Skip to content

Implement pagination and search functionality for bills and proceedings #56

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
aliirz merged 1 commit into from
Jan 1, 2026
Merged

Implement pagination and search functionality for bills and proceedings #56

aliirz merged 1 commit into from
Jan 1, 2026

Conversation

@aliirz
Copy link
Contributor

@aliirz aliirz commented Jan 1, 2026

closes #55

@aliirz
Implement pagination and search functionality for bills and proceedin…
38b5a1c 
…gs pages

- Enhanced the bills and proceedings API routes to support pagination and search queries.
- Added a new Pagination component for better navigation through results.
- Updated the BillsPage and ProceedingsPage components to utilize the new API features, including search input and pagination controls.
- Integrated Google Analytics tracking for user interactions on the new search and pagination features.
@vercel
Copy link

vercel bot commented Jan 1, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Review Updated (UTC)
numainda Ready Ready Preview, Comment Jan 1, 2026 11:00am

@aliirz aliirz merged commit 90d8e0b into main Jan 1, 2026
3 of 4 checks passed
@claude
Copy link

claude bot commented Jan 1, 2026

Pull Request Review: Pagination and Search Functionality

Thank you for implementing pagination and search for bills and proceedings! This is a valuable feature that will significantly improve UX as the database grows.

✅ Strengths

  1. Clean Implementation: The code follows React best practices with proper hooks usage and state management
  2. Consistent Pattern: Bills and proceedings implementations mirror each other, making the codebase predictable
  3. Good UX: Search resets to page 1, smooth scrolling on page changes, and proper loading/error states
  4. Type Safety: Excellent TypeScript usage with proper interfaces
  5. Accessibility: Screen reader text for pagination buttons is a nice touch

🔴 Critical Issues

1. SQL Injection Vulnerability (Security)

Location: app/api/bills/route.ts:19-21 and app/api/proceedings/route.ts:18

The search functionality is vulnerable to SQL injection. User input is directly interpolated into the LIKE pattern. Special SQL characters (%, _, ) could cause unintended behavior.

Recommendation: Sanitize input by escaping SQL LIKE wildcards before using in queries.

2. Missing Input Validation

Location: Both API routes, lines 12-14

No bounds checking for page/limit parameters. Malicious users could send negative numbers or extremely large values causing DoS.

Recommendation: Add validation with min/max bounds (e.g., limit capped at 100).

3. Race Condition in Client Components

Location: app/bills/page.tsx:67 and app/proceedings/page.tsx:66

Rapid searches or page changes can cause race conditions where responses arrive out of order.

Recommendation: Implement request cancellation using AbortController in useEffect cleanup.

4. Debouncing Missing for Search

Location: app/bills/page.tsx:77-80

Every keystroke triggers a database query. Add debouncing (300-500ms) to reduce query frequency.

⚠️ High Priority Issues

5. Performance: N+1 Query Issue

You're executing 2 separate queries for every request (fetch data + count). Consider using PostgreSQL window functions to get count in a single query.

6. Error Handling for Edge Cases

Location: app/api/bills/route.ts:35-38

Destructuring could fail if query returns no results. Add optional chaining and fallback values.

💡 Medium Priority Suggestions

  1. Code Duplication: Bills and proceedings implementations are nearly identical. Consider creating a reusable custom hook.

  2. Search UX: Add clear button, URL params for shareable links, loading indicator in search input.

  3. Type Safety: Count query returns number OR bigint. Explicitly convert to Number.

  4. Dark Mode: Use text-muted-foreground instead of text-gray-500.

📝 Testing Recommendations

No tests were added. Consider adding API route tests, component tests, and integration tests.

🎯 Summary

Must Fix Before Merge:

  • SQL injection vulnerability
  • Input validation for page/limit
  • Race condition handling
  • Debounce search input

Should Fix Soon:

  • N+1 query optimization
  • Error handling
  • Test coverage

📊 Overall Assessment

Code Quality: ⭐⭐⭐⭐ (4/5)
Security: ⭐⭐⭐ (3/5) - Needs input sanitization
Performance: ⭐⭐⭐ (3/5) - Needs debouncing and optimization
UX: ⭐⭐⭐⭐ (4/5)

This is a solid implementation! Address the critical security and race condition issues before merging. Great work! 🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add search and pagination for Bills and Proceedings

2 participants

@aliirz