Conversation
…_deploy fix: Netlify preview broken
To correctly implement the legacy "oldest membership" mode, we need the code to be more nuanced about the local transport. Specifically, it needs to allow for the transport we advertise in our membership to be different from the transport that we connect to and publish media on. Otherwise, if these two are yoked together, members will resend their memberships whenever an SFU hop occurs, which an attacker could use to cause an amplified wave of state changes.
…ingify_crash Fix: crash on mobile (android) with `0.17.0-rc.2` due to a log causing stringify to crash with `TypedError: circular structure`
Logically separate the advertised transport from the active transport
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
We only ever inspect the RTC backend identity of user media tiles. So it only needs to be exposed on the user media view model.
It is, in fact, required to be a behavior.
…dget-api Update dependency matrix-widget-api to v1.17.0
… 3) (element-hq#3793) * Push docker images to oci.element.io * prettier * add id-token permission as its required by tailscale login * pass secrets to reusable workflows
* zizmor auto fixes * add github action for security analysis with zizmor * add access token to iOS push action
* Push docker images to oci.element.io * prettier * add id-token permission as its required by tailscale login * pass secrets to reusable workflows * change secret path team -> voip * Update .github/workflows/build-and-publish-docker.yaml Co-authored-by: Gaël Goinvic <97093369+gaelgatelement@users.noreply.github.com> --------- Co-authored-by: Gaël Goinvic <97093369+gaelgatelement@users.noreply.github.com>
Implement new Pip Layout (with control buttons)
…et (element-hq#3796) * Push docker images to oci.element.io * prettier * add id-token permission as its required by tailscale login * pass secrets to reusable workflows * change secret path team -> voip * Update .github/workflows/build-and-publish-docker.yaml Co-authored-by: Gaël Goinvic <97093369+gaelgatelement@users.noreply.github.com> * typo --------- Co-authored-by: Gaël Goinvic <97093369+gaelgatelement@users.noreply.github.com>
(rollup needs updating to fix a security alert)
* zizmor auto fixes * add github action for security analysis with zizmor * add access token to iOS push action * fix zizmor findings * add exceptions for dangerous-triggers including comments for reasoning * improve comments * prettier
security alert
…n-invalid-config Reset overwrite url if it is invalid (does fail to reach sfu)
…security-alert Update vite, vitest and rollup
…imatch-security Bump tar, minimatch
This reverts commit 7da9bca.
…-js-yaml-security Update qs, js-yaml, glob for security patches
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
6 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.