kenmirrors/MagicMirror
1
0
Fork 0
mirror of https://github.com/MichMich/MagicMirror.git synced 2026-06-03 09:51:14 +00:00
Code Issues Projects Releases Wiki Activity
Files
13d51cfce92097e30b757097c62fff4e49bf88c2
MagicMirror/js
History
Kristjan ESPERANTO 13d51cfce9 CodeQL cleanup for alerts #18, #19, #20 (#4153) 
Small cleanup PR to close three CodeQL alerts, without changing app
behavior.

-
[#18](https://github.com/MagicMirrorOrg/MagicMirror/security/code-scanning/18)
in `js/loader.js`
-
[#19](https://github.com/MagicMirrorOrg/MagicMirror/security/code-scanning/19)
in `js/socketclient.js`
-
[#20](https://github.com/MagicMirrorOrg/MagicMirror/security/code-scanning/20)
in `tests/electron/modules/calendar_spec.js`

For `Loader` and `MMSocket`, make the global export explicit via
`globalThis` (instead of suppressing `no-unused-vars`).
For calendar tests, remove the unused debug helper `logAllText`.
Also includes a tiny e2e cleanup: `MM_PORT` is cleared in `afterAll`.

Outcome: Three open CodeQL alerts are addressed with small, low-risk
changes. The global intent for `Loader` and `MMSocket` is explicit, dead
test helper code is removed, and e2e test state is cleaned up more
reliably between runs.

With this, all current [code scanning
issues](https://github.com/MagicMirrorOrg/MagicMirror/security/code-scanning)
should be resolved in the develop branch 🎈
2026-05-12 23:32:16 +02:00
..
alias-resolver.js
chore: update ESLint and plugins, simplify config, apply new rules (#4052)
2026-03-07 08:34:28 -07:00
animateCSS.js
refactor: enable ESLint rule "no-unused-vars" and handle related issues (#4080)
2026-04-02 08:56:27 +02:00
app.js
fix(systeminformation): output right 'used node' version (from parent process) (#4141)
2026-05-06 19:10:57 +02:00
check_config.js
change loading config.js, allow variables in config.js and try to protect sensitive data (#4029)
2026-02-06 00:21:35 +01:00
defaults.js
add option to disable or restrict cors endpoint (#4087)
2026-04-04 11:55:13 +02:00
deprecated.js
remove kioskmode (#4027)
2026-02-06 00:09:59 +01:00
electron.js
fix(electron): resolve CodeQL alerts #22 and #25 in electron.js (#4136)
2026-05-03 15:59:17 +02:00
http_fetcher.js
polish HTTP 304 docs/test/handling (#4129)
2026-05-01 00:02:01 +02:00
ip_access_control.js
refactor: enable ESLint rule "no-unused-vars" and handle related issues (#4080)
2026-04-02 08:56:27 +02:00
loader.js
CodeQL cleanup for alerts #18, #19, #20 (#4153)
2026-05-12 23:32:16 +02:00
logger.js
refactor: enable ESLint rule "no-unused-vars" and handle related issues (#4080)
2026-04-02 08:56:27 +02:00
main.js
config endpoint must handle functions in module configs (#4106)
2026-04-12 15:50:00 -05:00
module.js
refactor: rewrite Module as an ES6 class (#4151)
2026-05-12 20:01:12 +02:00
node_helper.js
refactor: rewrite NodeHelper as an ES6 class (#4147)
2026-05-08 19:45:47 +02:00
releasenotes.js
[core] auto create release notes with every push on develop (#3985)
2025-12-10 11:56:31 -06:00
server_functions.js
fix replaceSecretPlaceholder (#4104)
2026-04-12 00:46:10 +02:00
server.js
config endpoint must handle functions in module configs (#4106)
2026-04-12 15:50:00 -05:00
socketclient.js
CodeQL cleanup for alerts #18, #19, #20 (#4153)
2026-05-12 23:32:16 +02:00
systeminformation.js
fix(systeminformation): output right 'used node' version (from parent process) (#4141)
2026-05-06 19:10:57 +02:00
translator.js
refactor: enable ESLint rule "no-unused-vars" and handle related issues (#4080)
2026-04-02 08:56:27 +02:00
utils.js
refactor(utils): drop ajv dependency (#4142)
2026-05-06 19:11:47 +02:00
vendor.js
simplify install and maintaining dependencies (#3795)
2025-06-01 17:03:11 +02:00