letsbe/pn-new-crm
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
483 Commits 8 Branches 0 Tags
4b9743a594c90fbd9d894455103317f9bad809b1
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Matt 4b9743a594 audit: 33-agent comprehensive audit + critical fixes 
Full team audit run, all reports verbatim in docs/AUDIT-2026-05-12.md
(5900+ lines, 30+ critical findings). Already-fixed this commit:
- permission-overrides PUT: self-target block + RolePermissions allow-list + cross-tenant guard
- /api/auth/resolve-identifier: rate-limit + synthetic miss-email kill enumeration
- admin email-change: rotates account.accountId + revokes sessions
- middleware: token-gated email confirm/cancel routes whitelisted
- NAV_CATALOG: 10 dead-link sweeps to existing /admin/<x> targets

Feature work landing same commit: optional username sign-in
(migration 0054), per-user permission overrides (0055) with three-state
matrix tabbed inside UserForm, user disable button, role + outcome +
stage label normalisation across the platform, admin email-change
with auto-notification template.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
2026-05-12 16:52:35 +02:00
.gitea/workflows
Remove deploy job from CI - build and push only
2026-03-26 12:19:36 +01:00
.husky
Fix Docker build and production server infrastructure
2026-04-08 15:31:33 -04:00
assets
feat(portal): replace magic-link with email/password + admin-initiated activation
2026-04-26 15:34:02 +02:00
competing-plans/blessed
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
docker/postgres
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
docs
audit: 33-agent comprehensive audit + critical fixes
2026-05-12 16:52:35 +02:00
nginx
fix(security): tier-0 audit blockers (next CVE, role gate, perm traps, key validation, rate limits)
2026-05-05 18:33:13 +02:00
public
fix(ux): popover collision padding, PWA manifest, webhook toasts, portal toast, dashboard error boundary, GDPR poll backoff, empty-state CTA
2026-05-06 14:59:27 +02:00
scripts
fix(folders): logging, files-rescue, hard-delete wiring, audit logs
2026-05-11 13:57:42 +02:00
src
audit: 33-agent comprehensive audit + critical fixes
2026-05-12 16:52:35 +02:00
tests
feat: round 2 — stage prompts, berth header, EOI inline edit, measurement units
2026-05-12 15:28:22 +02:00
.env.example
chore(env): document DOCUMENSO/MINIO vars + fix InMemoryBackend test stub
2026-05-11 14:04:28 +02:00
.gitattributes
chore: add .gitattributes to normalize line endings to LF
2026-04-22 02:02:46 +02:00
.gitignore
feat(ui): broad consistency sweep — sources, dates, comboboxes, milestones
2026-05-12 14:50:58 +02:00
.lintstagedrc.json
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
.prettierrc
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
01-CONSOLIDATED-SYSTEM-SPEC.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
02-FEATURE-INVENTORY.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
03-ARCHITECTURE-DECISIONS.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
04-ARCHITECTURE-COMPARISON.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
05-FINAL-ARCHITECTURE-DECISIONS.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
06-MASTER-FEATURE-SPEC.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
07-DATABASE-SCHEMA.md
docs: reflect data-model refactor in CLAUDE.md + DB schema overview
2026-04-26 14:14:34 +02:00
08-API-ENDPOINT-CATALOG.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
09-BUSINESS-RULES.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
10-AUTH-AND-PERMISSIONS.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
11-REALTIME-AND-BACKGROUND-JOBS.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
12-IMPLEMENTATION-SEQUENCE.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
13-UI-PAGE-MAP.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
14-TECHNICAL-DECISIONS.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
15-DESIGN-TOKENS.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
CLAUDE.md
feat(documenso): full v2 endpoint coverage + sequential signing + redirectUrl
2026-05-11 14:38:45 +02:00
components.json
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
design-system-preview.html
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
docker-compose.dev.yml
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
docker-compose.prod.yml
fix(audit-tier-1): timeouts, lifecycle, per-port Documenso, FK constraints
2026-05-05 19:52:58 +02:00
docker-compose.yml
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
Dockerfile
fix(audit-tier-6): validation, perms, ops/infra, per-port webhook secret
2026-05-05 21:03:31 +02:00
Dockerfile.dev
fix(audit-tier-6): validation, perms, ops/infra, per-port webhook secret
2026-05-05 21:03:31 +02:00
Dockerfile.worker
fix(build): make prepare tolerant of missing husky + bump deps (Phase 1a)
2026-05-08 16:15:34 +02:00
drizzle.config.ts
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
eslint.config.mjs
chore(dev): enable Turbopack and lift typedRoutes out of experimental
2026-05-09 04:09:56 +02:00
mockup-A-sidebar-dark.html
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
mockup-B-light-theme.html
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
mockup-C-bold-modern.html
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
next-env.d.ts
chore(dev): enable Turbopack and lift typedRoutes out of experimental
2026-05-09 04:09:56 +02:00
next.config.ts
feat(ui): broad consistency sweep — sources, dates, comboboxes, milestones
2026-05-12 14:50:58 +02:00
NOCODB-MIGRATION-MAPPING.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
package.json
feat(ui): broad consistency sweep — sources, dates, comboboxes, milestones
2026-05-12 14:50:58 +02:00
playwright.config.ts
fix(test): raise mobile-audit timeout to 30min for 4-viewport runs
2026-04-29 15:15:26 +02:00
pnpm-lock.yaml
feat(ui): broad consistency sweep — sources, dates, comboboxes, milestones
2026-05-12 14:50:58 +02:00
postcss.config.mjs
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
PROGRESS.md
docs: update PROGRESS.md with 2026-03-26 → 2026-04-22 changelog
2026-04-22 02:37:43 +02:00
SECURITY-GUIDELINES.md
Initial commit: Port Nimara CRM (Layers 0-4)
2026-03-26 11:52:51 +01:00
tailwind.config.ts
feat(mobile): add safe-area spacing utilities (pt-safe-top, pb-safe-bottom, etc.)
2026-04-29 13:56:53 +02:00
tsconfig.json
feat(platform): residential module + admin UI + reliability fixes
2026-04-27 21:54:32 +02:00
tsconfig.server.json
Fix Docker build and production server infrastructure
2026-04-08 15:31:33 -04:00
vitest.config.ts
test(infra): vitest globalSetup teardown purges test-port-* leaks
2026-04-28 13:28:15 +02:00
Description
No description provided
25 MiB
Languages
TypeScript 98.7%
HTML 1%
CSS 0.1%
Shell 0.1%