fix: Stored XSS via non-standard file extension bypassing file upload extension blocklist (GHSA-v8x7-r927-cc93)#10505
Merged
mtrezza merged 1 commit intoJun 16, 2026
Codecov / codecov/project
failed
Jun 15, 2026 in 0s
92.62% (-0.01%) compared to 30f1612
View this Pull Request on Codecov
92.62% (-0.01%) compared to 30f1612
Details
Codecov Report
✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 92.62%. Comparing base (30f1612) to head (7885d88).
Additional details and impacted files
@@ Coverage Diff @@
## alpha #10505 +/- ##
==========================================
- Coverage 92.62% 92.62% -0.01%
==========================================
Files 193 193
Lines 16947 16954 +7
Branches 240 240
==========================================
+ Hits 15698 15703 +5
- Misses 1226 1228 +2
Partials 23 23 ☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.
🚀 New features to boost your workflow:
- ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
- 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.
Loading