marcel/familienarchiv
1
0
Fork 0
Code Issues 118 Pull Requests 2 Actions 4 Packages Projects Releases Wiki Activity
Labels Milestones New Issue
118 Open 252 Closed
Label
Clear labels
P0-critical
P1-high
P2-medium
P3-later
audit
bug
cleanup
collaboration
conversation
descoped
devops
documentation
epic
feature
file-upload
legibility
notification
person
phase-1: security
phase-2: container-images
phase-3: prod-compose
phase-4: spring-prod-profile
phase-5: backups
phase-6: deployment-docs
phase-7: monitoring
refactor
security
test
ui
user
Milestone
No milestone
Open milestones
Codebase Legibility
OCR Service Hardening
Persons Redesign v2
Production v1
Reader Experience v1
Transcriber Experience v1
v1.1.0
Demo Day — family get-together
Projects
Clear projects
Assignee
Clear assignees
No assignee
Jens
marcel
Upgrade actions/upload-artifact from v3 to v4 in CI workflow devops phase-1: security
#129 opened 2026-03-28 08:40:12 +01:00 by marcel
Move hardcoded E2E admin password to Gitea secret devops phase-1: security
#128 opened 2026-03-28 08:40:09 +01:00 by marcel
Add k6 smoke test triggered on every deployment descoped test
#126 opened 2026-03-27 18:36:47 +01:00 by marcel 0 / 4
1
Add Playwright visual regression tests at 320px, 768px, and 1440px breakpoints descoped test
#124 opened 2026-03-27 18:36:30 +01:00 by marcel 0 / 4
1
fix(a11y): add skip-to-main-content link in layout for keyboard navigation bug ui
#117 opened 2026-03-27 17:53:51 +01:00 by marcel Demo Day — family get-together
6
fix(security): add Content-Security-Policy headers to SvelteKit responses security
#116 opened 2026-03-27 17:53:44 +01:00 by marcel
7
fix(a11y): replace clickable divs with button elements in PdfViewer and AnnotationLayer bug ui
#114 opened 2026-03-27 17:53:23 +01:00 by marcel
6
refactor(frontend): extract extractErrorCode() helper to eliminate repeated as-unknown-as type assertions refactor
#113 opened 2026-03-27 17:53:17 +01:00 by marcel
6
fix(security): enforce maximum file upload size limit file-upload security
#112 opened 2026-03-27 17:33:13 +01:00 by marcel
6
fix(security): add rate limiting to login and password-reset endpoints security
#111 opened 2026-03-27 17:32:59 +01:00 by marcel
7
fix(security): annotate AppUser.password with @JsonIgnore to prevent accidental hash leakage security
#110 opened 2026-03-27 17:32:47 +01:00 by marcel
6
bug(mobile): "SAVE & MARK AS REVIEWED" and "MARK FOR REVIEW" buttons wrap to 3 lines at narrow widths ui
#95 opened 2026-03-27 12:20:18 +01:00 by marcel Demo Day — family get-together
fix(security): explicitly restrict Spring Boot Actuator endpoints in production config security
#87 opened 2026-03-27 09:24:54 +01:00 by marcel
1
fix(security): set secure: true on auth cookie for production (HTTPS) security
#86 opened 2026-03-27 09:24:33 +01:00 by marcel
1
fix(security): sanitize filename in Content-Disposition response header security
#85 opened 2026-03-27 09:24:19 +01:00 by marcel
fix(security): validate file upload MIME type from magic bytes, not client header security
#84 opened 2026-03-27 09:24:00 +01:00 by marcel
1
fix(security): remove hardcoded fallback admin credentials in application.yaml security
#83 opened 2026-03-27 09:23:43 +01:00 by marcel
1
As a user I want to split a combined person entry into separate persons so I can clean up incorrectly merged import data feature person
#51 opened 2026-03-23 10:58:55 +01:00 by marcel