- Issue created by @smustgrave
- π©πͺGermany jurgenhaas Gottmadingen
smustgrave β credited jurgenhaas β .
- Status changed to Needs review
12 months ago 1:05pm 10 January 2024 - π³π±Netherlands eelkeblok Netherlands π³π±
I noticed there is a ton of dependencies being injected into the base plugin. Are all these needed for the large majority of plugins? Otherwise, it may be better to keep the injected dependencies to a minimum and have individual plugins pull their dependencies from the container in the create() method.
- π³π±Netherlands eelkeblok Netherlands π³π±
Another observation: some of the checks build batches themselves, which rely on some postively old looking include files. Might it be an idea to implement batching in the run() method of the plugins somehow? I found the field scan could benefit from some batching, because I was running into trouble with it trying to scan the field value for over 300 000 private messages. This may be too big of a change in the RC stage, though.
- πΊπΈUnited States smustgrave
Any improvements you see feel free to open tickets up. Can't say they'll get in before 3.0.0 release as aiming for functional first but definitely in following releases for sure.
- πΊπΈUnited States smustgrave
Comment #20 I think should be done before a 3.0.0 release though.
- π³π±Netherlands eelkeblok Netherlands π³π±
I think the groundwork for #21 as well. It would be a good idea to prepare the SecurityCheckInterface to be able to call run() repeatedly and pass some of the batch information back and forth (I think finished info and a/the sandbox). We should also port at least one of the batch checks as a proof of concept. The others could follow in minor releases, probably. It would make the checks fully self-contained.
- π³π±Netherlands eelkeblok Netherlands π³π±
Excellent that we got these in!
- πΊπΈUnited States smustgrave
Just did a rc4 release.
Will give it a few weeks before tagging a 3.0.0 release.
π Batchify and optimize field scan (dangerous tags in content) Needs review is the last ticket but don't think it's a hard blocker.
Still todo for myself update the module page with new checks.
- Status changed to RTBC
9 months ago 10:48am 14 March 2024 - π³π±Netherlands eelkeblok Netherlands π³π±
Agreed that π Batchify and optimize field scan (dangerous tags in content) Needs review can wait until a subsequent release.
- πΊπΈUnited States smustgrave
Agreed but lets see if we can get π Scan freezes on File permissions. Guzzle Error Needs review in for 3.0.0 as the last one
- Status changed to Fixed
9 months ago 3:44pm 15 March 2024 - πΊπΈUnited States smustgrave
Just did a 3.0.0, thanks everyone for helping get there!
- πΊπΈUnited States greggles Denver, Colorado, USA
Great work, smustgrave! I appreciate all your effort to improve this module and modernize it.
Automatically closed - issue fixed for 2 weeks with no activity.
