unsupervised-scheduler

Validate availability slot datetimes (REST and admin form) bug security

#42 by thatguygriff was closed 2026-06-10 19:51:22 +00:00

Store invite tokens hashed at rest security

#41 by thatguygriff was closed 2026-06-10 19:51:22 +00:00

#40 by thatguygriff was closed 2026-06-10 19:51:22 +00:00

#39 by thatguygriff was closed 2026-06-10 19:51:22 +00:00

Invites never expire (no TTL on pending tokens) security

#37 by thatguygriff was closed 2026-06-10 20:17:52 +00:00

#36 by thatguygriff was closed 2026-06-10 20:17:52 +00:00

#35 by thatguygriff was closed 2026-06-10 20:17:51 +00:00

#34 by thatguygriff was closed 2026-06-10 20:17:51 +00:00

TOCTOU race allows double-booking a slot (non-transactional) bug security

#33 by thatguygriff was closed 2026-06-10 20:17:50 +00:00

#32 by thatguygriff was closed 2026-06-10 19:57:15 +00:00

#31 by thatguygriff was closed 2026-06-09 20:11:34 +00:00