Replace all uses of promiseExec with promiseExecFile #4514
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Nokel81
requested review from
nevalla and
jim-docker
and removed request for
a team
jim-docker
reviewed
Dec 7, 2021
jim-docker
reviewed
Dec 13, 2021
Signed-off-by: Sebastian Malton <sebastian@malton.name>
Signed-off-by: Sebastian Malton <sebastian@malton.name>
Signed-off-by: Sebastian Malton <sebastian@malton.name>
Nokel81
force-pushed
the
security/remove-promiseExec
branch
from
d0edbbf
to
e704572
Compare
jim-docker
previously approved these changes
Dec 13, 2021
Signed-off-by: Sebastian Malton <sebastian@malton.name>
jim-docker
previously approved these changes
Dec 14, 2021
There was a problem hiding this comment.
So this PR can be cherry-picked for 5.3.4 (and won't suffer this flaky test). And you can turn the test back on in #4564 for master, right? As soon as it is approved :)
|
@jim-docker Yes that is the plan |
jansav
reviewed
Dec 16, 2021
src/main/helm/helm-repo-manager.ts
Outdated
Comment on lines
135
to
145
| const { repositories } = await this.readConfig(); | ||
|
|
||
| if (!repositories.length) { | ||
| if (previousAttempt) { | ||
| throw new Error("Previous add repo called did not add repo"); | ||
| } | ||
|
|
||
| await HelmRepoManager.addRepo({ name: "bitnami", url: "https://charts.bitnami.com/bitnami" }); | ||
|
|
||
| return await this.repositories(); | ||
| return await this.repositories(true); | ||
| } |
There was a problem hiding this comment.
Having recursion here seems bit odd.
Could we just:
const { repositories: storedRepositories } = await this.readConfig();
let repositories: HelmRepo[] = storedRepositories;
if (!repositories.length) {
await HelmRepoManager.addRepo({
name: "bitnami",
url: "https://charts.bitnami.com/bitnami",
});
// Even better would be if we could trust that the HelmRepo used as argument of addRepo is the exact same that "readConfig" returns.
({ repositories } = (await this.readConfig()));
}In bigger picture, I think that adding the default repository should be extracted away because now this function has two separate responsibilities.
There was a problem hiding this comment.
Yes I agree that having a default registry should be abstracted away. I have already done this in my follow up branch
Which I will make into a PR once this is merged.
We felt that this PR shouldn't have too many non-necessary changes.
There was a problem hiding this comment.
Good points all, but this was a change unrelated to the security fix which has effectively delayed approval of this review.
|
Probably not related to current PR, but found that we need to refresh helm chart after go from Preferences page. Right now, it might show stale repos and charts in list. If you click them, you got an app crash: stale.helm.repos.mov |
I will investigate since I didn't think that this was possible before this PR |
|
@aleksfront That also currently exists in master so I don't think we should fix it in this security PR. |
Signed-off-by: Sebastian Malton <sebastian@malton.name>
jim-docker
approved these changes
Dec 17, 2021
jansav
approved these changes
Dec 17, 2021
Iku-turso
approved these changes
Dec 17, 2021
jim-docker
pushed a commit
that referenced
this pull request
Jan 19, 2022
Merged
jim-docker
pushed a commit
that referenced
this pull request
Jan 19, 2022
Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com>
jim-docker
added a commit
that referenced
this pull request
Jan 20, 2022
* Use electron.clipboard for all clipboard uses (#4535) Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Fix ERR_UNSAFE_PORT from LensProxy (#4558) * Fix ERR_UNSAFE_PORT from LensProxy - Use the current list of ports from chromium as it is much easier to just reject using one of those instead of trying to handle the ERR_UNSAFE_PORT laod error from a BrowserWindow.on("did-fail-load") Signed-off-by: Sebastian Malton <sebastian@malton.name> * Move all port handling into LensProxy Signed-off-by: Sebastian Malton <sebastian@malton.name> * don't use so many exceptions Signed-off-by: Sebastian Malton <sebastian@malton.name> Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Fix not being able to clear set cluster icon (#4555) Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Fix extension engine range not working for some ^ ranges (#4554) Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Fix crash on NetworkPolicy when matchLabels is missing (#4500) Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Replace all uses of promiseExec with promiseExecFile (#4514) Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Less noisy metrics-not-available error logging (#4602) Signed-off-by: Jari Kolehmainen <jari.kolehmainen@gmail.com> Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Fix close button overflow in Preferences (#4611) * Adding basic colors to tailwind theme Signed-off-by: Alex Andreev <alex.andreev.email@gmail.com> * Using tailwind inline to style close button Signed-off-by: Alex Andreev <alex.andreev.email@gmail.com> * Make Select look similar to inputs Signed-off-by: Alex Andreev <alex.andreev.email@gmail.com> * Moving styles into separate module Signed-off-by: Alex Andreev <alex.andreev.email@gmail.com> * Convert tailwind commands to css Signed-off-by: Alex Andreev <alex.andreev.email@gmail.com> Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Fix prometheus operator metrics work out of the box (#4617) Signed-off-by: Lauri Nevala <lauri.nevala@gmail.com> Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Fix CRD.getPreferedVersion() to work based on apiVersion (#4553) * Fix CRD.getPreferedVersion() to work based on apiVersion Signed-off-by: Sebastian Malton <sebastian@malton.name> * Add tests Signed-off-by: Sebastian Malton <sebastian@malton.name> Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Fix crash for KubeObjectStore.loadAll() (#4675) Signed-off-by: Sebastian Malton <sebastian@malton.name> Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> * Convert CloseButton styles out from css modules (#4723) * Convert CloseButton styles out from css modules Signed-off-by: Alex Andreev <alex.andreev.email@gmail.com> * Fix close button styling Signed-off-by: Alex Andreev <alex.andreev.email@gmail.com> * release v5.3.4 Signed-off-by: Jim Ehrismann <jehrismann@mirantis.com> Co-authored-by: Sebastian Malton <sebastian@malton.name> Co-authored-by: Jari Kolehmainen <jari.kolehmainen@gmail.com> Co-authored-by: Alex Andreev <alex.andreev.email@gmail.com> Co-authored-by: Lauri Nevala <lauri.nevala@gmail.com>
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Signed-off-by: Sebastian Malton sebastian@malton.name
resolves https://github.com/lensapp/lens-security/issues/7