You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Session module is still exposed via main BiDi object.
💡 Additional Considerations
I don't know how to use this command in our world, it fails with error session already exists. But I successfully use it when launched BiDi mapper (https://github.com/GoogleChromeLabs/chromium-bidi).
🔄 Types of changes
New feature
PR Type
Enhancement
Description
Expose NewAsync command publicly via BiDi object
Add UnhandledPromptBehavior property to Capability model
Rename Capability field to Capabilities in NewResult
Update StatusAsync to accept optional StatusOptions parameter
Objective: To create a detailed and reliable record of critical system actions for security analysis and compliance.
Status: No audit logging: The newly exposed session-level actions (StatusAsync, NewAsync, EndAsync) do not add any audit logging, which may be required if session lifecycle events are considered critical actions in this library.
Generic: Robust Error Handling and Edge Case Management
Objective: Ensure comprehensive error handling that provides meaningful context and graceful degradation
Status: Missing input validation: The new public NewAsync(Session.CapabilitiesRequest capabilities, ...) forwards capabilities without null/shape validation or additional failure context, relying on downstream behavior that is not visible in the diff.
Generic: Security-First Input Validation and Data Handling
Objective: Ensure all data inputs are validated, sanitized, and handled securely to prevent vulnerabilities
Status: Unvalidated capability data: The newly added UnhandledPromptBehavior capability and the publicly exposed NewAsync pathway accept externally provided capability/options data without visible sanitization/validation in the diff, requiring confirmation that validation occurs elsewhere.
The session.new command is being exposed on the public API, but it's known to fail with a "session already exists" error and lacks tests. Its utility and placement should be reconsidered before merging.
// file: dotnet/src/webdriver/BiDi/BiDi.cspublicsealedclassBiDi:IAsyncDisposable{// ...publicTask<Session.StatusResult>StatusAsync(Session.StatusOptions?options=null){returnSessionModule.StatusAsync(options);}// The NewAsync method is removed from the public API// until its use case is clarified and it can be properly tested.// It could be kept as an internal method if needed for other purposes.// ...}
Suggestion importance[1-10]: 9
__
Why: The suggestion correctly identifies a major design flaw: exposing a NewAsync method that is likely unusable and untested, as confirmed by the PR author's own comments.
High
General
Respect options cancellation token
In ConnectAsync, use the cancellation token from the options parameter when calling bidi.Broker.ConnectAsync instead of always passing CancellationToken.None.
public static async Task<BiDi> ConnectAsync(string url, BiDiOptions? options = null)
{
var bidi = new BiDi(url);
- await bidi.Broker.ConnectAsync(CancellationToken.None).ConfigureAwait(false);+ var token = options?.CancellationToken ?? CancellationToken.None;+ await bidi.Broker.ConnectAsync(token).ConfigureAwait(false);
return bidi;
}
[To ensure code accuracy, apply this suggestion manually]
Suggestion importance[1-10]: 8
__
Why: This suggestion identifies a bug where the options parameter in ConnectAsync is ignored, and the method incorrectly uses CancellationToken.None. The proposed fix correctly implements the expected behavior of honoring the provided cancellation token.
Medium
Possible issue
Add a test for new session creation
Add a test case for the new NewAsync method to verify that a new session can be successfully created and returns the expected details.
internal class SessionTest : BiDiTestFixture
{
[Test]
public async Task CanGetStatus()
{
var status = await bidi.StatusAsync();
Assert.That(status, Is.Not.Null);
Assert.That(status.Message, Is.Not.Empty);
}
-+ [Test]+ public async Task CanStartNewSession()+ {+ var capabilities = new CapabilitiesRequest();+ var result = await bidi.NewAsync(capabilities);++ Assert.That(result, Is.Not.Null);+ Assert.That(result.SessionId, Is.Not.Empty);+ Assert.That(result.Capabilities, Is.Not.Null);+ Assert.That(result.Capabilities.BrowserName, Is.Not.Empty);+ }
}
Apply / Chat
Suggestion importance[1-10]: 7
__
Why: The suggestion correctly identifies that the new NewAsync method, a key part of the PR, is not covered by tests and proposes adding one, which is a significant improvement for code quality and maintainability.
Medium
Learned best practice
Add null argument validation
Guard against null inputs in this new public API by throwing ArgumentNullException before delegating, to fail fast and avoid propagating invalid values into the command pipeline.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
User description
💥 What does this PR do?
Make
NewAsynccommand publicly available.🔧 Implementation Notes
Sessionmodule is still exposed via mainBiDiobject.💡 Additional Considerations
I don't know how to use this command in our world, it fails with error
session already exists. But I successfully use it when launched BiDi mapper (https://github.com/GoogleChromeLabs/chromium-bidi).🔄 Types of changes
PR Type
Enhancement
Description
Expose
NewAsynccommand publicly via BiDi objectAdd
UnhandledPromptBehaviorproperty to Capability modelRename
Capabilityfield toCapabilitiesin NewResultUpdate
StatusAsyncto accept optional StatusOptions parameterAdd SessionTest with status verification test
Diagram Walkthrough
File Walkthrough
BiDi.cs
Expose NewAsync and enhance StatusAsync methodsdotnet/src/webdriver/BiDi/BiDi.cs
StatusAsync()methodStatusAsync(Session.StatusOptions? options)with optionalparameters
NewAsync(CapabilitiesRequest capabilities,Session.NewOptions? options)methodNewCommand.cs
Add UnhandledPromptBehavior and fix field namingdotnet/src/webdriver/BiDi/Session/NewCommand.cs
Capabilityfield toCapabilitiesin NewResult recordUnhandledPromptBehaviorproperty to Capability classPlatformName, SetWindowRect, UserAgent properties
SessionModule.cs
Rename parameter for consistencydotnet/src/webdriver/BiDi/Session/SessionModule.cs
capabilitiesRequesttocapabilitiesforconsistency
SessionTest.cs
Add SessionTest with status verificationdotnet/test/common/BiDi/Session/SessionTest.cs
CanGetStatus()test method verifying StatusAsync returns non-nullresult