Skip to content

Pull requests: ritesh-1918/HELPDESK.AI

New pull request New
167 Open 1,533 Closed
167 Open 1,533 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

fix: only accept https:// in isLikelyValidUrl to prevent auth tokens being sent over plain HTTP
#2911 opened Jun 17, 2026 by akhilmodi29 Loading…
1
2
fix: remove hardcoded secrets and add .env to gitignore
#2909 opened Jun 17, 2026 by pranayukey200 Loading…
1
5
Add themed API docs and full Postman collection
#2908 opened Jun 17, 2026 by b3417 Loading…
2
fix: add authentication to unprotected POST /tickets and PATCH /tickets/{ticket_id} endpoints
#2907 opened Jun 17, 2026 by Aryanbansal-05 Loading…
1
2
fix: per-user and per-tenant rate limiting on AI endpoints
#2904 opened Jun 17, 2026 by Nancy-3012 Loading…
1
8
fix: prevent mass assignment in updateProfile
#2902 opened Jun 17, 2026 by Nancy-3012 Loading…
1
5
fix(security): enforce schema + role gate on PATCH /api/profiles/{user_id} (closes #2894)
#2901 opened Jun 16, 2026 by codeboost-tr Loading…
3
fix(translation): remove duplicate limiter import (closes #2898)
#2900 opened Jun 16, 2026 by codeboost-tr Loading…
3
[MEDIUM] Remove duplicate limiter import in translation.py (Fixes #2898)
#2899 opened Jun 16, 2026 by namann5 Contributor Loading…
3
[HIGH] Prevent mass assignment and add role-based auth to admin endpoints (Fixes #2894)
#2897 opened Jun 16, 2026 by namann5 Contributor Loading…
3
[CRITICAL] Information disclosure — exception details leaked in auth responses (Fixes #2893)
#2896 opened Jun 16, 2026 by namann5 Contributor Loading…
3
[HIGH] Wire SecurityHeadersMiddleware into main.py — app missing CSP, HSTS, X-Frame-Options (Fixes #2892)
#2895 opened Jun 16, 2026 by namann5 Contributor Loading…
3
[CRITICAL] Fix auth rate limiter bypass — login/signup endpoints allow unlimited brute-force (Fixes #2890)
#2891 opened Jun 16, 2026 by namann5 Contributor Loading…
3
[Resource Leak] Redis connection pool never disconnected on shutdown
#2887 opened Jun 14, 2026 by sanrishi Loading…
2
[Security] Add payload size limit and JSON nesting depth middleware
#2886 opened Jun 14, 2026 by sanrishi Loading…
2
[Security] Enforce ocr_json_safety validators on all image_base64 inputs
#2885 opened Jun 14, 2026 by sanrishi Loading…
2
[Security] Error leakage in admin.py + no global exception handler
#2884 opened Jun 14, 2026 by sanrishi Loading…
2
[Concurrency] TICKETS_DB list lacks thread safety for concurrent create/update
#2883 opened Jun 14, 2026 by sanrishi Loading…
2
[Security] log_correction uses raw_request.json() instead of Pydantic model; no CorrectionsLogService
#2882 opened Jun 14, 2026 by sanrishi Loading…
2
[Security] All Pydantic request models missing max-length and input sanitization
#2881 opened Jun 14, 2026 by sanrishi Loading…
3
[Security] Rate limiting only covers 1 of 6 AI endpoints - apply to all
#2880 opened Jun 14, 2026 by sanrishi Loading…
2
[Memory Leak] Supabase client connections created without lifecycle shutdown
#2879 opened Jun 14, 2026 by sanrishi Loading…
2
[Memory Leak] SSE streaming endpoint lacks disconnect detection and task timeout
#2878 opened Jun 14, 2026 by sanrishi Loading…
2
fix: make supabase service key env var consistent
#2867 opened Jun 14, 2026 by pranayukey200 Loading…
1
4
feat: add reusable ticket templates for common issues
#2866 opened Jun 14, 2026 by jainiksha Loading…
1
2
ProTip! Type g i on any issue or pull request to go back to the issue listing page.