fix: access team's github apps only

app/Livewire/Source/Github/Change.php

@@ -93,11 +93,10 @@ class Change extends Component
     // }
     public function mount()
     {
+        try {
             $github_app_uuid = request()->github_app_uuid;
-        $this->github_app = GithubApp::where('uuid', $github_app_uuid)->first();
+            $this->github_app = GithubApp::ownedByCurrentTeam()->whereUuid($github_app_uuid)->firstOrFail();
-        if (! $this->github_app) {
+
-            return redirect()->route('source.all');
-        }
             $this->applications = $this->github_app->applications;
             $settings = instanceSettings();
             $this->github_app->makeVisible('client_secret')->makeVisible('webhook_secret');
@@ -139,6 +138,10 @@ class Change extends Component
                 $this->webhook_endpoint = $this->ipv4;
                 $this->is_system_wide = $this->github_app->is_system_wide;
             }
+        } catch (\Throwable $e) {
+            return handleError($e, $this);
+        }
+
     }
 
     public function submit()

app/Models/GithubApp.php

@@ -31,6 +31,11 @@ class GithubApp extends BaseModel
         });
     }
 
+    public static function ownedByCurrentTeam()
+    {
+        return GithubApp::whereTeamId(currentTeam()->id);
+    }
+
     public static function public()
     {
         return GithubApp::whereTeamId(currentTeam()->id)->whereisPublic(true)->whereNotNull('app_id')->get();

app/Models/GitlabApp.php

@@ -9,6 +9,11 @@ class GitlabApp extends BaseModel
         'app_secret',
     ];
 
+    public static function ownedByCurrentTeam()
+    {
+        return GitlabApp::whereTeamId(currentTeam()->id);
+    }
+
     public function applications()
     {
         return $this->morphMany(Application::class, 'source');