1. GitHub Security Flaw: Client-Side Guard in TD #525 Exposes All Soft-Deleted Team Documents to Any Authenticated User
A high-severity security vulnerability in a GitHub repository allows any authenticated user to bypass a client-side admin check and directly query the database for all soft-deleted team documents. The flaw, identified in a pre-PR scan for TD #525, stems from a critical mismatch between a frontend JavaScript guard and t...