refactor(WEB): Server Action 공통화 및 보안 강화

- executeServerAction 공통 유틸 도입으로 actions.ts 대폭 간소화 (50+개 파일) - sanitize 유틸 추가 (XSS 방지) - middleware CSP 헤더 추가 및 Open Redirect 방지 - 프록시 라우트 로깅 개발환경 한정으로 변경 - 프로덕션 불필요 console.log 제거 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-02-09 16:14:06 +09:00
parent d014227e9c
commit 55e0791e16
85 changed files with 7211 additions and 17638 deletions
--- a/src/components/common/NoticePopupModal/NoticePopupModal.tsx
+++ b/src/components/common/NoticePopupModal/NoticePopupModal.tsx
@@ -5,6 +5,7 @@ import * as DialogPrimitive from '@radix-ui/react-dialog';
 import { Checkbox } from '@/components/ui/checkbox';
 import { Button } from '@/components/ui/button';
 import { cn } from '@/components/ui/utils';
+import { sanitizeHTML } from '@/lib/sanitize';
 /* eslint-disable @next/next/no-img-element */

 // ============================================
@@ -131,7 +132,7 @@ export function NoticePopupModal({ popup, open, onOpenChange }: NoticePopupModal
              <p className="text-muted-foreground mb-2">내용</p>
              <div
                className="prose prose-sm max-w-none"
-                dangerouslySetInnerHTML={{ __html: popup.content }}
+                dangerouslySetInnerHTML={{ __html: sanitizeHTML(popup.content) }}
              />
            </div>