Commit Graph

555 Commits

Author SHA1 Message Date
dependabot[bot]
e162960c9e
Bump ws from 8.17.0 to 8.17.1 in the npm_and_yarn group across 1 directory (#90)
Bumps the npm_and_yarn group with 1 update in the / directory:
[ws](https://github.com/websockets/ws).

Updates `ws` from 8.17.0 to 8.17.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/websockets/ws/releases">ws's
releases</a>.</em></p>
<blockquote>
<h2>8.17.1</h2>
<h1>Bug fixes</h1>
<ul>
<li>Fixed a DoS vulnerability (<a
href="https://redirect.github.com/websockets/ws/issues/2231">#2231</a>).</li>
</ul>
<p>A request with a number of headers exceeding
the[<code>server.maxHeadersCount</code>][]
threshold could be used to crash a ws server.</p>
<pre lang="js"><code>const http = require('http');
const WebSocket = require('ws');
<p>const wss = new WebSocket.Server({ port: 0 }, function () {
const chars =
&quot;!#$%&amp;'*+-.0123456789abcdefghijklmnopqrstuvwxyz^_`|~&quot;.split('');
const headers = {};
let count = 0;</p>
<p>for (let i = 0; i &lt; chars.length; i++) {
if (count === 2000) break;</p>
<pre><code>for (let j = 0; j &amp;lt; chars.length; j++) {
  const key = chars[i] + chars[j];
  headers[key] = 'x';

  if (++count === 2000) break;
}
</code></pre>
<p>}</p>
<p>headers.Connection = 'Upgrade';
headers.Upgrade = 'websocket';
headers['Sec-WebSocket-Key'] = 'dGhlIHNhbXBsZSBub25jZQ==';
headers['Sec-WebSocket-Version'] = '13';</p>
<p>const request = http.request({
headers: headers,
host: '127.0.0.1',
port: wss.address().port
});</p>
<p>request.end();
});
</code></pre></p>
<p>The vulnerability was reported by <a
href="https://github.com/rrlapointe">Ryan LaPointe</a> in <a
href="https://redirect.github.com/websockets/ws/issues/2230">websockets/ws#2230</a>.</p>
<p>In vulnerable versions of ws, the issue can be mitigated in the
following ways:</p>
<ol>
<li>Reduce the maximum allowed length of the request headers using the
[<code>--max-http-header-size=size</code>][] and/or the
[<code>maxHeaderSize</code>][] options so
that no more headers than the <code>server.maxHeadersCount</code> limit
can be sent.</li>
</ol>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="3c56601092"><code>3c56601</code></a>
[dist] 8.17.1</li>
<li><a
href="e55e5106f1"><code>e55e510</code></a>
[security] Fix crash when the Upgrade header cannot be read (<a
href="https://redirect.github.com/websockets/ws/issues/2231">#2231</a>)</li>
<li><a
href="6a00029edd"><code>6a00029</code></a>
[test] Increase code coverage</li>
<li><a
href="ddfe4a804d"><code>ddfe4a8</code></a>
[perf] Reduce the amount of <code>crypto.randomFillSync()</code>
calls</li>
<li>See full diff in <a
href="https://github.com/websockets/ws/compare/8.17.0...8.17.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ws&package-manager=npm_and_yarn&previous-version=8.17.0&new-version=8.17.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/wavetermdev/thenextwave/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-28 14:52:50 -07:00
Evan Simkowitz
8831029e87
Add CodeQL action 2024-06-28 11:21:43 -07:00
Sylvie Crowe
ecd2464bbf
Hidden Files (#86)
Adds the following changes
- rename "Permissions" to "Perm"
- use a "-" if the mimetype is unknown
- add a button to hide and show hidden files
- fix the datetime to format based on how far in the past the date is
2024-06-27 18:13:42 -07:00
Red J Adaya
4d4e026749
webview fixes (#83) 2024-06-27 18:09:30 -07:00
Evan Simkowitz
f1c8d63ab2
Make the drag preview always use the tech frame (#87)
Overrides the frameless block frame if generating a drag preview. Also
fixes a type issue with BlockFrame_Tech
2024-06-27 15:26:40 -07:00
Evan Simkowitz
c9cf88eb5e
Use translate3d for layout transforms to trick browser into using GPU acceleration (#85) 2024-06-27 14:36:58 -07:00
Sylvie Crowe
23e1c8797d
Search Fixes (#84)
This change:
- now clears the search box when entering a new directory
- fixes some styling issues
- adds a .. to the path
- uses the correct path (except on the initial start of the directory
widget)
2024-06-27 12:30:08 -07:00
Sylvia Crowe
76c909114e refactor: clean up debug log messages 2024-06-26 17:01:12 -07:00
Sylvie Crowe
5da3257031
Directory Search (#82)
This adds a frontend directory search by filtering out files that don't
match. It also allows navigation of the directory using the arrow keys
while maintaining focus on the search box.
2024-06-26 16:59:45 -07:00
Evan Simkowitz
f9236fc18b
Fix bad merge 2024-06-26 12:26:27 -07:00
Evan Simkowitz
638883eef9
Fix Storybook for TileLayout (#81)
Fix typing of memoized TileLayout component, fix broken Vite config,
upgrade Storybook to latest.
2024-06-26 12:22:27 -07:00
Sylvie Crowe
0a8c97858c
Download File Option (#80)
This adds to the context menu to give the ability to download a file. It
also fixes a couple bugs and improves some formatting of the directory
view.
2024-06-26 12:14:59 -07:00
Red J Adaya
566f6764c2
Web view (#78) 2024-06-26 09:39:41 -07:00
Mike Sawka
4f627a0342
react.memo (#79) 2024-06-26 09:31:43 -07:00
sawka
f036459dd5 remove console.log 2024-06-25 14:57:08 -07:00
Mike Sawka
7b93354657
initial implementation of move block to window (#77) 2024-06-25 14:56:37 -07:00
Sylvie Crowe
182c5f6e3d
Open New Block and Delete Files (#76)
This implements the behavior for the context menu recently added to the
directories. Open New Block simply opens the file in a preview in a new
block.

Delete files will delete the selected file, but it does not trigger a
rerender at this time. To see the change, you must navigate to a
different directory and then return. This will be fixed in a future
update.
2024-06-25 13:53:55 -07:00
Sylvie Crowe
a012de8413
Sorting and Context Menu (#75)
This enables directory sorting by clicking on the header for the column
you want to sort. It also pops up a different context menu for items in
the directory view. The behavior for the context menu items still needs
to be implemented.
2024-06-25 12:37:58 -07:00
sawka
7bf64fb268 wsh view works -- uses a WS event to send to the frontend 2024-06-24 19:04:08 -07:00
sawka
3d00a05aa0 only prevent default if we capture the key 2024-06-24 18:57:01 -07:00
sawka
bd2bb5293f enable copy/paste via Cmd:Shift:C and Cmd:Shift:V in the terminal 2024-06-24 17:58:40 -07:00
sawka
b2e12e4171 reimplement closetab context menu 2024-06-24 17:50:06 -07:00
sawka
997940949a fix cut/copy/paste menu 2024-06-24 17:44:31 -07:00
sawka
cc46cf64df more context menu options (not implemented) for block headers 2024-06-24 16:34:56 -07:00
sawka
a0b8bd5c0b add config option to show block header ids 2024-06-24 16:25:53 -07:00
Mike Sawka
77b5acfc5a
cmd blocks (#74) 2024-06-24 14:34:31 -07:00
Red J Adaya
edb8eb25b8
CSV view (#73) 2024-06-24 10:17:35 -07:00
Red J Adaya
4714b88be7
Move tab bar to top edge (#72) 2024-06-23 12:03:09 -07:00
Sylvia Crowe
484d58b88d fix: resolve frontend paths correctly on windows
For some reason, @ paths in emain.ts weren't resolving automatically on
windows. This has been fixed by specifying it in electron.vite.config.ts
2024-06-22 00:44:37 -07:00
Sylvie Crowe
c2b8b32b44
New Directory View Columns (#71)
This adds several new columns to the directory view. It adds a last
modified timestamp, a logo for the type, human-readable file sizes, and
permissions. Several of these are configurable via the
config/settings.json file.
2024-06-22 00:41:49 -07:00
sawka
b668138ae0 fix null ptr 2024-06-21 16:59:09 -07:00
sawka
2d1c55471c mimetype to icon function 2024-06-21 16:40:24 -07:00
sawka
83ca76b6b4 only materialize the fileContentAtom when necessary 2024-06-21 16:22:59 -07:00
sawka
544dba6f8a add streaming icons 2024-06-21 16:11:34 -07:00
sawka
e859847edb dynamic icons for preview, and icons per view 2024-06-21 16:01:51 -07:00
sawka
e7550c0a3e add block icon 2024-06-21 15:15:38 -07:00
sawka
8683105f70 fun customization for the block title 2024-06-21 14:44:11 -07:00
sawka
312ee5af59 remove visualViewport hack (needed for Safari) 2024-06-21 13:27:21 -07:00
sawka
516f1faa47 fix ordering of typeunions in generated typescript. add term config fontsize and fontfamily. 2024-06-21 13:23:07 -07:00
sawka
cddff22f7c fix font smoothing 2024-06-21 12:56:07 -07:00
sawka
e583cefbea fix term colors, and import the term.less file 2024-06-21 12:51:17 -07:00
Mike Sawka
0ea8e5ac88
integrate part of keyutil, and implement tab and block movement with keyboard (#70) 2024-06-21 12:32:38 -07:00
Red J Adaya
9cc5d9d3ae
Add ability to edit tab name (#67) 2024-06-21 10:23:04 -07:00
Evan Simkowitz
2c6f6d917f
Fix greedy rendering of drag preview (#68) 2024-06-21 10:18:35 -07:00
Red J Adaya
b8b03ea817
Scrollable tab bar fixes (#69) 2024-06-21 10:18:13 -07:00
Red J Adaya
e83b5c8763
Scrollable tabs using OverlayScrollbars (#60) 2024-06-20 20:04:00 -07:00
sawka
b73148be6b fix emain 2024-06-20 16:20:50 -07:00
Mike Sawka
5e655c7c55
refactor cmdqueue out of blockcontroller (#65) 2024-06-20 16:01:55 -07:00
sawka
68ca79fcbc update widgets, add label, color, description, change top two widgets 2024-06-20 13:03:50 -07:00
sawka
d59e0f5959 add contextmenu model, example code in block.tsx 2024-06-20 12:34:32 -07:00