Skip to content

feat: server-to-server Outlook/Exchange calendar sync#41326

Draft
milton-rucks wants to merge 18 commits into
developfrom
feat/server-calendar-sync
Draft

feat: server-to-server Outlook/Exchange calendar sync#41326
milton-rucks wants to merge 18 commits into
developfrom
feat/server-calendar-sync

docs(calendar-sync): testing guide for M365 tenant and on-prem Exchan…

5117a4a
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL failed Jul 12, 2026 in 3s

3 new alerts including 3 high severity security vulnerabilities

New alerts in code changed by this pull request

Security Alerts:

  • 3 high

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 99 in apps/meteor/ee/server/lib/calendarSync/providers/ews/ewsHttp.ts

See this annotation in the file changed.

Code scanning / CodeQL

Disabling certificate validation High

Disabling certificate validation is strongly discouraged.

Check failure on line 83 in apps/meteor/ee/server/lib/calendarSync/providers/ews/ntlm.ts

See this annotation in the file changed.

Code scanning / CodeQL

Use of a broken or weak cryptographic algorithm High

A broken or weak cryptographic algorithm
depends on
sensitive data from an access to username
.
A broken or weak cryptographic algorithm
depends on
sensitive data from a call to parseNtlmUsername
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to username
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to username
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to username
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to username
.

Check failure on line 15 in apps/meteor/ee/server/lib/calendarSync/providers/graph/clientAssertion.ts

See this annotation in the file changed.

Code scanning / CodeQL

Use of a broken or weak cryptographic algorithm High

A broken or weak cryptographic algorithm
depends on
sensitive data from an access to certificatePem
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to certificatePem
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to certificatePem
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to certificatePem
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to certificatePem
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to certificatePem
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to TEST_CERT
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to TEST_CERT
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to TEST_CERT
.
A broken or weak cryptographic algorithm
depends on
sensitive data from an access to TEST_CERT
.