dunkirk.sh / thistle
đŸĒģ distributed transcription service thistle.dunkirk.sh
1
fork

Configure Feed

Select the types of activity you want to include in your feed.

fix: webhook signature validation error responses #6

open opened by dunkirk.sh

Medium Priority#

Location: src/index.ts:1355

Issue#

Webhook validation throws generic 400 on error, exposing validation logic

Impact#

Information leakage to attackers

Fix Time#

~10 minutes

Recommendation#

Return consistent 400 responses regardless of validation outcome

From LAUNCH_REVIEW.md Issue #17

sign up or login to add to the discussion
Labels

None yet.

assignee

None yet.

Participants 1
AT URI
at://did:plc:krxbvxvis5skq7jj6eot23ul/sh.tangled.repo.issue/3m6d4dmysmp2s