fix : added new package-lock for mutex dependency

linagora · h1ppox99 · Aug 19, 2024 · Aug 19, 2024 · Aug 19, 2024 · Aug 20, 2024
commit 3b173442d26e3e22a70d4eb748ac78c31446b2a7
diff --git a/package-lock.json b/package-lock.json
diff --git a/packages/matrix-client-server/src/presence/getStatus.ts b/packages/matrix-client-server/src/presence/getStatus.ts
      )
    } else {
      clientServer.authenticate(req, res, (data, id) => {
        // TODO : Handle error 403 where the user isn't allowed to see this user's presence status, may have to do with the "users_to_send_full_presence_to" table in the matrixDb
        clientServer.matrixDb
          .get(
            'presence_stream',
diff --git a/packages/matrix-client-server/src/user/filter/postFilter.ts b/packages/matrix-client-server/src/user/filter/postFilter.ts
      jsonContent(req, res, clientServer.logger, (obj) => {
        validateParameters(res, schema, obj, clientServer.logger, (obj) => {
          const filter: Filter = new Filter(obj)
          // TODO : verify if the user is allowed to make requests for this user id
          // we consider for the moment that the user is only allowed to make requests for his own user id
          const userId = (req as Request).params.userId
          if (!isMatrixIdValid(userId)) {
            .insert('user_filters', {
              user_id: userId,
              filter_id: filterId,
              filter_json: JSON.stringify(filter) // TODO : clarify the type of the filter_json (bytea, string ???)
            })
            .then(() => {
              clientServer.logger.info(`Inserted filter: ${filterId}`)
diff --git a/packages/utils/src/utils.ts b/packages/utils/src/utils.ts
    ) as Record<string, string>
  } else {
    // We construct a URL object to extract the query parameters with .searchParams
    const url = new URL(req.url ?? '', 'http://default-host') // No need to provide a correct host since we simply extract the query parameters
    queryParams = Object.fromEntries(
      Array.from(url.searchParams.entries()).filter(
        ([, value]) => typeof value === 'string'
	)
	} else {
	clientServer.authenticate(req, res, (data, id) => {
	// TODO : Handle error 403 where the user isn't allowed to see this user's presence status, may have to do with the "users_to_send_full_presence_to" table in the matrixDb
Check notice Code scanning / devskim A "TODO" or similar was left in source code, possibly indicating incomplete functionality Note Suspicious comment
	clientServer.matrixDb
	.get(
	'presence_stream',
	jsonContent(req, res, clientServer.logger, (obj) => {
	validateParameters(res, schema, obj, clientServer.logger, (obj) => {
	const filter: Filter = new Filter(obj)
	// TODO : verify if the user is allowed to make requests for this user id
Check notice Code scanning / devskim A "TODO" or similar was left in source code, possibly indicating incomplete functionality Note Suspicious comment
	// we consider for the moment that the user is only allowed to make requests for his own user id
	const userId = (req as Request).params.userId
	if (!isMatrixIdValid(userId)) {
	.insert('user_filters', {
	user_id: userId,
	filter_id: filterId,
	filter_json: JSON.stringify(filter) // TODO : clarify the type of the filter_json (bytea, string ???)
Check notice Code scanning / devskim A "TODO" or similar was left in source code, possibly indicating incomplete functionality Note Suspicious comment
	})
	.then(() => {
	clientServer.logger.info(`Inserted filter: ${filterId}`)
	) as Record<string, string>
	} else {
	// We construct a URL object to extract the query parameters with .searchParams
	const url = new URL(req.url ?? '', 'http://default-host') // No need to provide a correct host since we simply extract the query parameters
Check warning Code scanning / devskim An HTTP-based URL without TLS was detected. Warning Insecure URL
	queryParams = Object.fromEntries(
	Array.from(url.searchParams.entries()).filter(
	([, value]) => typeof value === 'string'