 kitos
|
5e8b5ee33c
|
fix(deps): update frontend lockfile to resolve 39 Dependabot security alerts
Aegis CI / lint-and-test (push) Has been cancelled
npm audit fix updated 15 packages resolving all 39 vulnerabilities:
- axios: prototype pollution, SSRF, credential leak, ReDoS gadgets
- vite: server.fs.deny bypass, path traversal (dev-only)
- react-router: XSS, DoS, open redirect
- rollup: arbitrary file write (dev-only)
- lodash: code injection, prototype pollution
- picomatch: ReDoS, method injection (dev-only)
- follow-redirects: auth header leak
- postcss: XSS (dev-only)
|
2026-06-12 09:50:31 +00:00 |
|
 kitos
|
591b5df250
|
feat: Phase 7 - Frontend scaffolding and auth (T-023, T-024, T-025)
T-023: Initialize React project
- Vite + React 19 + TypeScript scaffold
- Tailwind CSS v4 with @tailwindcss/vite plugin
- Dependencies: react-router-dom, axios, @tanstack/react-query, lucide-react
- Project structure: api/, components/, pages/, context/, types/, hooks/, lib/
T-024: API client and auth context
- Axios client with JWT interceptor (auto-attach token, clear on 401)
- login() and getMe() API functions
- AuthContext: user state, login, logout, isAuthenticated, isLoading
- Token persistence via localStorage with hydration on mount
- TypeScript types for all backend models
T-025: Login page and layout
- LoginPage with form, error handling, redirect on success
- Layout with sidebar + header + Outlet
- Sidebar with role-aware navigation (System only for admin)
- ProtectedRoute wrapper with role-based access control
- Routes: /login, /dashboard, /techniques, /tests, /system
|
2026-02-06 16:09:50 +01:00 |
|