yindo/UNIT3D
1
0
Fork 0
mirror of https://github.com/BillyOutlast/UNIT3D.git synced 2026-02-06 20:21:21 +01:00
Code Issues Packages Projects Releases Wiki Activity
13,384 Commits 3 Branches 106 Tags
development
Commit Graph

49 Commits

Author SHA1 Message Date
Roardom
84ddc74447 fix: most phpstan types in eloquent api resources 2025-08-21 00:50:13 +00:00
Roardom
ad716d7cc3 update: remove XSS cleaner and remove XSS vulnerabilities 
We've been mostly relying on the 3rd party xss cleaner to make sure user submitted content is clean. This PR fixes up any leftover holes in the bbcode parser that allow xss vulnerabilities, and as a result, the 3rd party library isn't needed anymore. It cleans responsibly by first, running `htmlspecialchars()` over the content, followed by sanitizing the untrusted urls and whitelisting their protocol.
 2025-01-20 02:52:42 +00:00
HDVinnie
9d7e9d072c update: chat message resource to remove htmlspecialchars_decode 
- this is not needed with voku otherwise inputted html will parse
 2024-10-23 16:10:16 -04:00
HDVinnie
af21147802 remove: hdvinnie/laravel-html-purifier in preparation for octane 2024-10-22 22:10:43 -04:00
Roardom
b86475a732 add: strict types to all files 2024-05-23 13:58:29 +00:00
HDVinnie
b3f0386149 cleanup: pt.1 2023-10-12 22:30:52 -04:00
Roardom
42c23aa0b5 fix: Resource php doc blocks 2023-08-25 03:07:58 +00:00
Roardom
9d4789ba91 refactor: require whitespace before statements 2023-07-07 00:27:13 +00:00
HDVinnie
472c820f99 update: UNIT3D linting 
- github action updated with new ruleset in pint.json
- codebase linted with new ruleset
- contributors can now run `./vendor/bin/pint`
- action workflow will auto correct any lint issues upon commit/opened pull request
 2023-02-02 08:02:34 -05:00
HDVinnie
2ca429c4ce Revert "PSR12 Linting" 
This reverts commit 7e65e1d589.
 2022-09-11 19:51:58 -04:00
HDVinnie
7e65e1d589 PSR12 Linting 2022-09-11 23:50:41 +00:00
StyleCI Bot
d3b0ed05cc Apply fixes from StyleCI 2022-02-09 04:35:52 +00:00
HDVinnie
1fc7c75eaa update: dependencies 2022-02-08 23:34:35 -05:00
HDVinnie
00d00024e5 chore: cleanup 2022-01-23 17:42:16 -05:00
HDVinnie
98521378d2 chore: phpdoc blocks 2022-01-10 17:46:43 -05:00
HDVinnie
97394c062f chore: adopt type hints 2022-01-07 23:35:33 -05:00
HDVinnie
749a14eb46 security: chat data 2021-09-26 11:59:15 -04:00
HDVinnie
13ccb517ba Apply fixes from StyleCI 
[ci skip] [skip ci]
 2020-11-24 07:51:55 +00:00
HDVinnie
a9c9067ab6 update: emoji support 
- rebranding to latest joypixels
 2020-11-24 02:51:43 -05:00
HDVinnie
1042342923 refactor: preslash simple functions 2020-09-04 13:06:59 -04:00
HDVinnie
4a7dfdeceb update: chatbox 2020-08-27 09:37:50 -04:00
HDVinnie
a975116218 refactor: preslash simple functions 
- Add pre-slash to short named functions to improve performance by almost 30%
-  @see https://stackoverflow.com/questions/55419673/php7-adding-a-slash-to-all-standard-php-functions-php-cs-fixer-rule
 2020-07-22 15:09:37 -04:00
HDVinnie
408bfafc3e Apply fixes from StyleCI 
[ci skip] [skip ci]
 2020-03-05 15:47:30 +00:00
HDVinnie
4b9c006a05 chore: phpdoc blocks cleanup 2020-03-05 10:46:14 -05:00
HDVinnie
780e0c1f0e chore: update license block 2020-02-12 15:05:34 -05:00
HDVinnie
c8f2390c4d Apply fixes from StyleCI 
[ci skip] [skip ci]
 2020-01-06 15:38:43 +00:00
HDVinnie
d889971834 Apply fixes from StyleCI 
[ci skip] [skip ci]
 2019-11-05 22:40:30 +00:00
HDVinnie
eed3b51c92 (Update) CRUDDY PT.7 🚀 2019-10-25 17:35:14 -04:00
HDVinnie
a3efd98e84 (Security Update) HTMLPurifier 🔐 
- closes #875
- Fixes HTML Tags Not Being Contained / Elevated within user-generated bodies like (posts, comments, signature, etc.)
 2019-10-11 11:57:17 -04:00
HDVinnie
1100e56c35 (Update) BBCode V2 🚀 
- complete refactor of BBCODE
- updated wysibb
- removed decoda for internal BBCODE parser
 2019-06-10 15:46:05 -04:00
HDVinnie
f711b767a2 Apply fixes from StyleCI 2019-02-09 20:56:26 +00:00
singularity43
c0319d9feb (Update) ChatMessageResource Resource 
Add new array fields.
 2019-02-09 15:01:45 -05:00
HDVinnie
d65a6479ae Merge branch 'master' into feature/chat-private-messages 2019-02-02 20:42:27 -05:00
HDVinnie
2f2c52328b Apply fixes from StyleCI 2018-12-06 22:57:41 +00:00
HDVinnie
00bb324053 Apply fixes from StyleCI 2018-12-06 14:42:13 +00:00
HDVinnie
1dee25b7ca (Add) Missing License Blocks 
- few files were missing NOTICE OF LICENSE
 2018-11-05 18:51:45 -05:00
HDVinnie
640f05ae87 (Security Fix) Chatbox XSS Vulnerability 
- Fixes Vue.js Vulnerability due to v-html directive
- if not using git:updater you must run the following commands.
`composer update && php artisan clear:all`
 2018-10-28 21:02:24 -04:00
poppabear8883
9e70fb5518 (WIP) Chat Censoring v1.5 2018-07-26 16:54:25 -04:00
poppabear8883
a6b834ab66 (Security Update) This update addresses a potential security issue 2018-07-25 12:24:04 -04:00
poppabear8883
3bd9256cac (WIP)[Chat] Private Messages 2018-05-16 16:17:30 -04:00
poppabear8883
6c45d42372 (WIP)[Chat] Private Messages 
This is a "Work In Progress" commit. Its not expected to work.
 2018-05-15 23:07:52 -04:00
Poppabear
2783f1122d (Fix) Timestamps 2018-05-13 17:24:49 -04:00
Poppabear
b1de6a86a8 (Feature) TimeAgo Timestamps 2018-05-13 17:12:28 -04:00
Poppabear
82f0378856 (Fix) Bug: Emoji Parsing Issue 
Sometime emoji's would randomly not render due to VueJS being reactive
and during DOM updates, it would just cause it to be wacky!

By parsing the emoji's server side before VueJS renders the dom, we now
solve this issue.
 2018-05-10 21:13:17 -04:00
Poppabear
5ab28e929c (fix) System message spacing issue 2018-05-09 18:41:07 -04:00
Poppabear
9a67c774e3 (fix) System message spacing issue 2018-05-09 18:32:42 -04:00
poppabear8883
bb5f506927 (Update)[Chat 2.0] removed comment 2018-05-03 21:34:55 -04:00
poppabear8883
f52662a061 (Alpha) Chat v2.0 (pusher only) 
This is a "Alpha" commit. Its meant for Alpha testing. Features are
still being developed.

Please note, you must setup at least a FREE account with pusher and set
the corresponding fields in you `.env` file.

In the coming commits I will introducing a fallback so that once the
FREE pusher DAILY limits are reached, it will fall back to tradiational
database pulling every 3 seconds to get new messages.

There are still features that need to be added:
1. Emoji's
2. Statuses
3. User Tagging
4. Users List
5. Delete own messages, and staff moderation
and more ...
 2018-05-03 21:32:59 -04:00
poppabear8883
c98c567af7 (WIP) Chat v2.0 
This is a "Work In Progress" commit. Its not expected to work.
 2018-04-30 22:50:13 -04:00