Skip to content

chore: harden external links and clean auth flow#1480

Open
ranjiGT wants to merge 3 commits intorecodehive:gh-pagesfrom
ranjiGT:chore/githubbadge-link-and-security-cleanups
Open

chore: harden external links and clean auth flow#1480
ranjiGT wants to merge 3 commits intorecodehive:gh-pagesfrom
ranjiGT:chore/githubbadge-link-and-security-cleanups

Conversation

@ranjiGT
Copy link
Copy Markdown
Contributor

@ranjiGT ranjiGT commented Apr 22, 2026
edited
Loading

@sanjay-kv This PR is for some security fixes and cleaning up the repo, requesting a check!
#1480

Summary

This PR improves the GitHub badge page and applies security and cleanup fixes across the project.

What changed

  • Cleaned up invalid HTML in the achievements table by removing an extra closing table cell.
  • Removed duplicate stylesheet/script include issues on the GitHub badge page.
  • Added rel="noopener noreferrer" to external links that use target="_blank".
  • Removed sensitive OAuth debug logs from frontend and backend authentication flow.
  • Removed duplicate GitHub auth handler execution in login flow to avoid repeated requests.

Why this change

  • Improves correctness of user-facing documentation links.
  • Reduces security risk from reverse-tabnabbing on external links.
  • Avoids leaking sensitive auth information in logs.
  • Improves maintainability and prevents unnecessary duplicate auth calls.

Testing done

  • Opened the GitHub badge page locally and verified the updated tutorial link is visible and correct.
  • Verified layout renders correctly after HTML cleanup.
  • Checked that external links still open normally.
  • Confirmed no editor-reported errors in modified files.

Notes

Co-author has been added in commit metadata:
Co-authored-by: sanjay-kv sanjay-kv@users.noreply.github.com

ranjiGT and others added 3 commits April 21, 2026 20:21
@ranjiGT @sanjay-kv
fix: correct YouTube link for Pair Extraordinaire badge tutorial
39a0249 
Updated the incorrect YouTube URL for the Pair Extraordinaire badge
video tutorial in githubbadge.html.

Old URL: https://youtu.be/BNKSlT8jLQ0
New URL: https://www.youtube.com/watch?v=ZoNO_e8PjiM

Co-authored-by: sanjay-kv <sanjay-kv@users.noreply.github.com>
@ranjiGT @sanjay-kv
chore: harden external links and clean auth flow
5c5046b 
- add rel="noopener noreferrer" for target="_blank" links\n- remove duplicate GitHub auth handler call in login flow\n- remove sensitive OAuth debug logs\n- fix githubbadge HTML cleanup (duplicate CSS include, extra </td>, duplicate FA include)

Co-authored-by: sanjay-kv <sanjay-kv@users.noreply.github.com>
@ranjiGT
Merge branch 'gh-pages' into chore/githubbadge-link-and-security-clea…
cdf9df0 
…nups
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ranjiGT