🟢 #1 Close cross-tenant data leaks: RLS, tabular IDOR, folder scoping +186 -6 25d ago self by
WilliamACLove ↗ analysis ↗ GitHub ## Summary
WilliamACLove/mike-harvey-competition-legal-research-
A Mike fork from WilliamACLove that's been hardening the backend so one law firm's clients can't see another's.
This fork of Mike is maintained by WilliamACLove, and so far the visible work has been about one thing: making sure tenants stay walled off from each other. If you tried it today, you'd be looking at a build of Mike where chats, documents and folder structures are scoped more tightly to the client they belong to.
There's no rebrand here, no obvious niche pitch, and no public deployment story. What there is, is a clear signal about priorities - WilliamACLove has been treating cross-tenant leakage as something worth fixing carefully, which is the kind of thing legal-tech buyers tend to care about even when nobody's marketing it.
It's a small fork with a narrow focus rather than a sweeping reimagining. If you want to see the shape of the work, GitHub is one click away.
What's in it
- Tenant isolation Closes three separate paths that could let one client see another client's chats, documents or folder layout.
- Backend security focus The work that's been done so far reads as a deliberate sweep through multi-tenant boundaries rather than scattered fixes.
Direction
securitymulti-tenant
Activity
Three separate bugs let one client's chats, documents and folder layout leak into another client's view. This PR shuts all three.
Threads of work (detailed view)
WilliamACLove closes three paths to other tenants' data
Three separate bugs let one client's chats, documents and folder layout leak into another client's view. This PR shuts all three.
Pull requests (detailed view)
🟢 Open (1)
by
WilliamACLove · opened 25d ago WilliamACLove/mike-harvey-competition-legal-research- ← WilliamACLove/mike-harvey-competition-legal-research- · +186 -6 · self · ↗ analysis · ↗ GitHub