Skip to content

Pull requests: contraptionco/postcard

New pull request New
20 Open 12 Closed
20 Open 12 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Add model-level uniqueness validation on Subscription
#68 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Fix email validation regex to require 2+ character TLDs
#67 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Fix nil crash on unsubscribe page with invalid token
#66 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Fix race condition in Subscription#verify!
#65 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Fix duplicate before_action :redirect_in_solo
#64 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Replace hardcoded slug check with account-level setting
#63 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Remove fbi.com from LOCALHOST_DOMAINS
#62 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Fix: rescue StandardError instead of Exception in PublishPostJob
#61 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Fix IDOR: Validate pinned_post belongs to account
#60 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Fix: Use validation context for drafts instead of skipping validations
#59 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Fix JSON injection vulnerability in domain registration
#58 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Add HTTP timeouts to all Net::HTTP requests
#57 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Security: Fix SSRF vulnerability in attach_photo_from_url
#56 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Security: Validate accent_color to prevent CSS injection
#55 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Security: Enable Content Security Policy
#54 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Security: Enable Permissions Policy
#53 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Security: Re-enable OAuth CSRF state validation
#52 opened Mar 4, 2026 by bellisabell Contributor Loading…
1
@philipithomas
Fix font flash (FOUT) on page load
#51 opened Mar 4, 2026 by bellisabell Contributor Loading…
@philipithomas
Add Google One Tap sign-in to homepage
#12 opened Feb 9, 2026 by bellisabell Contributor Loading…
@philipithomas
Add admin account search by email
#9 opened Feb 8, 2026 by bellisabell Contributor Loading…
@philipithomas
ProTip! Exclude everything labeled bug with -label:bug.