v2 #232
Draft
v2 #232
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
timiliris
added
major update
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| {preview ? ( | ||
| <div className='relative w-full py-4'> | ||
| <img | ||
| src={preview} |
Check warning
Code scanning / CodeQL
DOM text reinterpreted as HTML Medium
Show autofix suggestion
Hide autofix suggestion
Copilot Autofix
AI 6 months ago
To fix the problem, we need to ensure that the preview value is properly validated or sanitized before being used as the src attribute of the img element. One way to achieve this is by using a library like DOMPurify to sanitize the URL. Additionally, we should validate that the URL is a valid image URL.
- Install the
DOMPurifylibrary. - Import
DOMPurifyin theImageUploadercomponent. - Use
DOMPurifyto sanitize thepreviewvalue before setting it as thesrcattribute of theimgelement.
Suggested changeset
1
src/components/utility/ImageUploader.tsx
| @@ -1,2 +1,3 @@ | ||
| import { useState, useEffect, useRef } from 'react'; | ||
| import DOMPurify from 'dompurify'; | ||
| import { Button } from '@/components/ui/button'; | ||
| @@ -75,3 +76,3 @@ | ||
| <img | ||
| src={preview} | ||
| src={DOMPurify.sanitize(preview)} | ||
| alt='Preview' |
Copilot is powered by AI and may make mistakes. Always verify output.
Unable to commit as this autofix suggestion is now outdated
Added Addon Verifying proccess
This commit enhances the user schematic list with visual improvements, edit functionality, and a more streamlined user experience. It also adds a tetris game to the 404 page. - Improve schematic card design with avatar and blurred background. - Add edit button to schematic cards. - Implement edit schematic navigation. - Add tetris game to 404 page.
…mprovement Fix: Improve schematic edit form and list
…leSettings and ProtectedRoute components
…in and preload scripts
…providerId optional in user schema
…e addon operation
…improve type checking
…action types, improving maintainability and type safety
…improving performance and reducing unnecessary re-renders
Feature/addon verification
This commit introduces a toolbox feature with links to upload schematics, browse addons, and view the user profile. It also includes a theme toggle and styling for the buttons.
feat: enhance environment configuration with APP_BASE_URL and APP_POR…
Navigation links in footer led to relative paths (most of the time, not 100%, weird), now absolute. Co-authored-by: Yehor <[email protected]>
* test revamp * fix every freaking db usage * Fixes were made and now the site works properly with new Meilisearch and with some new appwrite changes
* test revamp * fix every freaking db usage * Fixes were made and now the site works properly with new Meilisearch and with some new appwrite changes * Fix lint * Update src/components/features/admin/addons/AutoAddFeaturedAddon.tsx Co-authored-by: Copilot <[email protected]> * fix --------- Co-authored-by: Copilot <[email protected]>
* test revamp * fix every freaking db usage * Fixes were made and now the site works properly with new Meilisearch and with some new appwrite changes * Fix lint * Update src/components/features/admin/addons/AutoAddFeaturedAddon.tsx Co-authored-by: Copilot <[email protected]> * fix * fix ts --------- Co-authored-by: Copilot <[email protected]>
* test revamp * fix every freaking db usage * Fixes were made and now the site works properly with new Meilisearch and with some new appwrite changes * Fix lint * Update src/components/features/admin/addons/AutoAddFeaturedAddon.tsx Co-authored-by: Copilot <[email protected]> * fix * fix ts * updates * Made the authors display correctly on the addon cards * updated the schematics to make them work and added debug modes * updates --------- Co-authored-by: Copilot <[email protected]>
* test revamp * fix every freaking db usage * Fixes were made and now the site works properly with new Meilisearch and with some new appwrite changes * Fix lint * Update src/components/features/admin/addons/AutoAddFeaturedAddon.tsx Co-authored-by: Copilot <[email protected]> * fix * fix ts * updates * Made the authors display correctly on the addon cards * updated the schematics to make them work and added debug modes * updates * updates to ui * redeploy test * fixed errors * add headers for cloduflare * e * r * add headers * fix npm errors * fix npm v2 * trigger redeploy --------- Co-authored-by: Copilot <[email protected]>
This commit standardizes array handling across addons and blogs (e.g., `minecraft_versions`, `categories`, `authors`) to support both single and multiple values. It introduces type refinements for addons and blogs, improves mutation logic by excluding unnecessary fields (e.g., `$id`, `$permissions`), and adjusts components and utilities for better type safety and consistency. Additionally, redundant types and comments are cleaned up.
This commit consistently removes unnecessary fields (e.g., `$id`, `$permissions`) across blog, addon, and schematic mutation functions. Improves code readability by streamlining deserialization logic and annotation.
…ocation This commit introduces a `build:ci` script with a reduced memory limit for CI environments and updates the `build` script to allocate more memory for local builds, improving compatibility and preventing potential memory-related build issues.
This commit adds a `_headers` file to the dist folder to define custom headers for specific files. Prebuilt assets are generated to support deployment requirements.
* feat: implement feedback feature with submission, admin management, and UI components * Update src/hooks/useFeedback.ts Co-authored-by: Copilot <[email protected]> * Update src/api/appwrite/useFeedback.ts Co-authored-by: Copilot <[email protected]> --------- Co-authored-by: Yehor <[email protected]> Co-authored-by: Copilot <[email protected]> Co-authored-by: Yehor <[email protected]>
…ing and user management + total refactor of the admin panel
…ing and user management + total refactor of the admin panel
…te addon entries; refactor scrolling behavior for smoother animations
…essary re-renders; refactor data fetching logic to avoid duplicates
…essary re-renders; refactor data fetching logic to avoid duplicates
…essary re-renders; refactor data fetching logic to avoid duplicates
Improve type safety and array handling in addons and blogs
* Made a quick fix to the review mode and Made the wording better * cleanup left out debug points
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Blueprint Site V2: Comprehensive Modernization & Overhaul
Overview
This major pull request represents a complete transformation of the Blueprint Site, modernizing both the technology stack and user experience. The changes establish a professional-grade platform ready to handle significant traffic with an entirely new architecture and design system.
Key Technology Updates
Major Feature Improvements
User Experience
Content Management
Authentication & User Management
Technical Architecture
Technical Debt Reduction
This release represents hundreds of commits across multiple developers, establishing Blueprint Site as a modern, scalable platform ready for significant growth while providing an exceptional user experience.