Go to issue

Labels Milestones New Issue

0 Open 23 Closed

Label

Show archived labels Use alt + click/enter to exclude labels

All labels No label

bug

enhancement

feature

payments

security

Milestone

All milestones No milestones

Project

All projects No project

Author

All users

Assignee

Assigned to nobody Assigned to anybody

thatguygriff (James Griffin-Allwood)

Sort

Newest Oldest Most recently updated Least recently updated Most commented Least commented Nearest due date Farthest due date

0 Open 23 Closed

Label

Clear labels

bug

enhancement

feature

payments

security

Milestone

No milestone

Projects

Clear projects

Assignee

Clear assignees

No assignee

thatguygriff

Gutenberg dynamic block wrappers for shortcodes with editor previews

#44 by thatguygriff was closed 2026-06-12 15:14:03 +00:00

Validate availability slot datetimes (REST and admin form) bug security

#42 by thatguygriff was closed 2026-06-10 19:51:22 +00:00

Store invite tokens hashed at rest security

#41 by thatguygriff was closed 2026-06-10 19:51:22 +00:00

Sanitize policy bodies at output in PolicyEndpoint::index (defense-in-depth) security

#40 by thatguygriff was closed 2026-06-10 19:51:22 +00:00

CSV formula injection in payments export via student display names payments security

#39 by thatguygriff was closed 2026-06-10 19:51:22 +00:00

Invites never expire (no TTL on pending tokens) security

#37 by thatguygriff was closed 2026-06-10 20:17:52 +00:00

1

Stripe secret key reflected into admin settings HTML / stored plaintext payments security

#36 by thatguygriff was closed 2026-06-10 20:17:52 +00:00

1

Unbounded weekly reservation lets one student lock an instructor's whole series security

#35 by thatguygriff was closed 2026-06-10 20:17:51 +00:00

1

Instructor can attach a slot to an offering they don't own security

#34 by thatguygriff was closed 2026-06-10 20:17:51 +00:00

1

TOCTOU race allows double-booking a slot (non-transactional) bug security

#33 by thatguygriff was closed 2026-06-10 20:17:50 +00:00

1

Info disclosure: public /offerings endpoint leaks etransfer_email payments security

#32 by thatguygriff was closed 2026-06-10 19:57:15 +00:00

2

Payment bypass: booking trusts client-supplied offering_id (no slot match) bug payments security

#31 by thatguygriff was closed 2026-06-09 20:11:34 +00:00

Student administration view (studio-admin) feature

#22 by thatguygriff was closed 2026-06-08 19:05:27 +00:00

1

Account registration with signup policy acceptance feature

#16 by thatguygriff was closed 2026-06-08 19:05:27 +00:00

1

Studio Admin role & instructor management feature

#9 by thatguygriff was closed 2026-06-08 20:05:33 +00:00

Payment reporting: monthly per-instructor view + CSV export feature payments

#8 by thatguygriff was closed 2026-06-08 19:05:26 +00:00

1

Payments: Stripe processing, e-transfer/comp overrides & receipts feature payments

#7 by thatguygriff was closed 2026-06-08 19:05:26 +00:00

1

Policies: drafting, versioning & tracked acceptance feature

#6 by thatguygriff was closed 2026-06-08 19:05:25 +00:00

1

Registration questions (per-offering intake forms) feature

#5 by thatguygriff was closed 2026-06-08 19:05:25 +00:00

1

Group classes (year-commitment enrolment) feature

#4 by thatguygriff was closed 2026-06-08 19:05:24 +00:00

1