Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Added Subscription Boxes, Product Recommendations, Mood Board, and Vintage Storytelling #893

Open
wants to merge 2 commits into
base: main
Choose a base branch
from

mood noard integration

37e73b3
Select commit
Loading
Failed to load commit list.
Open

Added Subscription Boxes, Product Recommendations, Mood Board, and Vintage Storytelling #893

mood noard integration
37e73b3
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL failed Feb 24, 2025 in 4s

5 new alerts including 2 high severity security vulnerabilities

New alerts in code changed by this pull request

Security Alerts:

  • 2 high
  • 3 medium

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 67 in Html-files/cart.js

See this annotation in the file changed.

Code scanning / CodeQL

DOM text reinterpreted as HTML Medium

DOM text
Loading
is reinterpreted as HTML without escaping meta-characters.
DOM text
Loading
is reinterpreted as HTML without escaping meta-characters.
DOM text
Loading
is reinterpreted as HTML without escaping meta-characters.
DOM text
Loading
is reinterpreted as HTML without escaping meta-characters.

Check warning on line 7 in Html-files/mood_board.html

See this annotation in the file changed.

Code scanning / CodeQL

Inclusion of functionality from an untrusted source Medium

Script loaded from content delivery network with no integrity check.

Check warning on line 115 in Html-files/vintageStories.html

See this annotation in the file changed.

Code scanning / CodeQL

DOM text reinterpreted as HTML Medium

DOM text
Loading
is reinterpreted as HTML without escaping meta-characters.

Check failure on line 25 in backend/router/productRoute.js

See this annotation in the file changed.

Code scanning / CodeQL

Missing rate limiting High

This route handler performs
a database access
Loading
, but is not rate-limited.

Check failure on line 39 in backend/router/productRoute.js

See this annotation in the file changed.

Code scanning / CodeQL

Missing rate limiting High

This route handler performs
a database access
Loading
, but is not rate-limited.