fix: validate render IPC payload before spawning renderer

## Finding
render:start accepts renderer-provided payload values and directly serializes them into the render process argument string. Width, height, fps, frame count, workers, preset, and ffmpeg threads are not runtime validated in the Electron main process.

## Evidence
- electron/render-settings-preload.ts exposes startRender through contextBridge.
- electron/main.ts startRenderProcess builds argsString directly from RenderStartPayload.

## Acceptance criteria
- Add main-process validation for render:start payloads.
- Reject non-finite, unsafe, or out-of-range values before spawning.
- Keep the preset/encode allowlist explicit.
- npm run build:electron passes.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: validate render IPC payload before spawning renderer #8

Finding

Evidence

Acceptance criteria

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

fix: validate render IPC payload before spawning renderer #8

Description

Finding

Evidence

Acceptance criteria

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions