-
Notifications
You must be signed in to change notification settings - Fork 109
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: add server #329
feat: add server #329
Conversation
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
@suzy-g38 is attempting to deploy a commit to the unikonf-vibey Team on Vercel. A member of the Team first needs to authorize it. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thank you for creating a pull request for vibey!
We appreciate your contribution and are excited to review your changes. If you have any questions or need additional information, please don't hesitate to let us know. We look forward to working with you to improve vibey. Thanks again for your support!If you want to keep contributing to open source and want to do it with a supportive and inclusive community, consider joining UniKonf. We help and encourage each other to make regular contributions to open source projects. If you have any questions, do not hesitate to ask. We look forward to having you as part of our community!
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
CodeQL found more than 10 potential problems in the proposed changes. Check the Files changed tab for more details.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@suzy-g38 Please review and fix the security vulnerabilities.
try { | ||
const updatedEvent = await EventModel.findOneAndUpdate( | ||
{ _id: _id }, | ||
{ $set: updatedValue }, |
Check failure
Code scanning / CodeQL
Database query built from user-controlled sources High
user-provided value
|
||
const deleteEvent = async (_id) => { | ||
try { | ||
const event = await EventModel.deleteOne({ _id: _id }); |
Check failure
Code scanning / CodeQL
Database query built from user-controlled sources High
user-provided value
try { | ||
const hackathon = await HackathonModel.findOneAndUpdate( | ||
{ _id: _id }, | ||
{ $set: updatedValue }, |
Check failure
Code scanning / CodeQL
Database query built from user-controlled sources High
user-provided value
|
||
const deleteHackathon = async (_id) => { | ||
try { | ||
const hackathon = await HackathonModel.deleteOne({ _id: _id }); |
Check failure
Code scanning / CodeQL
Database query built from user-controlled sources High
user-provided value
userRouter.post('/login', async (req, res) => { | ||
try { | ||
const user = await UserService.loginUser(); | ||
if (user === 404) { | ||
res.status(404).json({ message: 'User not found' }); | ||
} | ||
if (user === 401) { | ||
res.status(401).json({ message: 'Invalid Credentials' }); | ||
} | ||
res.status(200).send({ success: true, user: 'login successful' }); | ||
} catch (error) { | ||
res.status(500).json({ success: false, message: 'Internal server error' }); | ||
} | ||
}); |
Check failure
Code scanning / CodeQL
Missing rate limiting High
authorization
try { | ||
const cfps = await CfpModel.findByIdAndUpdate( | ||
_id, | ||
{ $set: updatedValue }, |
Check failure
Code scanning / CodeQL
Database query built from user-controlled sources High
user-provided value
|
||
const deleteCfp = async (_id) => { | ||
try { | ||
const cfps = await CfpModel.deleteOne({ _id }); |
Check failure
Code scanning / CodeQL
Database query built from user-controlled sources High
user-provided value
Thanks @suzy-g38 for making the biggest contribution to the Vibey. You have done a really great job and implemented it perfectly. Let's merge the pr! |
Related Issue
Closes: #262
What sort of change have you made:
Added server
How Has This Been Tested?
Checklist
Code of Conduct