🛡️ fix: Minor Vulnerabilities (#4543)

* fix: ReDoS in ChatGPT Import * ci: should correctly process citations from real ChatGPT data * ci: Add ReDoS vulnerability test for processAssistantMessage * refactor: Update thread management and citation handling * refactor(validateImageRequest): robust validation * refactor(Prompt.js): update name search regex to escape special characters * refactor(Preset): exclude user from preset update to prevent mass assignment * refactor(files.js): Improve file deletion process * ci: updated validateImageRequest.spec.js * a11y: plugin pagination * refactor(CreatePromptForm.tsx): Improve input field styling * chore(Prompts): typing and accessibility * fix: prompt creation access role check * chore: remove duplicate jsdocs
2025-12-20 18:30:15 +01:00 · 2024-10-24 15:50:48 -04:00 · 2024-10-24 15:50:48 -04:00 · 3f3b5929e9
commit 3f3b5929e9
parent 094a40dbb0
15 changed files with 698 additions and 53 deletions
--- a/client/src/components/Prompts/Groups/CreatePromptForm.tsx
+++ b/client/src/components/Prompts/Groups/CreatePromptForm.tsx
@ -81,10 +81,10 @@ const CreatePromptForm = ({
      CreateFormValues,
      'name' | 'category' | 'oneliner' | 'command'
    >;
-    if ((oneliner?.length || 0) > 0) {
+    if ((oneliner?.length ?? 0) > 0) {
      groupData.oneliner = oneliner;
    }
-    if ((command?.length || 0) > 0) {
+    if ((command?.length ?? 0) > 0) {
      groupData.command = command;
    }
    createPromptMutation.mutate({
@ -111,7 +111,7 @@ const CreatePromptForm = ({
                  <Input
                    {...field}
                    type="text"
-                    className="mr-2 w-full border border-border-medium p-2 text-2xl placeholder:text-text-tertiary dark:placeholder:text-text-secondary"
+                    className="mr-2 w-full border border-border-medium p-2 text-2xl text-text-primary placeholder:text-text-tertiary dark:placeholder:text-text-secondary"
                    placeholder={`${localize('com_ui_prompt_name')}*`}
                    tabIndex={0}
                  />
--- a/client/src/components/Prompts/Groups/FilterPrompts.tsx
+++ b/client/src/components/Prompts/Groups/FilterPrompts.tsx
@ -35,7 +35,7 @@ export function FilterItem({
    >
      {icon}
      <span>{label}</span>
-      {isActive && (
+      {isActive === true && (
        <span className="absolute bottom-0 right-0 top-0 flex items-center">
          <Dot />
        </span>
@ -122,7 +122,7 @@ export default function FilterPrompts({
        return setCategory('');
      }
      setCategory(category);
-      if (icon && React.isValidElement(icon)) {
+      if (icon != null && React.isValidElement(icon)) {
        setSelectedIcon(icon);
      }
    },
@ -130,7 +130,7 @@ export default function FilterPrompts({
  );

  return (
-    <div className={cn('flex gap-2', className)}>
+    <div className={cn('flex gap-2 text-text-primary', className)}>
      <DropdownMenu>
        <DropdownMenuTrigger asChild>
          <Button