BillTracker

History

null 8e7f977fef v0.20.5: Bulk payment input validation - Request body must contain `payments` array (breaking change from raw array) - Max 50 items per bulk request - Per-item validation: bill_id (integer regex + parseInt), paid_date (YYYY-MM-DD), amount (finite number >= 0) - Duplicate detection using bill_id + paid_date + amount composite key — skipped, not rejected - Response format: { created, skipped, errors } - Security fix: bill_id type coercion attack (parseInt('1abc') bypass) blocked via regex check - Security fix: Infinity amount bypass blocked via isFinite() check - Hudson audit: 5/7 PASS, 2 FAIL fixed (type coercion + Infinity)	2026-05-09 23:41:28 -05:00
..
utils.js	initial commit	2026-05-03 19:51:57 -05:00
version.js	v0.20.5: Bulk payment input validation	2026-05-09 23:41:28 -05:00

null 8e7f977fef v0.20.5: Bulk payment input validation

- Request body must contain `payments` array (breaking change from raw array)
- Max 50 items per bulk request
- Per-item validation: bill_id (integer regex + parseInt), paid_date (YYYY-MM-DD), amount (finite number >= 0)
- Duplicate detection using bill_id + paid_date + amount composite key — skipped, not rejected
- Response format: { created, skipped, errors }
- Security fix: bill_id type coercion attack (parseInt('1abc') bypass) blocked via regex check
- Security fix: Infinity amount bypass blocked via isFinite() check
- Hudson audit: 5/7 PASS, 2 FAIL fixed (type coercion + Infinity)

2026-05-09 23:41:28 -05:00

utils.js

initial commit

2026-05-03 19:51:57 -05:00

version.js

v0.20.5: Bulk payment input validation

2026-05-09 23:41:28 -05:00