einundzwanzig-app

einundzwanzig/einundzwanzig-app

Fork 0

mirror of https://github.com/HolgerHatGarKeineNode/einundzwanzig-app.git synced 2026-06-11 02:50:29 +00:00

Commit Graph

Author	SHA1	Message	Date
HolgerHatGarKeineNode	3cad5f5636	✨ Enhance input validation and error handling across APIs - 🛠️ Refactored controllers to utilize `FiltersNumericIds` concern, ensuring secure numeric ID filtering and avoiding type-sensitive errors in queries. - ➕ Added feature tests to validate robust input hardening for non-numeric or malformed query parameters (`user_id`, `selected[]`). - 🔒 Introduced `PublicPropertyNotFoundException` handling in Livewire, returning 400 for invalid property probes and suppressing unnecessary log entries. - ❌ Updated `MeetupEventController` to handle invalid date formats gracefully, aborting with a 400 response instead of 500. - ✅ Expanded exception handling pipeline for enhanced resilience against malformed input, bot noise, and exploitable probes.	2026-06-08 02:53:44 +02:00
HolgerHatGarKeineNode	3a8775fa52	🛡️ Add robust Livewire payload validation and throttling - ✅ Implemented handling for `CorruptComponentPayloadException` to prevent logging noise and improve exception management. - 🛠️ Added IP-based throttling (120 requests/min) for the `/livewire/update` endpoint with middleware integration for better traffic control. - ✅ Introduced unit tests to validate throttle settings and middleware application. - 🧪 Enhanced tests for ensuring silent handling of corrupt payload scenarios and reduced log noise.	2026-06-04 11:45:02 +02:00
HolgerHatGarKeineNode	256f677fe0	🐛 Handle Livewire exploit probes gracefully - ✅ Added detection for Livewire exploit probes (`DirectlyCallingLifecycleHooksNotAllowedException` and magic method `MethodNotFoundException`) to prevent 500 errors. - 🛠️ Updated exception handling to return a 400 response for probe requests. - 🔇 Suppressed logging of exploit probe exceptions to reduce noise. - ✅ Added tests to verify 400 responses, logging suppression, and correct handling of legitimate exceptions.	2026-06-02 18:27:54 +02:00

Author

SHA1

Message

Date

HolgerHatGarKeineNode

3cad5f5636

✨ **Enhance input validation and error handling across APIs**

- 🛠️ Refactored controllers to utilize `FiltersNumericIds` concern, ensuring secure numeric ID filtering and avoiding type-sensitive errors in queries.
- ➕ Added feature tests to validate robust input hardening for non-numeric or malformed query parameters (`user_id`, `selected[]`).
- 🔒 Introduced `PublicPropertyNotFoundException` handling in Livewire, returning 400 for invalid property probes and suppressing unnecessary log entries.
- ❌ Updated `MeetupEventController` to handle invalid date formats gracefully, aborting with a 400 response instead of 500.
- ✅ Expanded exception handling pipeline for enhanced resilience against malformed input, bot noise, and exploitable probes.

2026-06-08 02:53:44 +02:00

HolgerHatGarKeineNode

3a8775fa52

🛡️ **Add robust Livewire payload validation and throttling**

- ✅ Implemented handling for `CorruptComponentPayloadException` to prevent logging noise and improve exception management.
- 🛠️ Added IP-based throttling (120 requests/min) for the `/livewire/update` endpoint with middleware integration for better traffic control.
- ✅ Introduced unit tests to validate throttle settings and middleware application.
- 🧪 Enhanced tests for ensuring silent handling of corrupt payload scenarios and reduced log noise.

2026-06-04 11:45:02 +02:00

HolgerHatGarKeineNode

256f677fe0

🐛 **Handle Livewire exploit probes gracefully**

- ✅ Added detection for Livewire exploit probes (`DirectlyCallingLifecycleHooksNotAllowedException` and magic method `MethodNotFoundException`) to prevent 500 errors.
- 🛠️ Updated exception handling to return a 400 response for probe requests.
- 🔇 Suppressed logging of exploit probe exceptions to reduce noise.
- ✅ Added tests to verify 400 responses, logging suppression, and correct handling of legitimate exceptions.

2026-06-02 18:27:54 +02:00

3 Commits