The public /api/gigs route accepts an unbounded numeric page parameter. Because the page is used to build the Supabase .range(...) offset, very large page values can create extremely large offsets before the query is sent.
Expected behavior: keep normal pagination unchanged, but cap huge page values to a safe upper bound before computing the range and returning pagination metadata.
The public
/api/gigsroute accepts an unbounded numericpageparameter. Because the page is used to build the Supabase.range(...)offset, very large page values can create extremely large offsets before the query is sent.Expected behavior: keep normal pagination unchanged, but cap huge page values to a safe upper bound before computing the range and returning pagination metadata.