feat: protect feedback screenshots
This commit is contained in:
@@ -72,6 +72,7 @@ This is product-level support data for the SaaS operator. It may capture workspa
|
||||
|
||||
- Screenshots are uploaded through the blob storage abstraction, not embedded in feedback database rows.
|
||||
- Feedback screenshots should use a dedicated storage area or prefix.
|
||||
- Feedback screenshot records store blob container/path metadata and expose a protected API download path, not a public blob URL.
|
||||
- Annotated captures are exported as compressed image files.
|
||||
- Backend upload size and content type validation must be enforced.
|
||||
- The UI must show a friendly error when an image is too large or invalid.
|
||||
|
||||
Reference in New Issue
Block a user