Skip to content

[Bug] Card component fabricates ratings, review counts, and discounts from product ID hash — deceptive to users #295

Open
Open
[Bug] Card component fabricates ratings, review counts, and discounts from product ID hash — deceptive to users#295
Assignees
Suman-gif110
Labels
GSSoC '26level:criticalquality:cleanquality:exceptionaltype:feature
@Suman-gif110

Description

@Suman-gif110
Suman-gif110
opened on Jun 13, 2026

Description

The current validation only enforces a minimum password length of 8 characters. It does not require uppercase letters, lowercase letters, numbers, or special characters.

Problem

Weak passwords can still pass validation.
Increased risk of brute-force and credential-stuffing attacks.
Frontend and backend validation rules may become inconsistent.

Proposed Solution

Enforce strong password requirements using Joi patterns.
Require:
At least one uppercase letter
At least one lowercase letter
At least one number
At least one special character
Ensure registration and login validation remain consistent.

Expected Outcome
Improved account security and stronger authentication practices.

Please assign this issue to me under GSSoC 2026.

Metadata

Metadata

Assignees

Labels

GSSoC '26level:criticalquality:cleanquality:exceptionaltype:feature

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions