OTP code field has no length/format validation #15

New issue

Open

opened 2026-02-27 21:22:08 -05:00 by toph · 0 comments

toph commented 2026-02-27 21:22:08 -05:00

Owner

Copy link

auth.remote.ts:69
accepts any non-empty string. Add v.regex(/^\d{4,8}$/) or at least v.maxLength(10) for defense in depth

auth.remote.ts:69 accepts any non-empty string. Add v.regex(/^\d{4,8}$/) or at least v.maxLength(10) for defense in depth

toph added the

bug

label 2026-02-27 21:22:08 -05:00

cesar was assigned by toph 2026-02-27 21:22:08 -05:00

Sign in to join this conversation.

auth

Branches Tags

Clear current reference

main

summoners-n-champs

Clear current reference

No results found.

Labels

Clear labels   

???

More information is needed

  

bug

Something is not working

  

duplicate

This issue or pull request already exists

  

enhancement

New feature

No labels

???

bug

duplicate

enhancement

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

cesar

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

toph/spellbinder#15

No description provided.