Notifications
Clear all
Topic starter
Hey!
There might've been a XSS issue on the latest version as someone managed to get the token of another user (me) and log into the server with their account. The person said they didnt use XSS and it was transmitted on accident in a specific event.
While i saw others try to use XSS it seemed like that didnt work. In order to make absolutely sure that this cant happen i tried to implement some XSS Filters. I also went through the code to check for any events that could accidentally transmit the token.
In the version 2.6.6 there is a bug with the context menu not working for the channel tree. This issue is already fixed, view on github here. You could fix it yourself until im done with the next update (accidentally duplicated a string, its super easy).
Edit:
XSS wasnt a problem but i added filters to make sure it stays like this as well.
If you're curious about what im working on right now and what features might come then you might wanna check out the github discussions.
TL;DR
The update will be about bugs and security patches/improvements. Also some small features will be added tho more on it once i release it.
This topic was modified 5 months ago 2 times by Shy Devil
Please share this forum with your friends!
Let people know the software exists!
i would be very thankful <3
Posted : 23/06/2024 6:15 pm
Topic starter
Here are some small behind-the-scenes infos!
- Embeds and how they're being detected/managed has changed! Also audio embeds have a custom audio player now
- Text Formatting is also coming back again after being broken for some time. I will also implement a proper markdown editor if possible.
- Introducing SQL Database
- Media URLs are now being saved in the database including the type of media format, like image, video, audio. This is supposed to be a form of cache because fetching the Content-Type everytime would make the chat load slow, so instead its quickly loaded from the database, and if the server isnt restarted it loads even faster from a "in-app" cache.
- Messages will be saved in the database as well. This is great for bigger servers and for scaling.
- Better Code
- Code is now better organised and split into multiple files. I tried using typescript as well but maybe in the future again.
Please share this forum with your friends!
Let people know the software exists!
i would be very thankful <3
Posted : 03/07/2024 7:27 pm
Topic starter
Also im replacing the normal text input field with a markdown editor
Please share this forum with your friends!
Let people know the software exists!
i would be very thankful <3
Posted : 04/07/2024 12:24 pm
Topic starter
Update Previews will be available here on github now
Please share this forum with your friends!
Let people know the software exists!
i would be very thankful <3
Posted : 20/07/2024 11:41 pm