feat: disallow {} in member names

backend/db/member.go

@@ -35,7 +35,7 @@ const (
 )
 
 // member names must match this regex
-var memberNameRegex = regexp.MustCompile("^[^@\\?!#/\\\\[\\]\"'$%&()+<=>^|~`,]{1,100}$")
+var memberNameRegex = regexp.MustCompile("^[^@\\?!#/\\\\[\\]\"\\{\\}'$%&()+<=>^|~`,]{1,100}$")
 
 func MemberNameValid(name string) bool {
 	return memberNameRegex.MatchString(name)

backend/routes/member/create_member.go

@@ -80,7 +80,7 @@ func (s *Server) createMember(w http.ResponseWriter, r *http.Request) (err error
 	if !db.MemberNameValid(cmr.Name) {
 		return server.APIError{
 			Code:    server.ErrBadRequest,
-			Details: "Member name cannot contain any of the following: @, ?, !, #, /, \\, [, ], \", ', $, %, &, (, ), +, <, =, >, ^, |, ~, `, ,",
+			Details: "Member name cannot contain any of the following: @, ?, !, #, /, \\, [, ], \", ', $, %, &, (, ), {, }, +, <, =, >, ^, |, ~, `, ,",
 		}
 	}
 

frontend/src/lib/api/regex.ts

@@ -1,2 +1,2 @@
-export const memberNameRegex = /^[^@\\?!#/\\\\[\]"'$%&()+<=>^|~`,]{1,100}$/;
+export const memberNameRegex = /^[^@\\?!#/\\\\[\]"\\{\\}'$%&()+<=>^|~`,]{1,100}$/;
 export const usernameRegex = /^[\w-.]{2,40}$/;

frontend/src/routes/@[username]/+page.svelte

@@ -274,7 +274,7 @@
         <p class="text-muted my-2">
           <Icon name="info-circle-fill" aria-label="Info" /> Your members must have distinct names. Member
           names must be 100 characters long at most, and cannot contain the following characters: @ ?
-          ! # / \ [ ] " ' $ % & ( ) + &lt; = &gt; ^ | ~ ` and ,
+          ! # / \ [ ] " ' $ % & ( ) &lbrace; &rbrace; + &lt; = &gt; ^ | ~ ` and ,
         </p>
         {#if newMemberError}
           <ErrorAlert error={newMemberError} />