Commit message (Collapse) | Author | Files | Lines | ||
---|---|---|---|---|---|
2022-01-02 | playing around with types | stuebinm | 1 | -0/+29 | |
2022-01-02 | use url package for parsing of urls | jonny | 2 | -12/+30 | |
2022-01-02 | fixed url injection by means of starting an url with "." and turning the ↵ | jonathan | 1 | -1/+1 | |
prefix into a subdomain | |||||
2022-01-02 | script links can't contain @ | stuebinm | 1 | -1/+3 | |
2022-01-02 | open BBBs in new Tab so that they work now :/ | tabascoeye | 1 | -2/+2 | |
PLEASE review! I have no idea of haskell | |||||
2022-01-02 | SECURITY: Fix path traversal in script verification | Serge Bazanski | 1 | -2/+3 | |
The following used to be allowed: scripts: https://static.rc3.world/scripts/../maps/81c8add623eea2704f20/e65b545e-342f-4be0-b369-c0eacff7b15d/re-blessed.mp3.js This is obviously not good, as it allows scripts from arbitrary maps. | |||||
2022-01-02 | fix bbb urls a second time … | stuebinm | 1 | -5/+1 | |
2022-01-02 | warn if main.json does not link back to lobby | stuebinm | 1 | -6/+13 | |
2022-01-02 | fix bbb url resolution | stuebinm | 1 | -1/+1 | |
2022-01-02 | allow *.streamproxy.rc3.world | stuebinm | 1 | -1/+2 | |
2022-01-02 | type systems don't protect against off-by-one | stuebinm | 1 | -1/+1 | |
2022-01-02 | urlencode dereferrer links | stuebinm | 1 | -2/+2 | |
2022-01-02 | openWebsiteTriggerMessage can also be used for openTab | stuebinm | 1 | -2/+8 | |
2021-12-26 | Allow to copy sounds for custom JS with ObjectProperty `loadSound` | Sven G. Brönstrup | 1 | -1/+1 | |
2021-12-26 | separate blocking for separate contexts | stuebinm | 4 | -25/+45 | |
(audio links now have their own allowlist, which won't put things through the dereferrer) | |||||
2021-12-26 | change lint msg for property suggestions | stuebinm | 1 | -1/+1 | |
2021-12-25 | add lint if people set tilesetCopyright on tiles | stuebinm | 1 | -0/+2 | |
2021-12-25 | whoops, forgot to delete an output field and now it's in the hub | stuebinm | 1 | -1/+0 | |
2021-12-25 | apply some hlint hints | stuebinm | 1 | -3/+3 | |
2021-12-25 | the lobby is allowed to contain defunct links | stuebinm | 1 | -12/+15 | |
2021-12-25 | hint if people set collides on tilesets | stuebinm | 1 | -1/+2 | |
2021-12-25 | don't print doubled lints twice | stuebinm | 2 | -11/+11 | |
2021-12-25 | better lint message | stuebinm | 1 | -1/+1 | |
2021-12-24 | persist, default aren't always booleans | stuebinm | 1 | -1/+0 | |
2021-12-24 | smaller changes | stuebinm | 3 | -5/+4 | |
2021-12-24 | allow openWebsiteAllowApi if website is on static.rc3.world | stuebinm | 1 | -2/+12 | |
2021-12-24 | allow shared (not just shared-) as prefix for shared jitsis | stuebinm | 1 | -1/+1 | |
this might make things less confusing for some people | |||||
2021-12-23 | extra lint for people confused by badges | stuebinm | 1 | -3/+4 | |
tbh I'm confused by them as well | |||||
2021-12-23 | some people define tilesets without images??? | stuebinm | 2 | -2/+4 | |
2021-12-23 | correct recognision of entrypoints in sublayers | stuebinm | 2 | -16/+23 | |
also, the recursive check layer function slowly approaches something like readability! | |||||
2021-12-23 | openTab's semantics are the same as openWebsite's | stuebinm | 1 | -9/+6 | |
(it's not a modifier for openWebsite, as I had previously though) | |||||
2021-12-23 | add suggestions for misspelled properties | stuebinm | 5 | -43/+84 | |
(suggestions are shown only if they have a Damerau-Levenshtein distance <= 4, which seems to yield reasonably good results) | |||||
2021-12-23 | limit output for frequent lints | stuebinm | 2 | -2/+4 | |
it's now limited to just the first ten contexts, then an ellipsis | |||||
2021-12-23 | disallow properties with different capitalisations | stuebinm | 1 | -10/+7 | |
since apparently sometimes workadventure is case-insensitive, and sometimes it's not | |||||
2021-12-22 | Fixed types of extended scripts properties | Sven G. Brönstrup | 1 | -3/+8 | |
2021-12-22 | shorten Properties.hs | stuebinm | 1 | -152/+76 | |
down almost 100 lines of code! (and hopefully denotationally equivalent, except for the bits about where it was wrong before and didn't replace uris correctly) | |||||
2021-12-22 | add zoom function for LintWriter | stuebinm | 1 | -2/+19 | |
2021-12-21 | Did some of the desired changes | Sven G. Brönstrup | 1 | -7/+10 | |
2021-12-21 | check that bbbRoom contains a valid assembly_slug | stuebinm | 1 | -7/+12 | |
2021-12-21 | correct bbb link substitution | stuebinm | 1 | -10/+11 | |
(unfortunately this one's hardcoded, the config options just aren't general enough) | |||||
2021-12-21 | need rc3_21 slug in inter-assembly-links | stuebinm | 1 | -1/+1 | |
2021-12-21 | disallow double courly braces | stuebinm | 2 | -2/+3 | |
as per yesterday's discussion about extended scripting variables | |||||
2021-12-20 | generalise unwrapURI a bit | stuebinm | 1 | -4/+19 | |
2021-12-20 | something something encoding mismatch | stuebinm | 1 | -1/+1 | |
2021-12-20 | Resolved merge conflict | Sven G. Brönstrup | 1 | -5/+1 | |
2021-12-20 | Added extended script action zone properties | Sven G. Brönstrup | 1 | -0/+11 | |
2021-12-20 | forbid opening local html files in iframes | stuebinm | 1 | -2/+4 | |
2021-12-20 | disallow extended API variables in links | stuebinm | 3 | -3/+15 | |
2021-12-19 | Wrap urls for inline iframes | Sven G. Brönstrup | 1 | -0/+3 | |
2021-12-19 | Added bell properties | Sven G. Brönstrup | 1 | -4/+36 | |