Skip to content

Latest commit

 

History

History
52 lines (39 loc) · 2.44 KB

_PRE_PUBLISH_FINDINGS.md

File metadata and controls

52 lines (39 loc) · 2.44 KB

Pre-Publish Findings

Issues Found Before Open Source Release

1. "EasyCut" Old Project Name References

The old project name "EasyCut" appears in many places and should be changed to "BarbersBuddies":

Firebase Configuration:

  • .firebaserc - project aliases use "easycut"
  • firebase.json - hosting target is "easycut"

Hardcoded Cloud Functions URLs:

  • src/components/AppointmentCard.js:229 - https://us-central1-easycut-2d3fa.cloudfunctions.net/cancelBooking
  • src/components/AppointmentRescheduleModal.js:255 - https://us-central1-easycut-2d3fa.cloudfunctions.net/rescheduleAppointment
  • src/components/BookNow.js:334 - https://us-central1-easycut-2d3fa.cloudfunctions.net/createBooking
  • src/components/ClientManagementDashboard.js:408 - https://us-central1-easycut-2d3fa.cloudfunctions.net/cancelBooking
  • src/components/MyAppointments.js:139 - https://us-central1-easycut-2d3fa.cloudfunctions.net/rescheduleAppointment
  • src/components/MyAppointments.js:169 - https://us-central1-easycut-2d3fa.cloudfunctions.net/shopMessage

Email Sender Names in functions/index.js:

  • Line 148: from: "EasyCut Bookings <bookings@barbersbuddies.com>"
  • Line 186: from: "EasyCut Bookings <bookings@barbersbuddies.com>"
  • Line 337: from: "EasyCut Bookings <bookings@barbersbuddies.com>"
  • Line 363: from: "EasyCut Bookings <bookings@barbersbuddies.com>"
  • Line 386: from: "EasyCut Bookings <bookings@barbersbuddies.com>"
  • Line 406: from: "EasyCut Bookings <bookings@barbersbuddies.com>"
  • Line 455: from: "EasyCut <noreply@barbersbuddies.com>"
  • Line 684: from: "EasyCut Reminders <reminders@barbersbuddies.com>"
  • Line 767, 782, 794, 811, 949, 1000: Various EasyCut references

functions/firebase-functions.js:

  • Multiple "EasyCut" references in email templates

2. No Curse Words Found ✅

Searched for: fuck, shit, damn, crap, ass, stupid, idiot, dumb Result: Only false positives (e.g., "className" contains "ass")

3. No Personal Names Found ✅

Searched for: Othman, Adi, Khanto, oasrvadmin Result: Only false positives (e.g., "Loading" contains "adi")

4. No Exposed Secrets ✅

All secrets moved to environment variables in previous security audit.

Recommended Actions

  1. Option A (Quick): Leave Firebase project ID as-is (it's just an identifier)
  2. Option B (Clean): Move Cloud Functions URLs to environment variables
  3. Required: Replace "EasyCut" branding with "BarbersBuddies" in email templates