From e8e2a2ea579a5c9c06ff98f8e83edcb26f75e70a Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 19:56:27 -0400 Subject: [PATCH 01/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From 2683b893bf9a47296b3ec5b33d34915765c19cec Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 19:56:33 -0400 Subject: [PATCH 02/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From 8cc41c4b13c4c59a7f46ced46f4a03c24ecee823 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 19:56:35 -0400 Subject: [PATCH 03/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From 307cbbce91b3d58e5166b51c0c067f948bd7522d Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 19:56:37 -0400 Subject: [PATCH 04/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From ddbe5b992ca4566b4180c80a3818f739afe54798 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 19:56:39 -0400 Subject: [PATCH 05/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 6705874c5675295e3a1033d898ba7aad453cd74b Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 19:56:41 -0400 Subject: [PATCH 06/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 495b07d11dd96c6f1ae48e83f0d42fc95aede82c Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 19:56:43 -0400 Subject: [PATCH 07/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 2b3ee62d2345bd06f9f083a67aa8cb7985750a13 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:01:38 -0400 Subject: [PATCH 08/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From 4301e6a5e9c5abba4976093a91eec541b2dd937f Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:02:31 -0400 Subject: [PATCH 09/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From 581994bf0326a5251d1f5f0c2c2bd44e54029a42 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:02:33 -0400 Subject: [PATCH 10/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From bd63acc920a4d1d53e39e9004a97e3ae5117a8df Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:02:35 -0400 Subject: [PATCH 11/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From 545e0cbe36fb28386246948c16223bf4dd14f03a Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:02:37 -0400 Subject: [PATCH 12/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 7be9d1888463044c224b2aefc2878bedcc6b53a4 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:02:39 -0400 Subject: [PATCH 13/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 77acd71def2fdbb6dac51f2a400357673d9759fc Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:02:41 -0400 Subject: [PATCH 14/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 1403557ff59a5ef09a981f8376c3e03fcbd9f540 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:03:31 -0400 Subject: [PATCH 15/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From dc93621f89758d01a5b83f966f57bcbfe3ce9bc7 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:03:33 -0400 Subject: [PATCH 16/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From 45de2c97bd8ecff413b85feb4bb6907234d60b4c Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:03:35 -0400 Subject: [PATCH 17/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From 835e874f629c4ab6331e19f89f2e56fa25e4e9e0 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:03:37 -0400 Subject: [PATCH 18/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From 856358f303e32f07c3ab7f01a5ebbd602ac4fbd8 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:03:39 -0400 Subject: [PATCH 19/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 19373c164efa86430be90ab651f838e6f80f17f5 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:03:41 -0400 Subject: [PATCH 20/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 927f2c3a9dc0e4a195f778d2707ecbab4f2aa2b5 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:03:43 -0400 Subject: [PATCH 21/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 8b4f360513946fcd5846b45d0ec118f64993f1f4 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:04:32 -0400 Subject: [PATCH 22/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From d0bd3f9249a941aee0a4bfaafcbc355ffd4113e8 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:04:34 -0400 Subject: [PATCH 23/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From 6d7dbcd2411b5daa190359d54a61711c45fdf818 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:04:36 -0400 Subject: [PATCH 24/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From 0c02dca21204991a32b7214ffe5417fcaebbdcd9 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:04:38 -0400 Subject: [PATCH 25/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From a2f2c980b20a5c8079cace33952c6d56fd2be5f5 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:04:40 -0400 Subject: [PATCH 26/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 9b55dd68c49c9a7cc884b5ff516039403932735f Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:04:42 -0400 Subject: [PATCH 27/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 6f97eb28ef6f5a478051c29cf9d7ce68ccd0803b Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:04:44 -0400 Subject: [PATCH 28/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From cf616e5b1bfd106d100055b2ac6172c97df96f38 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:05:35 -0400 Subject: [PATCH 29/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From a964383a02a9deec35b84712b4b625bc9f01af7d Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:05:37 -0400 Subject: [PATCH 30/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From d2e5f1c32b632261d9a39eb27805a05fc4b65ca0 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:05:38 -0400 Subject: [PATCH 31/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From 22ae1469fcfe95d02c3d201843f5d75868f4b832 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:05:40 -0400 Subject: [PATCH 32/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From 9fe6a7eecbec30bb6c5eb8c2b8690a6f6d0b2cfe Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:05:42 -0400 Subject: [PATCH 33/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From d645c49ba0cb5a81c4d7e13242109bf11d21df1a Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:05:44 -0400 Subject: [PATCH 34/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 152b33be3abc2d9e107ac77e0e55f5425c60d9df Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:05:46 -0400 Subject: [PATCH 35/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 6cbd121e5e249f5d1ec0ce75273a76035f4b55a3 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:15:20 -0400 Subject: [PATCH 36/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From c1f2e26e613f13c11dbc154a2904663a2d0601a1 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:15:22 -0400 Subject: [PATCH 37/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From ea21904d46ada7404e159522fad5a676d182fe9b Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:15:24 -0400 Subject: [PATCH 38/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From 4f6b9ece4329e293ffc46b91f8f4f68d465cd88e Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:15:26 -0400 Subject: [PATCH 39/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From 1cb943d1f8dd039cf1f0907654969bb65af29739 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:15:28 -0400 Subject: [PATCH 40/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From aed7515098665bc5e3dafa05fdbd039704714a6d Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:15:30 -0400 Subject: [PATCH 41/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From d63c6abcaad458d6dd3d23a76cd18b599e9f7f4f Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:15:32 -0400 Subject: [PATCH 42/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 5582f1a39585b066720440af741508ecfdc1b76d Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:17:22 -0400 Subject: [PATCH 43/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From bdbdac453b7101f6428f9226bde60d580ba368ee Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:17:24 -0400 Subject: [PATCH 44/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From 3a6ae9c05cb0d6dcdc2dbf483fed2dceb6294879 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:17:26 -0400 Subject: [PATCH 45/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From 97ded500682085612695ab1212b2b3aee93d3a19 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:17:28 -0400 Subject: [PATCH 46/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From 4278edf086e3e12a8982c96886ac479bea5195b5 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:17:30 -0400 Subject: [PATCH 47/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From f2cb4efd2e12139e87ccb97768548fac9e146090 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:17:32 -0400 Subject: [PATCH 48/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 55f775ab7f90e0def0ba0922d2dcab3069287823 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:17:34 -0400 Subject: [PATCH 49/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 8258ebcc4c0900bf0088e0ad276e0ca61c27217c Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:18:24 -0400 Subject: [PATCH 50/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From d86ac9e8b2a83c8df47a78068ff8f987eca515c7 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:18:26 -0400 Subject: [PATCH 51/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From 3e2061f88a2390e5e735c2246df7c0f0cc17f905 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:18:28 -0400 Subject: [PATCH 52/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From 23bbeb3eb5764d4e2dc68366e3991689d2dfcdd2 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:18:30 -0400 Subject: [PATCH 53/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From 3b01d6731b95e1d75d3bfdd8cfa45d6d491f35f9 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:18:32 -0400 Subject: [PATCH 54/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 7842f9a2073a8cb2648765fe759f4e63122803fa Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:18:34 -0400 Subject: [PATCH 55/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From f87795dd03f8af18ac758e7bdb842d6972fa9ba3 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:18:36 -0400 Subject: [PATCH 56/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From c6df98b68b7beb204b15024046f165de3451c643 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:20:26 -0400 Subject: [PATCH 57/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From ad95101f68f08010597a953c0b9370d634889953 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:20:28 -0400 Subject: [PATCH 58/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From 8823e5a81f376c6bde455fac81d7731c933fcf1d Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:20:30 -0400 Subject: [PATCH 59/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From 0bdd32ef0844cd032bf3e9e24c6844eae8c2fbaf Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:20:32 -0400 Subject: [PATCH 60/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From 77e8e740505af2ccdcd9935c8caa75a9d0e5577e Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:20:34 -0400 Subject: [PATCH 61/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From cdb6279312aaf893554b7935c505b4fa209be7ba Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:20:36 -0400 Subject: [PATCH 62/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 5afc027d45b223245254777d4f135a9e58fb2d5a Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:20:38 -0400 Subject: [PATCH 63/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 117ba53dd0dafcf18c38e53a2830ba1dcc974f97 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:31:46 -0400 Subject: [PATCH 64/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From 72704dd6cd9f6238d56c21a74533769d94169322 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:31:48 -0400 Subject: [PATCH 65/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From cf19c598db1ad9c60a54d13bca2c792a192abac0 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:31:50 -0400 Subject: [PATCH 66/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From c1cead759d0f0b65f4430d6c1502e43e87a73eef Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:31:52 -0400 Subject: [PATCH 67/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From bbf8afad65837d0d9a9720535381f0dbb979b1c8 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:31:54 -0400 Subject: [PATCH 68/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From d84fb30159f24dd148efe361ba67c57ae993aa42 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:31:56 -0400 Subject: [PATCH 69/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From f17d687fb3f3589f2ec944a3cc7ea924b5a1d566 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:31:58 -0400 Subject: [PATCH 70/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 0129a0844fc9cbf22d746779f534f54c0643be01 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:38:40 -0400 Subject: [PATCH 71/77] Potential fix for code scanning alert no. 1232 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- backend/src/controllers/survey.controller.ts | 16 +++++++++++++--- backend/src/services/survey.service.ts | 2 +- 2 files changed, 14 insertions(+), 4 deletions(-) diff --git a/backend/src/controllers/survey.controller.ts b/backend/src/controllers/survey.controller.ts index da6b8fe..23a1746 100644 --- a/backend/src/controllers/survey.controller.ts +++ b/backend/src/controllers/survey.controller.ts @@ -9,11 +9,21 @@ class SurveyController { async updateSurveyGitHub(req: Request, res: Response): Promise { let survey: SurveyType; try { - const _survey = await surveyService.updateSurvey({ - ...req.body, + const sanitizedBody = { + id: req.body.id, + userId: req.body.userId, + org: req.body.org, + repo: req.body.repo, + prNumber: req.body.prNumber, + usedCopilot: req.body.usedCopilot, + percentTimeSaved: req.body.percentTimeSaved, + reason: req.body.reason, + timeUsedFor: req.body.timeUsedFor, + kudos: req.body.kudos, hits: 0, status: 'completed' - }); + }; + const _survey = await surveyService.updateSurvey(sanitizedBody); if (!_survey) throw new Error('Survey not found'); survey = _survey; res.status(201).json(survey); diff --git a/backend/src/services/survey.service.ts b/backend/src/services/survey.service.ts index 6ad1127..de08fed 100644 --- a/backend/src/services/survey.service.ts +++ b/backend/src/services/survey.service.ts @@ -33,7 +33,7 @@ class SurveyService { throw new Error('Invalid survey data provided'); } const Survey = mongoose.model('Survey'); - const result = await Survey.updateOne({ id: survey.id }, { $set: survey }); + const result = await Survey.updateOne({ id: { $eq: survey.id } }, { $set: survey }); // Check if the update modified any document. if (result.modifiedCount === 0) { From 99292b56d5cc397a8e7710128dafa85f2876b17c Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:38:42 -0400 Subject: [PATCH 72/77] Potential fix for code scanning alert no. 1446 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-publish.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml index c2c41f2..85e14d2 100644 --- a/.github/workflows/docker-publish.yml +++ b/.github/workflows/docker-publish.yml @@ -1,5 +1,9 @@ name: Docker Deploy GHCR +permissions: + contents: read + packages: write + on: push: branches: From a5e55a6a410985194d112b3d6d6795e23710db6b Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:38:44 -0400 Subject: [PATCH 73/77] Potential fix for code scanning alert no. 1445 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/lint.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml index c6c6a31..fef8d7b 100644 --- a/.github/workflows/lint.yml +++ b/.github/workflows/lint.yml @@ -1,5 +1,8 @@ name: Lint +permissions: + contents: read + on: push: branches: From 62989f228e11055aedab9b5fbe0116789bd727b9 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:38:46 -0400 Subject: [PATCH 74/77] Potential fix for code scanning alert no. 1444 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/frontend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/frontend.yml b/.github/workflows/frontend.yml index 3cc20b5..00ab67a 100644 --- a/.github/workflows/frontend.yml +++ b/.github/workflows/frontend.yml @@ -1,5 +1,8 @@ name: Frontend +permissions: + contents: read + on: push: branches: From 97fbbafd970c94d631547349a4122e5a8473abc3 Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:38:48 -0400 Subject: [PATCH 75/77] Potential fix for code scanning alert no. 1443 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/docker-compose.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/docker-compose.yml b/.github/workflows/docker-compose.yml index b696608..816fa3d 100644 --- a/.github/workflows/docker-compose.yml +++ b/.github/workflows/docker-compose.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From 3c8b31039bba1cfcb0c75b7b6668885ddc3744df Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:38:50 -0400 Subject: [PATCH 76/77] Potential fix for code scanning alert no. 1442 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest From a05a29b25ba522f4b1068710b26df6103e9689fc Mon Sep 17 00:00:00 2001 From: Austen Stone Date: Thu, 3 Jul 2025 20:38:52 -0400 Subject: [PATCH 77/77] Potential fix for code scanning alert no. 1441 Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/backend.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/backend.yml b/.github/workflows/backend.yml index d73ded5..4997ea7 100644 --- a/.github/workflows/backend.yml +++ b/.github/workflows/backend.yml @@ -8,6 +8,9 @@ on: branches: - main +permissions: + contents: read + jobs: build: runs-on: ubuntu-latest