Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Develop #28

Merged
merged 104 commits into from
Dec 15, 2024
Merged

Develop #28

merged 104 commits into from
Dec 15, 2024

Conversation

rcmenno
Copy link
Collaborator

@rcmenno rcmenno commented Dec 15, 2024
edited
Loading

ref #21 make sure there's one source of truth again regarding development branches. This should prevent unessesary houeskeeping of branches.

rcmenno and others added 30 commits April 17, 2023 11:30
@rcmenno
Add extra data to template
bc20063
@dependabot @elwinschmitz
Bump werkzeug from 2.2.2 to 2.2.3
c4455c4 
Bumps [werkzeug](https://github.com/pallets/werkzeug) from 2.2.2 to 2.2.3.
- [Release notes](https://github.com/pallets/werkzeug/releases)
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst)
- [Commits](pallets/werkzeug@2.2.2...2.2.3)

---
updated-dependencies:
- dependency-name: werkzeug
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @elwinschmitz
Bump flask from 2.2.2 to 2.3.2
d2554ae 
Bumps [flask](https://github.com/pallets/flask) from 2.2.2 to 2.3.2.
- [Release notes](https://github.com/pallets/flask/releases)
- [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst)
- [Commits](pallets/flask@2.2.2...2.3.2)

---
updated-dependencies:
- dependency-name: flask
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@elwinschmitz
Create static.yml
18f22d8
@elwinschmitz
fix: Comment didn't reflect reality
3acd0d0
@rcmenno
Merge pull request #8 from rodekruis/feat-github-pages-for-prototype-…
c82efaf 
…hosting

feat: Add deployment workflow for static files
@rcmenno
Merge branch 'main' into develop
a420471
@jmargutt
ci: add Azure Static Web Apps workflow file
f56862d 
on-behalf-of: @Azure opensource@microsoft.com
@rcmenno
Update pipelines so that feature branch also cause release and make s…
68b35ca 
…ure correct app directory is used
@rcmenno
#5 make sure app works offline by leveraging service workers (wip -> …
5d49df8 
…code input selection screen)
@rcmenno
Make app work offline, work in progress
5799a59
@rcmenno
Remove unneeded imports
d164f90
@rcmenno
Improve readme
31b1e3e
@rcmenno
Make sure that after uploading of beneficiary data, the active distri…
cbb5db4 
…bution remains shown.
@rcmenno
Make sure active distributions can be stored and retrieved
de859ab
@rcmenno
Make sure go back to main menu works when viewing beneficiary data
0d4659a
@rcmenno
Make sure scanner entry also. works
dfbf64d
@rcmenno
Fix typo
5f036db
@rcmenno
wip check who's missing
1c1512a
@rcmenno
Add empty state for empty distributions
4fe3111
@rcmenno
Make sure distributions can be created upon no distribution found
1ec3322
@rcmenno
Make sure check who's missing has an empty state
209773e
@rcmenno
Make sure only future dates can be selected
4fe84f0
@rcmenno
Make sure back to main menu button works from entry not found
5c5a7dd
@rcmenno
Wip
f045164
@rcmenno
Wip before adding received when
d55d3bc
@rcmenno
Make sure manual entries work
1ae5dde
@rcmenno
Make sure data can be downloaded as excel sheet.
87f633a
@rcmenno
Maker sure input method is remembered
7a8f876
@rcmenno
Make sure beneficiary codes are always stored as string
0e97f81
rcmenno added 26 commits November 4, 2024 09:53
@rcmenno
Start shipping documentation bump 0.15.1
80c0d99
@rcmenno
Improve documentation handler 0.15.2
71e27c4
@rcmenno
Fix typo in filename bump 0.15.3
096f241
@rcmenno
prevent 404 because of mismatch in filename bump 0.15.4
f6c6dc9
@rcmenno
Improve documentation bump 0.15.5
b3021a9
@rcmenno
Fix camera select bump 0.16.0
f6f819b
@rcmenno
Improve documentation
f058d32
@rcmenno
Make sure distribution data can only be added once per distribution
911c0f6
@rcmenno
Make sure everything is cached using same service bump 0.18.0
e99962d
@rcmenno
Fix typo
9ea4aee
@rcmenno
Make sure beneficiaries that belong to a deleted distribution are als…
a14369c 
…o deleted bump 0.19.0
@rcmenno
Make sure buttons fit on mobile device screen bump 0.20.0
cbdd3a1
@rcmenno
Improve documenation and fix typo bump bump 0.21.0
99179ad
@rcmenno
Merge branch 'main' into develop
387d724 
# Conflicts:
#	POC/docs/source/requirements.txt
@rcmenno
bump 0.22.0
2a76e02
@rcmenno
#21 prepare for trunk based development bump 0.23.0
37327d9
@rcmenno
Merge branch 'main' into develop
e435546 
# Conflicts:
#	README.md
@rcmenno
#24 revert non working attempts at getting download dialog to work on…
1ba69cf 
… iOS
@rcmenno
#25 make sure commits from feature branches are deployed
0d625e4
@rcmenno
Simplify codes in template
4d69d39
@rcmenno
Bump 0.24.3
f917607
@rcmenno
#26 make sure simplified template code is actually compiled bump 0.24.3
1867eaa
@rcmenno
#26 Add test results for testing on iPhone 15 and Alcatel 1B
c39cd84
@rcmenno
Update dependencies bump
3924e19
@rcmenno
Merge branch 'main' into develop
b7debda 
# Conflicts:
#	data/data_template.xlsx
@rcmenno
#26 verify that install issue is indeed minor
22622bd
@github-actions GitHub Actions
Copy link

Azure Static Web Apps: Your stage site is ready! Visit it here: https://black-stone-02fb10f03-28.westeurope.5.azurestaticapps.net

github-advanced-security[bot]
github-advanced-security bot found potential problems Dec 15, 2024
View reviewed changes
PWA/public/input_video.html
if (result) {
console.log(result);
document.getElementById("result").textContent = result.text;
window.location = "/entry?code=" + result.text;

Check warning

Code scanning / CodeQL

Exception text reinterpreted as HTML Medium

Exception text
Loading
is reinterpreted as HTML without escaping meta-characters.

Copilot Autofix AI 2 months ago

To fix the problem, we need to ensure that the result.text is properly sanitized or escaped before being used in constructing the URL. This can be achieved by using a function to encode the result.text to prevent any malicious scripts from being executed.

The best way to fix the problem without changing existing functionality is to use the encodeURIComponent function to encode the result.text before appending it to the URL. This function encodes special characters, making it safe to include in a URL.

Suggested changeset 1
PWA/public/input_video.html

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/PWA/public/input_video.html b/PWA/public/input_video.html
--- a/PWA/public/input_video.html
+++ b/PWA/public/input_video.html
@@ -74,3 +74,3 @@
                         document.getElementById("result").textContent = result.text;
-                        window.location = "/entry?code=" + result.text;
+                        window.location = "/entry?code=" + encodeURIComponent(result.text);
                     }
EOF
@@ -74,3 +74,3 @@
document.getElementById("result").textContent = result.text;
window.location = "/entry?code=" + result.text;
window.location = "/entry?code=" + encodeURIComponent(result.text);
}
Copilot is powered by AI and may make mistakes. Always verify output.
Positive Feedback
Negative Feedback

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.

Please select one or more of the options
@rcmenno
Copy link
Collaborator Author

rcmenno commented Dec 15, 2024

@jmargutt @elwinschmitz FYI I will merge this in order to prevent overhead. In the unlikely case that the offline version starts seeing issues because of this, the merge commit can still be reverted.

@rcmenno rcmenno merged commit 912fbc5 into main Dec 15, 2024
7 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@rcmenno @elwinschmitz @jmargutt