iven/hms

Files

iven 931edc3025 fix(security): 补全 XSS sanitize + 修复 sender_id 身份伪造

安全审计修复：
- 补全 6 个 DTO 的 sanitize 方法（diagnosis/consent/alert/medication_record/medication_reminder/follow_up_template）
- 4 个 handler 添加 .sanitize() 调用（diagnosis/consent/alert_rule/medication_record）
- 修复咨询消息 sender_id/sender_role 从客户端提交改为服务端从 JWT 提取
- 修复小程序 AI 报告 markdownToHtml XSS（添加 sanitizeHtml 过滤）

2026-04-30 10:21:52 +08:00

e2e

fix(web+health): E2E flow 测试全面修复 — 15/15 通过

2026-04-29 06:04:22 +08:00

public

test: Phase 0 测试基础设施 — TestApp + MSW + 覆盖率工具 + CI

2026-04-27 21:12:08 +08:00

src

fix(security): 补全 XSS sanitize + 修复 sender_id 身份伪造

2026-04-30 10:21:52 +08:00

test-results

fix(用户管理): 修复用户列表页面加载失败问题

2026-04-19 08:46:28 +08:00

.gitignore

feat: complete Phase 1 infrastructure

2026-04-11 01:07:31 +08:00

eslint.config.js

feat: complete Phase 1 infrastructure

2026-04-11 01:07:31 +08:00

index.html

feat(web): 多主题系统 — 4 套主题 + CSS 变量 + Ant Design 动态主题

2026-04-28 00:20:02 +08:00

package.json

test: Phase 0 测试基础设施 — TestApp + MSW + 覆盖率工具 + CI

2026-04-27 21:12:08 +08:00

playwright.config.ts

fix(web+health): E2E flow 测试全面修复 — 15/15 通过

2026-04-29 06:04:22 +08:00

pnpm-lock.yaml

feat(web): 多主题系统 — 4 套主题 + CSS 变量 + Ant Design 动态主题

2026-04-28 00:20:02 +08:00

README.md

feat: complete Phase 1 infrastructure

2026-04-11 01:07:31 +08:00

tsconfig.app.json

feat: complete Phase 1 infrastructure

2026-04-11 01:07:31 +08:00

tsconfig.json

feat: complete Phase 1 infrastructure

2026-04-11 01:07:31 +08:00

tsconfig.node.json

feat: complete Phase 1 infrastructure

2026-04-11 01:07:31 +08:00

vite.config.ts

chore(web): 降低 chunkSizeWarningLimit 从 600 至 500

2026-04-28 19:28:37 +08:00

vitest.config.ts

test: Phase 0 测试基础设施 — TestApp + MSW + 覆盖率工具 + CI

2026-04-27 21:12:08 +08:00

README.md

React + TypeScript + Vite

This template provides a minimal setup to get React working in Vite with HMR and some ESLint rules.

Currently, two official plugins are available:

@vitejs/plugin-react uses Oxc
@vitejs/plugin-react-swc uses SWC

React Compiler

The React Compiler is not enabled on this template because of its impact on dev & build performances. To add it, see this documentation.

Expanding the ESLint configuration

If you are developing a production application, we recommend updating the configuration to enable type-aware lint rules:

export default defineConfig([
  globalIgnores(['dist']),
  {
    files: ['**/*.{ts,tsx}'],
    extends: [
      // Other configs...

      // Remove tseslint.configs.recommended and replace with this
      tseslint.configs.recommendedTypeChecked,
      // Alternatively, use this for stricter rules
      tseslint.configs.strictTypeChecked,
      // Optionally, add this for stylistic rules
      tseslint.configs.stylisticTypeChecked,

      // Other configs...
    ],
    languageOptions: {
      parserOptions: {
        project: ['./tsconfig.node.json', './tsconfig.app.json'],
        tsconfigRootDir: import.meta.dirname,
      },
      // other options...
    },
  },
])

You can also install eslint-plugin-react-x and eslint-plugin-react-dom for React-specific lint rules:

// eslint.config.js
import reactX from 'eslint-plugin-react-x'
import reactDom from 'eslint-plugin-react-dom'

export default defineConfig([
  globalIgnores(['dist']),
  {
    files: ['**/*.{ts,tsx}'],
    extends: [
      // Other configs...
      // Enable lint rules for React
      reactX.configs['recommended-typescript'],
      // Enable lint rules for React DOM
      reactDom.configs.recommended,
    ],
    languageOptions: {
      parserOptions: {
        project: ['./tsconfig.node.json', './tsconfig.app.json'],
        tsconfigRootDir: import.meta.dirname,
      },
      // other options...
    },
  },
])