Prateek Hegde 9cdfb20b12

chore: bump sha.js from 2.4.11 to 2.4.12 (fix security issue: CVE-2025-9288) (#11639) ...

* chore: bump sha.js from 2.4.11 to 2.4.12 (fix security issue: CVE-2025-9288)

* test: add unit tests for hash() to ensure sha.js upgrade compatibility

- Verify SHA1 output for known inputs
- Test truncation with options.length
- Handle empty string input
- Confirm deterministic behavior for identical inputs

* removed .only from test/unit/util/string-utils.ts to run all the unit tests

* fix(hash): ensure negative or zero options.length returns full hash

- Updated hash() to only truncate when options.length > 0
- Prevents accidental truncation when options.length is negative
- Maintains expected behavior for full-length hash

* added strict +ve number input validation for hash()

* simplified the logic to check number len before applying slice() in StringUtils.ts->hash()

---------

Co-authored-by: Prateek Hegde <prateek.hegde@deliverysolutions.co>
Co-authored-by: Prateek Hegde <prateek@Prateeks-MacBook-Pro.local>

2025-09-10 09:19:54 +12:00

..

benchmark

test: remove unused type parameter from decorators (#11412)

2025-04-14 09:25:31 -06:00

core

fixing failing test

2023-04-06 10:57:00 +05:00

functional

feat: allow VirtualColumns to be initially non-selectable (#11586)

2025-08-18 21:28:55 +03:00

github-issues

fix: preserve useIndex when cloning a QueryExpressionMap (or a QueryBuilder) (#10679)

2025-07-04 23:16:50 +02:00

integration

style: lint repository (#11346)

2025-03-20 22:15:39 +02:00

other-issues

fix(query-builder): handle empty result set when offset exceeds total (#11634)

2025-09-06 10:36:38 +12:00

unit

chore: bump sha.js from 2.4.11 to 2.4.12 (fix security issue: CVE-2025-9288) (#11639)

2025-09-10 09:19:54 +12:00

utils

fix: add stricter type-checking and improve event loop handling (#11540)

2025-06-22 11:51:29 +02:00