Emanuel Almeida
22601e1680
Security: - Fix potential SQL injection in Savepoint class by sanitizing savepoint names - Only allow alphanumeric characters and underscores - Prefix with "sp_" if name starts with number - Limit to 63 characters (PostgreSQL identifier limit) Code quality: - Add missing radix parameter to parseInt calls in: - collections.ts (4 occurrences) - groups.ts (1 occurrence) - revisions.ts (1 occurrence) - users.ts (1 occurrence) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>