Added changes for left sidebar navigation#28
Merged
Conversation
|
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
maxtechera
changed the base branch from
feature/journey-poc
to
feature/answerai-web
maxtechera
force-pushed
the
feature/chatflow-organizer
branch
from
673e708 to
f9b8bb8
Compare
maxtechera
added a commit
that referenced
this pull request
Aug 5, 2025
- SSRF #29: FlowiseStream.ts - Added URL validation before fetch - SSRF #28: utils.ts xmlScrape - Added isSecureURL validation - SSRF #27: utils.ts crawl - Added isSecureURL validation - Type Confusion #6: getChatMessage.ts - Added Array.isArray check Security improvements: - Created centralized URL validation in validator.ts - Blocks localhost, private IPs, cloud metadata endpoints - Type-safe enum validation to prevent parameter tampering - Minimal, surgical fixes without breaking functionality Fixes GitHub code scanning alerts #29, #28, #27, #6
maxtechera
added a commit
that referenced
this pull request
Aug 5, 2025
- SSRF #29: FlowiseStream.ts - Added URL validation before fetch - SSRF #28: utils.ts xmlScrape - Added isSecureURL validation - SSRF #27: utils.ts crawl - Added isSecureURL validation - Type Confusion #6: getChatMessage.ts - Added Array.isArray check Security improvements: - Created centralized URL validation in validator.ts - Blocks localhost, private IPs, cloud metadata endpoints - Type-safe enum validation to prevent parameter tampering - Minimal, surgical fixes without breaking functionality Fixes GitHub code scanning alerts #29, #28, #27, #6
ct3685
added a commit
that referenced
this pull request
Aug 6, 2025
…ul (#456) * fix: resolve 4 critical security vulnerabilities (CodeQL) - SSRF #29: FlowiseStream.ts - Added URL validation before fetch - SSRF #28: utils.ts xmlScrape - Added isSecureURL validation - SSRF #27: utils.ts crawl - Added isSecureURL validation - Type Confusion #6: getChatMessage.ts - Added Array.isArray check Security improvements: - Created centralized URL validation in validator.ts - Blocks localhost, private IPs, cloud metadata endpoints - Type-safe enum validation to prevent parameter tampering - Minimal, surgical fixes without breaking functionality Fixes GitHub code scanning alerts #29, #28, #27, #6 * Remove sha from packageManager version to prevent conflicts * Fix import for validateEnumArray * chore: add SonarCloud analysis workflow for CI/CD integration * chore: update embed submodule to latest commit for improved stability * chore: update embed submodule to track ct/staging-pnpm-recursive-updates branch for temporary build check * chore: update dependencies and submodules for improved stability and security - Update embed submodule to track ct/staging-pnpm-recursive-updates branch - Upgrade various dependencies in package.json files across multiple packages to their latest versions for better performance and security - Ensure consistency in package versions and resolve potential vulnerabilities * chore: update dependencies in package.json and pnpm-lock.yaml for improved compatibility and security - Upgrade cypress to version 13.17.0 for enhanced testing capabilities - Update lint-staged to version 15.2.0 for better performance - Modify dependency versions in pnpm-lock.yaml to use minimum required versions for better stability - Remove deprecated request package from packages-answers/utils/package.json to streamline dependencies * chore: update dependencies in package.json and pnpm-lock.yaml for improved compatibility and performance - Add postcss@8.4.31, tsup@8.3.5, and jsforce@3.10.0 to package.json for enhanced functionality - Remove react-scripts from packages/ui/package.json to streamline dependencies - Upgrade tsup in packages-answers/ui/package.json to version 8.3.5 for better build performance - Modify pnpm-lock.yaml to reflect updated dependency versions for consistency and stability * chore: enhance BWS Secure integration and update dependencies for improved functionality - Refactor BWS Secure scripts to utilize execBwsCommandWithRetrySync for better error handling and retry logic - Update README.md for clearer instructions on creating access tokens - Upgrade dotenv, dotenv-cli, yargs, and axios in package.json for compatibility and performance improvements - Add bws-retry-utils.js for managing rate limits and retry logic in BWS commands - Ensure consistent logging and error handling across BWS Secure scripts * chore: update TypeScript configuration to include ES2022 library for enhanced compatibility * chore: update Dockerfile to improve build stage clarity - Change 'as' to 'AS' for consistency in stage definitions - Ensure clarity in multi-stage build process by standardizing syntax * chore: update embed submodule to track a-main branch for merge - Change submodule branch from ct/staging-pnpm-recursive-updates to a-main - Update subproject commit reference for improved stability * chore: - Add synchronous sleep function in bws-retry-utils.js for improved rate limit handling * chore: update SonarCloud workflow for improved checkout process - Upgrade actions/checkout from v3 to v4 for enhanced functionality - Set fetch-depth to 0 for complete history retrieval during checkout * chore: remove SonarCloud workflow file - Delete the SonarCloud analysis workflow file, running CI analysis with Automatic Analysis. * chore: standardize Dockerfile stage definitions - Change 'AS' to 'as' for consistency in stage definitions - Improve clarity in multi-stage build process by standardizing syntax * chore: update pnpm-lock.yaml for dependency consistency and version alignment * fix: resolve CLI command discovery by removing path-to-regexp override - Remove 'path-to-regexp: "0.1.12"' from pnpm.overrides in package.json - This was forcing @oclif/core@4.0.7 to use old path-to-regexp version without .match() method - Fixes 'pathRegexp.match is not a function' error that prevented CLI command registration - CLI now properly discovers start/worker commands when environment variables are provided - Revert multer-cloud-storage back to ^4.1.0 (was incorrectly blamed for the issue) - Deployment should now work as CLI commands are properly discoverable --------- Co-authored-by: Max Techera <maxi.techerag@gmail.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR introduces significant improvements to the left navigation drawer in our application, focusing on both aesthetics and usability. Key changes include:
Redesigned Drawer Layout:
Implemented a more compact and intuitive layout for the drawer content.
Added a toggle button to expand/collapse the drawer, improving space management.
New Chat Button:
Moved the "New Chat" button to the top of the drawer for easier access.
Redesigned the button to be more visually prominent and consistent with the overall UI.
Enhanced Menu Structure:
Reorganized the menu items for better categorization and clarity.
Introduced new icons for each menu item, improving visual recognition.
Improved Submenu Handling:
Updated the submenu display logic to show relevant items based on the current route.
Enhanced the transition effects for a smoother user experience.
UI Consistency:
Standardized icon sizes and spacing throughout the drawer.
Improved typography and styling for better readability and visual hierarchy.
Removed Redundant Elements:
Eliminated the separate ChatDrawer component, consolidating functionality into the main AppDrawer.
Updated Dependencies:
Introduced new Material-UI icon components for a refreshed look.
These changes aim to enhance the overall navigation experience, making it more intuitive and visually appealing while maintaining consistency with our application's design language.