Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[RELEASE] PM-413 - Deprecate Connect (5443) #1611

Merged
merged 46 commits into from
Feb 26, 2025
Merged

[RELEASE] PM-413 - Deprecate Connect (5443) #1611

merged 46 commits into from
Feb 26, 2025

Conversation

vas3a
Copy link
Collaborator

@vas3a vas3a commented Feb 25, 2025

This release contains code migration from connect to WM in order to deprecate Connect

https://topcoder.atlassian.net/browse/PM-413 - Deprecate Connect (5443)
https://topcoder.atlassian.net/browse/PM-803 - Regresion testing & fixes

himaniraghav3 and others added 30 commits January 13, 2025 23:40
PM-228 Fix system information leak
d081dcd
log error only in dev mode
58e7b40
Merge branch 'develop' into PM-228
b568aaa
PR feedback
47e1549
@himaniraghav3
Merge pull request #1603 from topcoder-platform/PM-228
b67245e 
PM- 228 Fix system information leak
@vas3a
[challenge] Add Projects management functionality - veshu submission
a9b1b17
@vas3a
[challenge] Add BA management functionality - veshu submission
264d7c9
@vas3a
[challenge] Add TaaS management functionality - diazz submission
9e85a0a
@vas3a
final fixes for TaaS work
c65a9a2
@vas3a
Merge pull request #1604 from topcoder-platform/challenges-updates
01b0ee1 
Challenges updates
@vas3a
PM-684 - make job description a required field for Taas Projects
606cc39
@vas3a
Merge pull request #1605 from topcoder-platform/PM-684_make-job-desc-…
82f7c17 
…required

PM-684 - make job description a required field for Taas Projects
@vas3a
PM-683 - update workload field
e91a22f
@vas3a
Merge branch 'develop' of github.com:topcoder-platform/work-manager i…
89123ef 
…nto update-workload-field
@vas3a
Merge pull request #1606 from topcoder-platform/update-workload-field
03c0b3c 
PM-683 - update workload field
@Gunasekar-K
Update config.yml - Build issue
f87645c
@vas3a
PM-686 - NDA & work groups for projects
715c427
@vas3a
comments
cccd7f3
@vas3a
Merge pull request #1607 from topcoder-platform/PM-686_add-nda
d2d2a07 
PM-686 - NDA & work groups for projects
@jmgasper
PM-692
1c85fef
@jmgasper
PM-693
e075d19
@jmgasper
PM-691
9a3fd69
@Gunasekar-K
Update config.yml - Build fix
409270d
@vas3a
PM-683 - send jobid on update for taas projects
04fc9ec
@vas3a
Merge pull request #1608 from topcoder-platform/PM-683_send-jobid-on-…
158140b 
…update

PM-683 - send jobid on update for taas projects
@vas3a
PM-690 - assets library management
8a256a0
@vas3a
deploy branch
2cc9ba2
@vas3a
Fix assets library upload first attachment
356f008
@vas3a
PM-804 - restrict user access based on project role
2c40ccd
@vas3a
PM-805 - send status when editing project
4bb611f
vas3a and others added 16 commits February 18, 2025 10:54
@vas3a
PM-802 - load more projects on scroll
9d68f4f
@vas3a
PM-806 - remove "manage milestone" buttons
973049f
@vas3a
Merge branch 'PM-690_asset-library-management' into PM-803_wm-regress…
c0ec5fb 
…ion-fixes
@vas3a
update regex
ab9bb07
@vas3a
deploy to dev
49c655e
@vas3a
PM-813 - fix project creation
a745f7b
@vas3a
PM-802 - show all projects
86e5ca3
@vas3a
For admin, fetch all projects
22cd966
@vas3a
PM-846 - show status field for managers
4e47782
@vas3a
PM-845 - allow admin to edit project even if not part of the project
5f7bbad
@vas3a
PM-839 - disable "launch new" challenge button when project is not ac…
ab260d4 
…tive
@vas3a
fix permission check
339342a
@vas3a
PM-846 - fix project status field
babaa8e
@vas3a
PM-853 - add cancelled reason
190f97e
@vas3a
Merge pull request #1610 from topcoder-platform/PM-803_wm-regression-…
cfe0b83 
…fixes

PM-803 wm regression fixes
@vas3a
Merge pull request #1609 from topcoder-platform/PM-690_asset-library-…
bf96af0 
…management

PM-690 - assets library management
github-advanced-security[bot]
github-advanced-security bot found potential problems Feb 25, 2025
View reviewed changes
src/util/validation.js
/**
* regex for url validation
*/
const urlRegex = /((https?):\/\/)?(www.)?[a-z0-9]+(\.[a-z]{2,}){1,3}(#?\/?(?:[a-zA-Z0-9#]+))*\/?(\?[a-zA-Z0-9-_]+=[a-zA-Z0-9-%]+&?)?$/

Check failure

Code scanning / CodeQL

Inefficient regular expression High

This part of the regular expression may cause exponential backtracking on strings containing many repetitions of '#'.

Copilot Autofix AI 9 days ago

To fix the problem, we need to modify the regular expression to remove the ambiguity that causes exponential backtracking. Specifically, we should avoid using ambiguous patterns like [a-zA-Z0-9#]+ and replace them with more precise patterns that do not allow multiple ways to match the same string.

The best way to fix this without changing existing functionality is to replace the problematic part of the regular expression with a more specific pattern. In this case, we can replace [a-zA-Z0-9#]+ with (?:[a-zA-Z0-9]+|#+) to ensure that the pattern matches either a sequence of alphanumeric characters or a sequence of # characters, but not an ambiguous mix of both.

Suggested changeset 1
src/util/validation.js

Autofix patch

Autofix patch
Run the following command in your local git repository to apply this patch
cat << 'EOF' | git apply
diff --git a/src/util/validation.js b/src/util/validation.js
--- a/src/util/validation.js
+++ b/src/util/validation.js
@@ -60,3 +60,3 @@
  */
-const urlRegex = /((https?):\/\/)?(www.)?[a-z0-9]+(\.[a-z]{2,}){1,3}(#?\/?(?:[a-zA-Z0-9#]+))*\/?(\?[a-zA-Z0-9-_]+=[a-zA-Z0-9-%]+&?)?$/
+const urlRegex = /((https?):\/\/)?(www.)?[a-z0-9]+(\.[a-z]{2,}){1,3}(#?\/?(?:[a-zA-Z0-9]+|#+))*\/?(\?[a-zA-Z0-9-_]+=[a-zA-Z0-9-%]+&?)?$/
 
EOF
@@ -60,3 +60,3 @@
*/
const urlRegex = /((https?):\/\/)?(www.)?[a-z0-9]+(\.[a-z]{2,}){1,3}(#?\/?(?:[a-zA-Z0-9#]+))*\/?(\?[a-zA-Z0-9-_]+=[a-zA-Z0-9-%]+&?)?$/
const urlRegex = /((https?):\/\/)?(www.)?[a-z0-9]+(\.[a-z]{2,}){1,3}(#?\/?(?:[a-zA-Z0-9]+|#+))*\/?(\?[a-zA-Z0-9-_]+=[a-zA-Z0-9-%]+&?)?$/

Copilot is powered by AI and may make mistakes. Always verify output.
Positive Feedback
Negative Feedback

Provide additional feedback

Please help us improve GitHub Copilot by sharing more details about this comment.

Please select one or more of the options
@kkartunov kkartunov merged commit 02d1dc4 into master Feb 26, 2025
3 of 4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jmgasper jmgasper jmgasper approved these changes

@kkartunov kkartunov kkartunov approved these changes

@hentrymartin hentrymartin Awaiting requested review from hentrymartin

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@vas3a @jmgasper @kkartunov @himaniraghav3 @Gunasekar-K