
352bcfca29
Merge pull request #3 from ZimengXiong/ZimengXiong-patch-1
2025-11-22 21:54:46 -08:00
448c678ecc
Merge pull request #4 from ZimengXiong/ZimengXiong-readme-license
2025-11-22 21:53:55 -08:00
e980b96091
Merge pull request #4 from ZimengXiong/ZimengXiong-readme-license
2025-11-22 21:53:55 -08:00
fabe0fcd54
Update license badge in README.md
2025-11-22 21:53:38 -08:00
ef27256879
Update license badge in README.md
2025-11-22 21:53:38 -08:00
c1da41474f
Create LICENSE
2025-11-22 21:51:20 -08:00
815dcd5c80
Create LICENSE
2025-11-22 21:51:20 -08:00
d2e0574eba
convert all sync op to async, implemented streaming
2025-11-22 21:36:02 -08:00
29936417fc
convert all sync op to async, implemented streaming
2025-11-22 21:36:02 -08:00
6fe136ae5a
validate SQlite magic header
2025-11-22 21:27:34 -08:00
49e32f7d96
validate SQlite magic header
2025-11-22 21:27:34 -08:00
b47ab76785
filter with dompurify
2025-11-22 21:21:28 -08:00
cd9c242983
filter with dompurify
2025-11-22 21:21:28 -08:00
0e8bec949b
update nginx config
2025-11-22 21:06:01 -08:00
3835557e67
update nginx config
2025-11-22 21:06:01 -08:00
06f13d1404
fix XSS and Root execution of NPM in docker
2025-11-22 20:38:40 -08:00
69bffab745
fix XSS and Root execution of NPM in docker
2025-11-22 20:38:40 -08:00
888834c8f0
Merge pull request #2 from ZimengXiong/fix-bind-mount-prisma
2025-11-22 20:25:44 -08:00
ef412a3887
Merge pull request #2 from ZimengXiong/fix-bind-mount-prisma
2025-11-22 20:25:44 -08:00
ae8f6d696e
fix bind mount prisma, auto hydrate empty folder
2025-11-22 20:25:07 -08:00
2e2b4ca455
fix bind mount prisma, auto hydrate empty folder
2025-11-22 20:25:07 -08:00
77c1824b00
add fallback for browsers that do not have crypto.randomUUID
2025-11-22 19:16:41 -08:00
fb5fe1235c
add fallback for browsers that do not have crypto.randomUUID
2025-11-22 19:16:41 -08:00
c54a2ae5e7
add CORS fallback
2025-11-22 19:14:55 -08:00
e21cdbe6a8
add CORS fallback
2025-11-22 19:14:55 -08:00
55162c0b93
fix: add linux-musl-openssl-3.0.x
2025-11-22 19:07:28 -08:00
94f33f0a56
fix: add linux-musl-openssl-3.0.x
2025-11-22 19:07:28 -08:00
2826e47392
fix: pinning CORS to FRONTEND_URL, validate drawing payloads with Zod, staging SQLite imports with integrity checks and atomic swaps in index.ts
2025-11-22 17:17:50 -08:00
Adrian Acala