clone/nocodb
1
0
Fork 0
mirror of https://github.com/nocodb/nocodb.git synced 2026-05-01 14:36:56 +00:00
Code Issues Packages Projects Releases Wiki Activity
41,516 Commits 627 Branches 344 Tags
9873330cba767e93f1d7638d4df788f9ba4be5ac
Commit Graph

650 Commits

Author SHA1 Message Date
DarkPhoenix2704
afd291da3f fix: lookup rendering fix 2026-04-09 06:34:53 +00:00
Ramesh Mane
e33a886b98 chore: lint 2026-04-04 13:38:43 +00:00
Ramesh Mane
74e253d8ba fix: formula render as url in lookup cell render issue 2026-04-02 14:44:14 +00:00
Ramesh Mane
340de38b68 fix: improve ws and base search functionality 2026-03-28 13:22:31 +00:00
Pranav
52697be76d fix: rollback assocModel meta on convertLinkToV2 failure + cleanup 2026-03-26 13:28:35 +00:00
Ramesh Mane
678a2ac7fb fix: link record dropdown resize issue 2026-03-23 12:39:10 +00:00
Ramesh Mane
4bff44ae7d fix: review changes 2026-03-18 06:00:22 +00:00
Ramesh Mane
850f458f8e revert: Mistakenly removed changes 2026-03-18 06:00:22 +00:00
Ramesh Mane
f4a3c157c4 fix: dark mode colors for button cell 2026-03-18 06:00:22 +00:00
Ramesh Mane
762f05533e fix: setup for button field dark mode changes 2026-03-18 06:00:20 +00:00
Ramesh Mane
38e0e691c8 fix: rollup field not respecting formula field formatting configuration 2026-03-16 15:06:08 +00:00
mertmit
27c3c19d78 chore: lint 
Signed-off-by: mertmit <mertmit99@gmail.com>
 2026-02-27 16:38:28 +05:30
mertmit
e754b88d5b fix: dompurify issue 
Signed-off-by: mertmit <mertmit99@gmail.com>
 2026-02-27 15:20:30 +05:30
mertmit
c4fcf94c20 fix(security): sanitize HTML in comments and v-html paths (GHSA-qxwq, GHSA-8vm4, GHSA-rcph, GHSA-wwp2) 
Stored XSS was possible through comments (backend accepted raw HTML,
frontend rendered via v-html without sanitization) and through formula/
long-text cells rendered with v-html.

Backend: Add DOMPurify.sanitize() to comment create and update in
CommentsService, stripping malicious HTML before storage.

Frontend: Replace v-html with v-dompurify-html in Comments.vue,
Formula.vue, and ExpandedText.vue for defense-in-depth. The
vue-dompurify-html plugin is already registered globally.
 2026-02-27 12:30:56 +05:30
Pranav C
b3b9f069a4 feat: LTAR v2 - Junction table implementation for all relation types 2026-02-26 14:43:56 +00:00
DarkPhoenix2704
a1225b87ff fix: button filters 2026-02-25 18:01:23 +00:00
DarkPhoenix2704
7945ab1b79 feat: conditional button visibility with filter-based conditions 2026-02-25 18:01:23 +00:00
Ramesh Mane
3d85f084cd chore: lint 2026-02-24 15:25:43 +00:00
Ramesh Mane
21e55e14ee chore(nc-gui): lint 2026-02-24 15:25:41 +00:00
Ramesh Mane
daccbb0789 breadcrumb 2026-02-24 15:25:39 +00:00
Ramesh Mane
40872dc3a2 nomenclature fix 2026-02-24 15:25:39 +00:00
Ramesh Mane
b7585866da clean up 2026-02-24 15:25:39 +00:00
Ramesh Mane
775c717fae fix: nested templates 2026-02-24 15:25:39 +00:00
Ramesh Mane
d3910590fa disable related field links 2026-02-24 15:25:39 +00:00
Ramesh Mane
524f7ed289 add record template outside 2026-02-24 15:25:39 +00:00
Ramesh Mane
a086b2e035 + New Record not allowed from templates 2026-02-24 15:25:39 +00:00
Ramesh Mane
e690787a50 fix: clean up 2026-02-24 15:25:38 +00:00
Ramesh Mane
f725427f3e nested record creation 2026-02-24 15:25:38 +00:00
Raju Udava
2dc59addf4 fix: link issue 2026-02-17 12:29:36 +00:00
Ramesh Mane
819d2f25e6 fix: render a-carousel only after component mounted 2026-01-17 10:29:17 +00:00
mertmit
69a29568c7 chore: sync 
Signed-off-by: mertmit <mertmit99@gmail.com>
 2026-01-10 00:21:02 +03:00
DarkPhoenix2704
bb501e28f4 fix: qr code fix 2025-10-22 08:17:10 +00:00
DarkPhoenix2704
68f6f5de25 fix: qr code fix 2025-10-22 08:17:10 +00:00
DarkPhoenix2704
a4dda5ed6d fix: show value below barcode and qr code 2025-10-22 08:17:09 +00:00
Ramesh Mane
6d193f4389 fix(nc-gui): add missing remove event listner 2025-10-16 14:14:56 +00:00
Ramesh Mane
f688af6085 fix(nc-gui): keep cursor pointer disabled 2025-10-14 08:15:18 +00:00
Ramesh Mane
8519c36a1d fix(nc-gui): keep button disabled and show invalid tooltip 2025-10-14 08:15:17 +00:00
Pranav C
b6141a5077 refactor: monaco lazy load and larger components lazy load 2025-10-07 22:30:52 +00:00
Ramesh Mane
f8889d0034 fix(nc-gui): dont use cursor pointer on bt tiles if expand record is disabled 2025-10-06 13:21:16 +00:00
Ramesh Mane
e70192df29 chore(nc-gui): lint 2025-10-06 13:21:15 +00:00
Ramesh Mane
b7cf7b6906 fix: Lock pre-filled as readonly is not working for virtual links fields 2025-10-06 13:21:15 +00:00
Ramesh Mane
45e36aaf41 Merge pull request #12384 from nocodb/nc-fix/bug-fixes-25-sep 
fix: Bug fixes 25 sep
 2025-09-26 12:51:42 +05:30
Ramesh Mane
199744f1b0 fix(Sentry TypeError): Cannot read properties of undefined (reading 'Invoices') 2025-09-25 11:43:34 +00:00
Ramesh Mane
47d893d358 fix(nc-gui): increase NcList item size in mobile mode 2025-09-25 09:34:38 +00:00
Ramesh Mane
60344b1a67 fix(nc-gui): expanded form button cell font weight issue 2025-09-16 15:46:22 +00:00
Ramesh Mane
8d18ffe813 fix(nc-gui): on trigger ai button data is directly getting saved in db #5042 2025-09-16 15:46:20 +00:00
Ramesh Mane
464d7cdbe2 fix(nc-gui): button alignment issue in expanded form 2025-09-16 15:46:20 +00:00
DarkPhoenix2704
ffcb3c963c fix: some corrections 2025-09-15 15:39:38 +00:00
DarkPhoenix2704
1da6f7153c fix: some corrections 2025-09-15 15:39:38 +00:00
DarkPhoenix2704
fa173f19a6 fix: remove the unused file 2025-09-15 15:39:38 +00:00