Skip to content

Use Prettier to format samples #1203

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 6 commits into
base: main
Choose a base branch
from
Open

Use Prettier to format samples #1203

wants to merge 6 commits into from

Conversation

jhuleatt
Copy link
Collaborator

No description provided.

github-advanced-security[bot]
github-advanced-security bot found potential problems Apr 14, 2025
View reviewed changes
Node-1st-gen/exif-images/functions/index.js
} else {
const split = line.replace('"', '\\"').split(': ');
const split = line.replace('"', '\\"').split(": ");

Check failure

Code scanning / CodeQL

Incomplete string escaping or encoding High

This replaces only the first occurrence of '"'.
Node-1st-gen/exif-images/public/main.js
var url = snapshot.metadata.downloadURLs[0];
console.log("File available at", url);
this.linkContainer.innerHTML =
'<a href="' + url + '">/' + filePath + "</a>";

Check warning

Code scanning / CodeQL

DOM text reinterpreted as HTML Medium

DOM text
Loading
is reinterpreted as HTML without escaping meta-characters.
DOM text
Loading
is reinterpreted as HTML without escaping meta-characters.
Node-1st-gen/image-maker/functions/index.js
for (let i=0; i<tracers.length; i++) {
ray(Math.round(27/tracers[i]), 81, ctx, {x: 243, y: 0});
const ctx = canvas.getContext("2d");
for (let i = 0; i < tracers.length; i++) {

Check failure

Code scanning / CodeQL

Loop bound injection High

Iteration over a user-controlled object with a potentially unbounded .length property from a
user-provided value
Loading
.
Node-1st-gen/okta-auth/functions/index.js
functions.logger.error('Error minting token.', err);
res.status(500).send('Error minting token.');
}
app.get("/firebaseCustomToken", [cors, oktaAuth], async (req, res) => {

Check failure

Code scanning / CodeQL

Missing rate limiting High

This route handler performs
authorization
Loading
, but is not rate-limited.
Node-1st-gen/quickstarts/auth-blocking-functions/functions/index.js
}
// [START v1domainHttpsError]
// Only users of a specific domain can sign up.
if (!email.includes("acme.com")) {

Check failure

Code scanning / CodeQL

Incomplete URL substring sanitization High

'
acme.com
Loading
' can be anywhere in the URL, and arbitrary hosts may come before or after it.
Node-1st-gen/quickstarts/uppercase-rtdb/functions/test/test.online.js
projectId: 'my-project',
databaseURL: 'https://my-project.firebaseio.com'
projectId: "my-project",
databaseURL: "https://my-project.firebaseio.com",

Check failure

Code scanning / CodeQL

Incomplete regular expression for hostnames High test

This string, which is used as a regular expression
here
Loading
, has an unescaped '.' before 'firebaseio.com', so it might match more hosts than expected.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@jhuleatt