Gandalf/sofarr
1
0
Fork 0
Code Issues 1 Pull Requests Actions 1 Packages Projects Releases 15 Wiki Activity
Files
b608fa0337bc005c15ea4652a51e0c88fb913ccd
sofarr/server/utils
History
Gronod 8fa20c6990 fix(security #10): sanitize error details to prevent API key leakage 
Added server/utils/sanitizeError.js which redacts:
- ?apikey= query parameters (SABnzbd passes key in URL)
- ?token= query parameters
- X-Api-Key / X-MediaBrowser-Token / X-Emby-Authorization header
  values if they appear in the error message string

Applied to all catch blocks in emby.js, sabnzbd.js, sonarr.js,
radarr.js, and dashboard.js. Internal error.message still logged
server-side (unredacted) for debugging.
2026-05-16 16:22:11 +01:00
..
cache.js
feat: add admin-only status page with cache stats
2026-05-16 00:32:16 +01:00
config.js
feat: fix download-to-user matching, add cover art to downloads
2026-05-15 14:54:21 +01:00
logger.js
feat: fix download-to-user matching, add cover art to downloads
2026-05-15 14:54:21 +01:00
poller.js
Revert "perf: split into fast poll + slow-cached library fetches"
2026-05-16 00:32:16 +01:00
qbittorrent.js
perf: persist qBittorrent clients between requests
2026-05-16 00:32:16 +01:00
sanitizeError.js
fix(security #10): sanitize error details to prevent API key leakage
2026-05-16 16:22:11 +01:00