ahmadalfy / gitlab-explorer Goto Github PK

Currently there is no indicator for asynchronous requests in progress. The system should inform the user of the running requests statuses.

Currently information about retrieval of the data displayed in the panels are stored in the localStorage. A better approach would be to log this data in IndexedDB

Currently when requesting (projects, groups, members, commit diffs) beyond the API limit you only get 100 entry. The system should detect that and retrieve the next pages till all data is fetched

We are using a self-hosted version of Gitlab in my company, and I think it will be a good option to support that.

My initial assumption is just adding a baseUrl in the env file, and default it to the official Gitlab API, and use this value when constructing the full API URL.

I will give it a try and send you a proper PR.

The repo should have a CONTRIBUTION.md file that lists how to setup on a local machine and the workflow to take when working on any changes related to this repo.

Regular expression Denial of Service (ReDoS) in /web_modules/diff2html.js

Fixability: we don't have available fix now

Overview:
We found a dangerous regex : ^@@@ -(\d+)(?:,\d+)? -(\d+)(?:,\d+)? +(\d+)(?:,\d+)? @@@.* it's used by exec, this may cause the program to hang or run out of memory while trying to match the pattern of regex

_{refrence id: 416815843594298551}

What do you want me to do next?
details@shieldfy details
ignore@shieldfy ignore ?

When filtering projects by group the use another filter (like search or date), the filter is applied to the whole listing not the filtered group of content.

Regular expression Denial of Service (ReDoS) in /web_modules/diff2html.js

Fixability: we don't have available fix now

Overview:
We found a dangerous regex : ^@@ -(\d+)(?:,\d+)? +(\d+)(?:,\d+)? @@.* it's used by exec, this may cause the program to hang or run out of memory while trying to match the pattern of regex

_{refrence id: 118615843594298458}

What do you want me to do next?
details@shieldfy details
ignore@shieldfy ignore ?

Regular expression Denial of Service (ReDoS) in /web_modules/downloadjs.js

Fixability: we don't have available fix now

Overview:
We found a dangerous regex : (Version)/(\d+).(\d+)(?:.(\d+))?.*Safari/ it's used by test, this may cause the program to hang or run out of memory while trying to match the pattern of regex

_{refrence id: 510915843594298861}

What do you want me to do next?
details@shieldfy details
ignore@shieldfy ignore ?

Regular expression Denial of Service (ReDoS) in /web_modules/downloadjs.js

Fixability: we don't have available fix now

Overview:
We found a dangerous regex : ^data:([\w+-]+/[\w+.-]+)?[,;] it's used by test, this may cause the program to hang or run out of memory while trying to match the pattern of regex

_{refrence id: 968115843594298768}

What do you want me to do next?
details@shieldfy details
ignore@shieldfy ignore ?

Regular expression Denial of Service (ReDoS) in /web_modules/diff2html.js

Fixability: we don't have available fix now

Overview:
We found a dangerous regex : index it's used by exec, this may cause the program to hang or run out of memory while trying to match the pattern of regex

_{refrence id: 524615843594298679}

What do you want me to do next?
details@shieldfy details
ignore@shieldfy ignore ?

Regular expression Denial of Service (ReDoS) in /web_modules/diff2html.js

Fixability: we don't have available fix now

Overview:
We found a dangerous regex : \s+\d{4}-\d{2}-\d{2} \d{2}:\d{2}:\d{2}(?:.\d+)? [+-]\d{4}.*$ it's used by replace, this may cause the program to hang or run out of memory while trying to match the pattern of regex

_{refrence id: 83891584359429836}

What do you want me to do next?
details@shieldfy details
ignore@shieldfy ignore ?

Currently information about retrieval of the data displayed in the panels are stored in the localStorage. A better approach would be to log this data in IndexedDB