[Security Fix] SAST: NoSQL/server-side JS injection via $where with unsanitized `threshold` query ...#413

Open

okaypatrick wants to merge 1 commit into

OWASP:masterfrom

okaypatrick:fix/security-80952f91

Commits on May 18, 2026

fix(sast): NoSQL/server-side JS injection via $where with unsanitized `threshold` query parameter.
okaypatrick
committed