271db4557d
ci: remove paths filter from test workflow to fix branch protection
2026-01-01 20:08:53 +01:00
23759f1935
Merge pull request #11 from DanielVolz/copilot/remove-duplicate-code
...
Eliminate duplicate code: centralize database schema and date formatting utilities
2026-01-01 19:52:55 +01:00
1cb8dbdb95
Refactor frontend date formatting to eliminate duplication
...
Co-authored-by: DanielVolz <3275994+DanielVolz@users.noreply.github.com >
2026-01-01 12:46:11 +00:00
653e9e7fa8
Remove database schema duplication by creating shared schema-sql.ts module
...
Co-authored-by: DanielVolz <3275994+DanielVolz@users.noreply.github.com >
2026-01-01 12:42:53 +00:00
b6d7470fb1
Initial plan
2026-01-01 12:36:49 +00:00
3aeaf8f3b9
Merge pull request #10 from DanielVolz/feat/issue-templates
...
docs: add GitHub issue templates
2025-12-30 14:12:52 +01:00
f45e904f2f
docs: add GitHub issue templates
...
- Bug report template with deployment type, browser info, logs
- Feature request template with affected area, priority
- Config with link to discussions and README
- Optimize test.yml to skip tests for non-code changes
2025-12-30 14:07:51 +01:00
31c5437859
Merge pull request #4 from DanielVolz/dependabot/npm_and_yarn/backend/multi-3b7ba0192e
...
build(deps): bump esbuild, @vitest/coverage-v8 and vitest in /backend
2025-12-30 13:55:55 +01:00
316d976349
build(deps): bump esbuild, @vitest/coverage-v8 and vitest in /backend
...
Bumps [esbuild](https://github.com/evanw/esbuild ) to 0.27.2 and updates ancestor dependencies [esbuild](https://github.com/evanw/esbuild ), [@vitest/coverage-v8](https://github.com/vitest-dev/vitest/tree/HEAD/packages/coverage-v8 ) and [vitest](https://github.com/vitest-dev/vitest/tree/HEAD/packages/vitest ). These dependencies need to be updated together.
Updates `esbuild` from 0.21.5 to 0.27.2
- [Release notes](https://github.com/evanw/esbuild/releases )
- [Changelog](https://github.com/evanw/esbuild/blob/main/CHANGELOG-2024.md )
- [Commits](https://github.com/evanw/esbuild/compare/v0.21.5...v0.27.2 )
Updates `@vitest/coverage-v8` from 2.1.9 to 4.0.16
- [Release notes](https://github.com/vitest-dev/vitest/releases )
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.16/packages/coverage-v8 )
Updates `vitest` from 2.1.9 to 4.0.16
- [Release notes](https://github.com/vitest-dev/vitest/releases )
- [Commits](https://github.com/vitest-dev/vitest/commits/v4.0.16/packages/vitest )
---
updated-dependencies:
- dependency-name: esbuild
dependency-version: 0.27.2
dependency-type: indirect
- dependency-name: "@vitest/coverage-v8"
dependency-version: 4.0.16
dependency-type: direct:development
- dependency-name: vitest
dependency-version: 4.0.16
dependency-type: direct:development
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-12-30 13:54:23 +01:00
12d5aeb0fb
Merge pull request #9 from DanielVolz/fix/codeql-manual-trigger
...
ci: add explicit permissions to all workflow jobs
2025-12-30 13:43:15 +01:00
2d17fde8f1
ci: add explicit permissions to all workflow jobs
2025-12-30 13:40:17 +01:00
fa15650f52
Merge pull request #8 from DanielVolz/fix/codeql-manual-trigger
...
ci: add manual trigger to CodeQL workflow
2025-12-30 13:16:02 +01:00
dd716daa11
ci: add manual trigger to CodeQL workflow
2025-12-30 13:13:49 +01:00
a80cc43b06
Merge pull request #7 from DanielVolz/fix/codeql-alerts
...
ci: add explicit permissions to workflows
2025-12-30 13:08:30 +01:00
d405ff4b2b
ci: add explicit permissions to workflows
...
Fixes CodeQL 'Workflow does not contain permissions' warnings.
Sets minimal 'contents: read' at top level.
2025-12-30 13:03:24 +01:00
9c70eead9b
Merge pull request #6 from DanielVolz/feat/add-test-suite
...
Feat/add test suite
2025-12-30 12:54:29 +01:00
273d84e26c
ci: switch to CodeQL Advanced Setup
...
- Add custom codeql.yml workflow
- Configure to use codeql-config.yml
- Exclude js/missing-rate-limiting rule (false positive)
Rate limiting is implemented via @fastify/rate-limit plugin
2025-12-30 12:49:24 +01:00
6b54ecef4f
chore: add CodeQL config to suppress rate-limit false positives
...
Rate limiting IS implemented via @fastify/rate-limit plugin:
- Global: 100 req/min (index.ts)
- Auth routes: 5-10 req/min via config.rateLimit option
CodeQL doesn't recognize Fastify's plugin-based rate limiting pattern.
2025-12-30 12:46:05 +01:00
b8d5647980
security: add rate limiting to remaining auth routes
2025-12-30 12:42:42 +01:00
cb1810586d
security: fix CodeQL vulnerabilities (SSRF, XSS, rate limiting)
...
- Add URL validation to prevent SSRF attacks on notification endpoints
- Block private IPs (10.x, 172.16-31.x, 192.168.x, 169.254.x)
- Block localhost and internal hostnames
- Only allow HTTP/HTTPS protocols
- Add HTML escaping for medication names in email templates (XSS)
- Add stricter rate limiting for auth routes (5 req/15min for login/register)
- Add SSRF protection tests (405 tests total)
2025-12-30 11:52:00 +01:00
b5e12c7a95
docs: add testing and CI/CD documentation
2025-12-30 11:40:59 +01:00
3364f23196
Merge pull request #5 from DanielVolz/feat/add-test-suite
...
ci: Add test suite and CI pipeline
2025-12-30 11:36:09 +01:00
e5038e9843
ci: prevent duplicate test runs - tests only on PRs, inline tests for builds
2025-12-30 11:30:12 +01:00
d80b5243b3
Merge pull request #3 from DanielVolz/feat/add-test-suite
...
feat: add comprehensive test suite and CI pipeline
2025-12-30 11:19:36 +01:00
2b16e2c7dc
ci: only build docker images on main/tags, not on PRs
2025-12-30 11:18:01 +01:00
ba3ebd27f4
feat: add comprehensive test suite and CI pipeline
...
- Add 402 unit tests with 61.7% code coverage
- Add Vitest configuration with coverage reporting
- Extract testable utility functions from services
- Create test.yml workflow (runs on PR and push to main)
- Update docker-build.yml to require tests before building
- Add scheduler-utils.ts and server-config.ts for testable code
Test files added:
- auth.test.ts, medications.test.ts, planner.test.ts
- settings.test.ts, doses.test.ts, share.test.ts
- database.test.ts, server.test.ts, services.test.ts
- env.test.ts, translations.test.ts, integration.test.ts
- e2e-routes.test.ts, stock-calculation.test.ts
2025-12-30 11:14:52 +01:00
fe9310d3d4
feat: update version to 1.0.2 and rename strip terminology to blister in medication and planner routes
2025-12-30 00:07:28 +01:00
f2b20a8ffc
chore: remove secondary remote push prompts from release script
2025-12-29 23:57:04 +01:00
093aa419af
chore: release v1.0.2
2025-12-29 23:55:00 +01:00
8132da3c3d
feat: update package versions to 1.0.1, improve dose tracking timestamp logic, and enhance release script for signed tags
2025-12-29 23:54:29 +01:00
2b59233af2
chore: release v1.0.1
2025-12-29 22:34:52 +01:00
f341a2aad2
feat: update package versions to 1.0.0 and enhance release script for secondary remote support
2025-12-29 22:33:23 +01:00
263033adfd
feat: implement dose tracking cleanup on medication start date change
2025-12-29 22:28:18 +01:00
4e2920ddfc
feat: update workflow triggers to include paths for push and pull request events
2025-12-29 21:12:46 +01:00
f7ffefb719
feat: update MedAssist demo GIF for improved visual representation
2025-12-29 21:10:48 +01:00
c7f81a301f
feat: add release script for version management and tagging
2025-12-29 21:07:46 +01:00
f32c8c2e20
Refactor code structure for improved readability and maintainability
2025-12-29 20:54:47 +01:00
cf37400d34
feat: reset planner and range on user change for improved state management
2025-12-29 20:29:46 +01:00
85c411ba88
feat: add 'and' operator import for enhanced query capabilities
2025-12-29 20:03:38 +01:00
48ee9af536
feat: update dose retrieval to remove 30-day limit and add sharedBy field in share routes
2025-12-29 20:00:25 +01:00
c378d373d8
feat: enhance dose tracking with takenBy parsing and visual indicators
2025-12-29 19:31:34 +01:00
666306b416
Refactor medication model to use blisters and pills instead of strips and tabs
...
- Updated medication schema to replace stripsPerPack and tabsPerStrip with blistersPerPack and pillsPerBlister.
- Adjusted medication routes to handle new blister and pill structure, including calculations for total pills.
- Modified frontend components to reflect changes in medication data structure and ensure compatibility with new backend logic.
- Updated reminder scheduler and share routes to utilize the new medication model.
- Enhanced Docker configuration for better permissions handling during development.
2025-12-29 19:18:14 +01:00
dc0e364830
docs: simplify disclaimer in README.md for clarity
2025-12-28 23:36:51 +01:00
57da1bb6eb
feat: add automated release workflow
2025-12-28 22:50:57 +01:00
6cfdeca45b
docs: add acknowledgements section to README.md
2025-12-28 22:40:22 +01:00
7cd3382330
Merge pull request #1 from DanielVolz/dependabot/npm_and_yarn/backend/nodemailer-7.0.11
...
build(deps): bump nodemailer from 6.10.1 to 7.0.11 in /backend
2025-12-28 22:37:05 +01:00
7cc32c88d8
fix: update Docker images to use latest versions and add GitHub Actions workflow for building and pushing
2025-12-28 22:32:04 +01:00
2bf5ec557f
build(deps): bump nodemailer from 6.10.1 to 7.0.11 in /backend
...
Bumps [nodemailer](https://github.com/nodemailer/nodemailer ) from 6.10.1 to 7.0.11.
- [Release notes](https://github.com/nodemailer/nodemailer/releases )
- [Changelog](https://github.com/nodemailer/nodemailer/blob/master/CHANGELOG.md )
- [Commits](https://github.com/nodemailer/nodemailer/compare/v6.10.1...v7.0.11 )
---
updated-dependencies:
- dependency-name: nodemailer
dependency-version: 7.0.11
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-12-28 21:30:36 +00:00
a2036ce9f5
Remove package.json file from the repository
2025-12-28 22:19:28 +01:00
000677da61
Refactor code structure for improved readability and maintainability
2025-12-28 21:46:54 +01:00
Daniel Volz
copilot-swe-agent[bot]
dependabot[bot]