Showing AI reviews for avriti-backend
Project AI Score ?
59%
Quality Avg ?
64%
Security Avg ?
45%
Reviews ?
57

Review Result ?

jattin01/avriti-backend · bf895d1a
This commit introduces a reset password email view with a generated reset URL. However, it directly uses environment variables in the view, which can be risky and less flexible. There is also no indication of input validation or security measures for the token or email parameters, potentially increasing security risks. The commit message is brief and lacks detail.
Quality ?
70%
Security ?
40%
Business Value ?
60%
Maintainability ?
60%
Issues & Suggested Fixes ?
1AI detects the issue
2Shows file, line, or evidence
3Suggests the fix to apply
Security Issue
Where resources/views/emails/customer-reset-password.blade.php:10
Issue / Evidence security
Suggested Fix avoid constructing URLs with sensitive tokens directly in the view; move URL construction or token handling to a controller or helper method with validation
Quality
Where resources/views/emails/customer-reset-password.blade.php:10
Issue / Evidence quality
Suggested Fix consider adding input validation or encoding to prevent injection issues
Quality
Where commit message
Issue / Evidence quality
Suggested Fix provide more descriptive commit messages explaining the change and context
Code Change Preview · resources/views/emails/customer-reset-password.blade.php ?
Removed / Before Commit
- <title>Reset Password</title>
- </head>
- <body style="margin:0; padding:0; font-family: 'Basic', Arial, sans-serif; background:#f0f4f8;">
-   @php($resetUrl = rtrim(config('app.url'), '/') . '/reset-password?email=' . urlencode($email) . '&token=' . urlencode($token))
- <table width="420" cellpadding="0" cellspacing="0" border="0" style="max-width:500px; width:90%; margin:20px auto;background-color:#ffffff; border-radius:16px; overflow:hidden; box-shadow:0 4px 20px rgba(0,0,0,0.08);">
- <tr><td align="center" style="padding: 30px 20px 0 20px;"><img src="{{ url('img/logo1.png') }}" alt="Avriti" style="max-width:150px; width:100%;"></td></tr>
- <tr>
Added / After Commit
+ <title>Reset Password</title>
+ </head>
+ <body style="margin:0; padding:0; font-family: 'Basic', Arial, sans-serif; background:#f0f4f8;">
+   @php($resetUrl = rtrim(env('FRONTEND_URL', config('app.url')), '/') . '/reset-password?email=' . urlencode($email) . '&token=' . urlencode($token))
+ <table width="420" cellpadding="0" cellspacing="0" border="0" style="max-width:500px; width:90%; margin:20px auto;background-color:#ffffff; border-radius:16px; overflow:hidden; box-shadow:0 4px 20px rgba(0,0,0,0.08);">
+ <tr><td align="center" style="padding: 30px 20px 0 20px;"><img src="{{ url('img/logo1.png') }}" alt="Avriti" style="max-width:150px; width:100%;"></td></tr>
+ <tr>