This repository has been archived on 2026-05-24. You can view files and clone it. You cannot open issues or pull requests or push a commit.

Flea Flicker b903d1e506 fix(api): wire up CSRF middleware for protected routes ...

Register csrfMiddleware in the protected API routes after authMiddleware
and resolveStaffMiddleware to protect against CSRF attacks on state-
changing operations (POST, PUT, PATCH, DELETE).

Addresses CTO review feedback on PR #278.

2026-04-15 06:01:22 +00:00

..

api

fix(api): wire up CSRF middleware for protected routes

2026-04-15 06:01:22 +00:00

e2e

fix(e2e): use domcontentloaded instead of networkidle in admin invoices test

2026-04-11 16:50:35 +00:00

groombook/overlays/uat

fix(GRO-451): re-seal UAT secrets with correct cluster certificate

2026-04-04 12:27:23 +00:00

web

Merge branch 'main' into feature/gro-631-ci-pnpm-pin

2026-04-14 17:34:02 +00:00