-
Notifications
You must be signed in to change notification settings - Fork 15
Issues
is:issue state:open
is:issue state:open
Issue creation is restricted in this repository
Search results
OTP send endpoint returns success even when email delivery fails
bugSomething isn't workingSomething isn't workinghelp wantedExtra attention is neededExtra attention is neededStatus: Open.#70 In OpenLake/Smart-Insti-App;Security: Message API has no authentication — unauthenticated sender impersonation possible
advancedComplex issues requiring experienced contributorsComplex issues requiring experienced contributorsbugSomething isn't workingSomething isn't workingsecuritysecurity d73a4a 'Security vulnerability'security d73a4a 'Security vulnerability'Status: Open.#69 In OpenLake/Smart-Insti-App;Security: Admin password hashing disabled — plaintext passwords stored in database
advancedComplex issues requiring experienced contributorsComplex issues requiring experienced contributorsbugSomething isn't workingSomething isn't workingsecuritysecurity d73a4a 'Security vulnerability'security d73a4a 'Security vulnerability'Status: Open.#68 In OpenLake/Smart-Insti-App;Admin analytics dashboard crashes — imports non-existent Student and Faculty models
bugSomething isn't workingSomething isn't workinghelp wantedExtra attention is neededExtra attention is neededStatus: Open.#67 In OpenLake/Smart-Insti-App;Runtime crash: Wishlist endpoint hits MissingSchemaError for unregistered 'Student' model
bugSomething isn't workingSomething isn't workinghelp wantedExtra attention is neededExtra attention is neededStatus: Open.#66 In OpenLake/Smart-Insti-App;Runtime crash: Wishlist endpoint hits MissingSchemaError for unregistered 'Student' model
bugSomething isn't workingSomething isn't workinghelp wantedExtra attention is neededExtra attention is neededStatus: Open.#65 In OpenLake/Smart-Insti-App;Feature: Add institutional email verification with verified badge system
help wantedExtra attention is neededExtra attention is neededStatus: Open.#64 In OpenLake/Smart-Insti-App;No institutional email domain validation allows any email address to register
bugSomething isn't workingSomething isn't workinghelp wantedExtra attention is neededExtra attention is neededStatus: Open.#63 In OpenLake/Smart-Insti-App;Chat message GET endpoints missing participant authorization check
help wantedExtra attention is neededExtra attention is neededStatus: Open.#62 In OpenLake/Smart-Insti-App;Marketplace listing submission is a client-side stub — images collected but never uploaded
help wantedExtra attention is neededExtra attention is neededStatus: Open.#61 In OpenLake/Smart-Insti-App;Supabase auth metadata role is user-controlled with no server-side enforcement
help wantedExtra attention is neededExtra attention is neededStatus: Open.#60 In OpenLake/Smart-Insti-App;Profiles table RLS policy exposes all sensitive fields (CGPA, phone, whatsapp) to any authenticated user
help wantedExtra attention is neededExtra attention is neededStatus: Open.#59 In OpenLake/Smart-Insti-App;