mirror of https://github.com/bitwarden/browser synced 2026-02-05 03:03:26 +00:00

Go to file

Claude b634c1afa9 Critical: Strengthen validation logic for newApplications field

Enhance validateOrganizationReportSummary() to enforce the same strict
validation constraints as isOrganizationReportSummary():
- Non-empty string validation (prevent empty strings)
- Maximum string length checks (prevent excessively long strings)
- Array length limits (prevent DoS via large arrays)

This prevents potential denial-of-service vulnerabilities where malicious
data could pass validation with empty strings or unbounded array/string
lengths.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>

2025-10-30 05:19:01 +00:00

.checkmarx

Update SAST preset to query set (#8569 )

2024-04-01 16:24:04 -04:00

.claude

Implement reusable Claude code review workflow (#16979 )

2025-10-27 16:25:40 +01:00

.codescene

disable code duplication check in unit tests (#6773 )

2023-11-06 15:48:34 -05:00

.github

[PM-19300] Session timeout policy (#16583 )

2025-10-28 20:28:34 +01:00

.husky

Update husky hooks (#7738 )

2024-01-30 06:50:54 -08:00

.storybook

[CL-427] Add skeleton loading components to the CL (#16728 )

2025-10-16 09:36:16 -04:00

.vscode

[PM-19731] Refactor encrypt service to expose key wrapping (#14080 )

2025-04-22 13:56:39 +00:00

apps

feat(AuthRouteConstants): [Auth/PM-27370] Convert auth routes to use constants (#16980 )

2025-10-29 19:28:21 -04:00

bitwarden_license

Critical: Strengthen validation logic for newApplications field

2025-10-30 05:19:01 +00:00

docs

refactor(nx): remove unneeded tsconfig.build.json & adjust nx docs (#16864 )

2025-10-14 11:07:23 -04:00

libs

feat(AuthRouteConstants): [Auth/PM-27370] Convert auth routes to use constants (#16980 )

2025-10-29 19:28:21 -04:00

scripts

[PM-25911] Add commercial sdk internal as dependency (#16883 )

2025-10-27 15:17:20 +01:00

.browserslistrc

[PM-6788][PM-7755] add babel/preset-env and browserslist (#9383 )

2024-05-30 18:42:26 -04:00

.editorconfig

Add support for migrated jslib (#2826 )

2022-06-03 18:01:07 +02:00

.git-blame-ignore-revs

add prettier formatting merge commit to .git-blame-ignore-revs (#7037 )

2023-11-29 17:53:26 -05:00

.gitattributes

Apply Prettier (#2238 )

2021-12-21 15:43:35 +01:00

.gitignore

Implement reusable Claude code review workflow (#16979 )

2025-10-27 16:25:40 +01:00

.npmrc

[PM-25911] Add commercial sdk internal as dependency (#16883 )

2025-10-27 15:17:20 +01:00

.nvmrc

[PM-22343] Bump non-cli to Node 22 (#15058 )

2025-06-26 18:05:37 -04:00

.prettierignore

[PM-5551] Removing Autofill v2 and AutofillOverlay Feature Flags (#7642 )

2024-01-22 17:11:07 +00:00

.prettierrc.json

Update CL documentation (#5379 )

2023-05-08 14:46:59 +02:00

angular.json

Add bit-web to angular.json (#14798 )

2025-05-16 09:14:21 +02:00

babel.config.json

[PM-6788] enable bugfixes in babel/preset-env (#9465 )

2024-05-31 17:59:39 -04:00

clients.code-workspace

[14415] Extend VS Code extensions. (#12604 )

2025-01-07 15:46:03 -05:00

CONTRIBUTING.md

Update README and CONTRIBUTING to point to contributing.bitwarden.com (#2771 )

2022-06-13 17:34:07 +10:00

eslint.config.mjs

[CL-901] [CL-903] Unowned - Prefer signal & change detection (#16949 )

2025-10-29 13:42:19 -05:00

jest.config.js

refactor(libs): consolidate messaging-internal into messaging library (#16386 )

2025-09-12 13:04:13 +02:00

jest.preset.js

feat(nx): add basic-lib generator for streamlined library creation (#14992 )

2025-06-05 14:20:23 -04:00

LICENSE_BITWARDEN.txt

Fix some references to master (#14578 )

2025-05-01 07:18:09 -07:00

LICENSE_GPL.txt

Prepare bitwarden_license directory (#2663 )

2022-05-09 17:50:15 +02:00

LICENSE.txt

Fix some references to master (#14578 )

2025-05-01 07:18:09 -07:00

nx.json

feat(nx): add basic-lib generator for streamlined library creation (#14992 )

2025-06-05 14:20:23 -04:00

package-lock.json

[deps] UI Foundation: Update chromatic to v13.3.1 (#16630 )

2025-10-29 13:51:25 -04:00

package.json

[deps] UI Foundation: Update chromatic to v13.3.1 (#16630 )

2025-10-29 13:51:25 -04:00

README.md

[PM-19046] Update README mobile references (#13990 )

2025-03-26 12:49:53 +00:00

SECURITY.md

Revise language on SECURITY.md

2022-03-15 15:39:14 -04:00

tailwind.config.js

Billing/pm 23385 premium modal in web after registration (#16182 )

2025-09-04 14:44:04 +00:00

tsconfig.base.json

refactor(libs): consolidate messaging-internal into messaging library (#16386 )

2025-09-12 13:04:13 +02:00

tsconfig.eslint.json

fix(eslint): extend tsconfig.base in tsconfig.eslint (#15082 )

2025-06-05 11:08:03 -04:00

tsconfig.json

Implement and extend tsconfig.base across projects (#14554 )

2025-06-02 20:38:17 +00:00

README.md

Bitwarden Client Applications

This repository houses all Bitwarden client applications except the mobile applications (iOS | android).

Please refer to the Clients section of the Contributing Documentation for build instructions, recommended tooling, code style tips, and lots of other great information to get you started.

bitwarden/server: The core infrastructure backend (API, database, Docker, etc).
bitwarden/ios: Bitwarden iOS Password Manager & Authenticator apps.
bitwarden/android: Bitwarden Android Password Manager & Authenticator apps.
bitwarden/directory-connector: A tool for syncing a directory (AD, LDAP, Azure, G Suite, Okta) to an organization.

We're Hiring!

Interested in contributing in a big way? Consider joining our team! We're hiring for many positions. Please take a look at our Careers page to see what opportunities are currently open as well as what it's like to work at Bitwarden.

Contribute

Code contributions are welcome! Please commit any pull requests against the main branch. Learn more about how to contribute by reading the Contributing Guidelines. Check out the Contributing Documentation for how to get started with your first contribution.

Security audits and feedback are welcome. Please open an issue or email us privately if the report is sensitive in nature. You can read our security policy in the SECURITY.md file.

Languages

TypeScript 81.8%

HTML 12.6%

SCSS 2.3%

JavaScript 1.6%

MDX 0.9%

Other 0.7%

README.md

Bitwarden Client Applications

Related projects:

We're Hiring!

Contribute