Full deployment history for this project.
⥠Bolt: Replace img tags with next/image Replaced raw <img> tags with Next.js <Image> components in about.tsx and partners.tsx to improve performance by enabling automatic lazy-loading and modern image formats. Also added an entry to the bolt journal. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
đ¨ Palette: Improve Mobile Menu Accessibility - Added `aria-expanded`, `aria-controls`, and dynamic `aria-label` to the mobile menu button. - Added `focus-visible` styling to the mobile menu button for keyboard navigation. - Fixed an unrelated build failure in `app/api/contact/route.ts` where a variable was declared multiple times. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
Fix DoS vulnerability by adding strict input validation via Zod Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
đĄď¸ Sentinel: [CRITICAL] Fix Denial of Service in Contact API Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
đĄď¸ Sentinel: [MEDIUM] Fix DoS vulnerability via missing input length limits Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
đĄď¸ Sentinel: [HIGH] Fix payload-based DoS in contact API Added strict length validation to the contact form API route using Zod to prevent malicious actors from sending excessively large payloads which could cause memory exhaustion and Denial of Service. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
đ¨ Palette: Add aria-label to service selection dropdown Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
Merge pull request #1 from mbarbine/palette-add-skip-to-content-link-6479376196302088721 đ¨ Palette: Add skip-to-content link for improved keyboard navigation
Merge pull request #2 from mbarbine/sentinel/input-validation-dos-fix-12502212797719107262 đĄď¸ Sentinel: [MEDIUM] Add input validation limits to Contact API
đĄď¸ Sentinel: [MEDIUM] Add input validation limits to Contact API đ¨ Severity: MEDIUM đĄ Vulnerability: Missing input validation bounds in `/api/contact` making it susceptible to DoS attacks via excessively large string payloads. đŻ Impact: Attackers could send massive payloads (e.g., 10MB+) to overwhelm the server's memory allocation and processing, degrading performance or causing crashes. đ§ Fix: Implemented `zod` schema to validate all input fields and enforce strict maximum length limits (e.g., max 100 for names, 5000 for messages). Failed validations return an immediate 400 Bad Request. â Verification: Ran a custom `fetch` script simulating a 10MB input payload, verifying it now correctly rejects the request with a 400 status code before processing. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
feat(a11y): add skip-to-content link in layout Adds a visually hidden skip-to-content link as the first focusable element in the layout to allow screen reader and keyboard-only users to easily bypass the persistent urgent banner and navigation header. Co-authored-by: mbarbine <3211492+mbarbine@users.noreply.github.com>
Initialized repository for chat DogStar Cybernetics landing page Co-authored-by: Michael Barbine <3211492+mbarbine@users.noreply.github.com>