Skip to content

Use Prettier to format samples#1203

Open
jhuleatt wants to merge 6 commits intomainfrom
jhuleatt-prettier
Open

Use Prettier to format samples#1203
jhuleatt wants to merge 6 commits intomainfrom
jhuleatt-prettier

Conversation

@jhuleatt
Copy link
Collaborator

@jhuleatt jhuleatt commented Apr 14, 2025

No description provided.

github-advanced-security[bot]
github-advanced-security bot found potential problems Apr 14, 2025
View reviewed changes
Node-1st-gen/exif-images/functions/index.js
lines[index] = makeKeyFirebaseCompatible(`"${line.replace(":", '":{')}`);
} else {
const split = line.replace('"', '\\"').split(': ');
const split = line.replace('"', '\\"').split(": ");

Check failure

Code scanning / CodeQL

Incomplete string escaping or encoding High

This replaces only the first occurrence of '"'.
Node-1st-gen/exif-images/public/main.js
var url = snapshot.metadata.downloadURLs[0];
console.log("File available at", url);
this.linkContainer.innerHTML =
'<a href="' + url + '">/' + filePath + "</a>";

Check warning

Code scanning / CodeQL

DOM text reinterpreted as HTML Medium

DOM text
Loading
is reinterpreted as HTML without escaping meta-characters.
DOM text
Loading
is reinterpreted as HTML without escaping meta-characters.
Node-1st-gen/image-maker/functions/index.js
for (let i=0; i<tracers.length; i++) {
ray(Math.round(27/tracers[i]), 81, ctx, {x: 243, y: 0});
const ctx = canvas.getContext("2d");
for (let i = 0; i < tracers.length; i++) {

Check failure

Code scanning / CodeQL

Loop bound injection High

Iteration over a user-controlled object with a potentially unbounded .length property from a
user-provided value
Loading
.
Node-1st-gen/okta-auth/functions/index.js
functions.logger.error('Error minting token.', err);
res.status(500).send('Error minting token.');
}
app.get("/firebaseCustomToken", [cors, oktaAuth], async (req, res) => {

Check failure

Code scanning / CodeQL

Missing rate limiting High

This route handler performs
authorization
Loading
, but is not rate-limited.
Node-1st-gen/quickstarts/auth-blocking-functions/functions/index.js
}
// [START v1domainHttpsError]
// Only users of a specific domain can sign up.
if (!email.includes("acme.com")) {

Check failure

Code scanning / CodeQL

Incomplete URL substring sanitization High

'
acme.com
Loading
' can be anywhere in the URL, and arbitrary hosts may come before or after it.
Node-1st-gen/quickstarts/uppercase-rtdb/functions/test/test.online.js
projectId: 'my-project',
databaseURL: 'https://my-project.firebaseio.com'
projectId: "my-project",
databaseURL: "https://my-project.firebaseio.com",

Check failure

Code scanning / CodeQL

Incomplete regular expression for hostnames High test

This string, which is used as a regular expression
here
Loading
, has an unescaped '.' before 'firebaseio.com', so it might match more hosts than expected.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jhuleatt