Archived
1
0
Commit Graph

2322 Commits

Author SHA1 Message Date
Joe Previte
f80d5c3764
refactor: rateLimiter.canTry logic to check >= 1 2021-04-19 13:14:19 -07:00
Joe Previte
7a5042176e
fix: update logic for removing token from limiter 2021-04-19 11:12:43 -07:00
Joe Previte
958f01262b
refactor: check errorMessage in login e2e test 2021-04-19 11:11:52 -07:00
Joe Previte
a3f18d6158
refactor: change limiter.Try() to .removeToken() 2021-04-19 10:57:50 -07:00
Joe Previte
7928dc2bff
feat: add test for limiter.canTry() 2021-04-19 10:41:00 -07:00
Joe Previte
d8e45057c7
refactor: update rateLimiter to check try
This changes adds a new method called `.canTry` to the rate limiter to check if
there are tokens remaining in the bucket.

It also adds suggestions from @oxy to make sure the user can brute force past
the rate limiter.
2021-04-19 10:40:59 -07:00
Joe Previte
a8719e1f79
refactor: change config to save all e2e videos 2021-04-19 10:40:59 -07:00
Joe Previte
1e6f4f2a14
feat(testing): add test for rate limiter 2021-04-19 10:40:59 -07:00
Joe Previte
08521077f0
refactor(login): move rate limiter after successful login
Before, we weren't checking if a login was successful before counting it
against the rate limiter.

With this change, we only count unsuccessful logins against the rate limiter.

We did this because this was a bug but also because it caused problems with our
e2e tests hitting the rate limit.
2021-04-19 10:40:59 -07:00
Joe Previte
83cfbf82cf
feat: increase timeout for playwright tests 2021-04-19 10:40:59 -07:00
Joe Previte
faaa0a9e60
feat(testing): add e2e tests for password 2021-04-19 10:40:59 -07:00
Joe Previte
ebbabc6e04
refactor(testing): combine loginPage with login 2021-04-19 10:40:58 -07:00
Joe Previte
58e17c5e50
feat(testing): add tests for RateLimiter 2021-04-19 10:40:58 -07:00
Joe Previte
4683d8a077
fix: update comment and export rateLimiter 2021-04-19 10:40:58 -07:00
Akash Satheesan
f21884cce5
chore(deps): deduplicate deps in yarn.lock (#3167) 2021-04-19 22:22:07 +05:30
dependabot[bot]
818e2207f8
chore(deps): bump ssri from 6.0.1 to 6.0.2 in /lib/vscode (#3165)
Bumps [ssri](https://github.com/npm/ssri) from 6.0.1 to 6.0.2.
- [Release notes](https://github.com/npm/ssri/releases)
- [Changelog](https://github.com/npm/ssri/blob/v6.0.2/CHANGELOG.md)
- [Commits](https://github.com/npm/ssri/compare/v6.0.1...v6.0.2)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-19 20:35:48 +05:30
dependabot[bot]
7f6b3da8d5
chore(deps): bump ws from 7.4.4 to 7.4.5 (#3163)
Bumps [ws](https://github.com/websockets/ws) from 7.4.4 to 7.4.5.
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](https://github.com/websockets/ws/compare/7.4.4...7.4.5)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-19 20:31:57 +05:30
Jonathan Yu
4ae9e43362
security: upgrade parcel-bundler from 1.12.4 to 1.12.5 (#3161)
Upgrade parcel-bundler due to a transitive dependency on is-svg.
This resolves CVE-2021-28092.
2021-04-19 07:20:45 -07:00
repo-ranger[bot]
e46941fa58
Merge pull request #3148 from cdr/jsjoeio/add-security-policy
docs: add security policy
2021-04-16 22:34:44 +00:00
Joe Previte
dc98399d2b
fixup: docs 2021-04-16 15:20:07 -07:00
Joe Previte
24c713e054
Create SECURITY.md 2021-04-16 14:57:40 -07:00
Akash Satheesan
cbc2e8bc92
chore(ci): remove images and update publish flow (#3147)
* chore(ci): remove unmaintained images
* chore(ci): update publish workflow
2021-04-17 01:17:24 +05:30
dependabot[bot]
006438db33
chore(deps-dev): bump @types/node from 12.20.8 to 12.20.10 (#3143)
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 12.20.8 to 12.20.10.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2021-04-16 21:38:49 +05:30
Akash Satheesan
e9985bd658
feat(vscode): update to version 1.55.2 2021-04-16 02:10:06 +05:30
Akash Satheesan
0b8a06863b
fix(update-vscode): add check/docs for git-subtree (#3129) 2021-04-16 01:07:28 +05:30
Akash Satheesan
578b2de131
chore(lib/vscode): clean up comments 2021-04-16 00:39:02 +05:30
repo-ranger[bot]
97fbbfaecc
Merge pull request #3133 from cdr/jsjoeio/migrate-to-playwright-test
refactor(testing): migrate to playwright-test from jest-playwright
2021-04-15 19:04:24 +00:00
Joe Previte
73e316eae3
Merge pull request #3138 from cdr/dependabot/npm_and_yarn/types/node-12.20.8
chore(deps-dev): bump @types/node from 12.20.7 to 12.20.8
2021-04-15 11:47:37 -07:00
Joe Previte
3b5416cbb2
Merge pull request #3137 from cdr/dependabot/npm_and_yarn/eslint-plugin-prettier-3.4.0
chore(deps-dev): bump eslint-plugin-prettier from 3.3.1 to 3.4.0
2021-04-15 11:47:28 -07:00
Joe Previte
e741ebf50b
Merge pull request #3136 from cdr/dependabot/npm_and_yarn/js-yaml-4.1.0
chore(deps): bump js-yaml from 4.0.0 to 4.1.0
2021-04-15 11:47:17 -07:00
Joe Previte
450fcd5ba7
refactor: pass all args to test-e2e script 2021-04-15 11:46:45 -07:00
Joe Previte
d6f0725399
fix: update path for e2e videos 2021-04-15 11:46:45 -07:00
Joe Previte
c9fa931a0b
fix: add retry 2 for failing e2e tests 2021-04-15 11:46:44 -07:00
Joe Previte
92b7c1e9a8
refactor: test-e2e.sh script 2021-04-15 11:46:44 -07:00
Joe Previte
6c3bb101cd
chore(deps): add resolution for newest playwright 2021-04-15 11:46:44 -07:00
Joe Previte
7ea6d22b3e
refactor: add login to config.js for e2e tests 2021-04-15 11:46:44 -07:00
Joe Previte
52586706c4
refactor: use playwright-test syntax for e2e tests 2021-04-15 11:46:43 -07:00
Joe Previte
08cd2d8191
refactor: add new e2e config 2021-04-15 11:46:43 -07:00
Joe Previte
0a090bf12b
chore(deps): add @playwright/test 2021-04-15 11:46:43 -07:00
Akash Satheesan
bdf555a06e
fix(lib/vscode): refactor productService 2021-04-16 00:14:16 +05:30
Akash Satheesan
8ffb87dbc9
fix(lib/vscode): restore localizatizons support 2021-04-16 00:06:38 +05:30
Joe Previte
05a3883a6c
Merge pull request #3135 from cdr/dependabot/npm_and_yarn/prettier-plugin-sh-0.6.1
chore(deps-dev): bump prettier-plugin-sh from 0.6.0 to 0.6.1
2021-04-15 10:56:18 -07:00
dependabot[bot]
8efd093a7e
chore(deps-dev): bump @types/node from 12.20.7 to 12.20.8
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node) from 12.20.7 to 12.20.8.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases)
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node)

Signed-off-by: dependabot[bot] <support@github.com>
2021-04-15 11:04:11 +00:00
dependabot[bot]
4941dcd462
chore(deps-dev): bump eslint-plugin-prettier from 3.3.1 to 3.4.0
Bumps [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier) from 3.3.1 to 3.4.0.
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases)
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/master/CHANGELOG.md)
- [Commits](https://github.com/prettier/eslint-plugin-prettier/commits)

Signed-off-by: dependabot[bot] <support@github.com>
2021-04-15 11:03:56 +00:00
dependabot[bot]
037e87d986
chore(deps): bump js-yaml from 4.0.0 to 4.1.0
Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.0.0 to 4.1.0.
- [Release notes](https://github.com/nodeca/js-yaml/releases)
- [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md)
- [Commits](https://github.com/nodeca/js-yaml/compare/4.0.0...4.1.0)

Signed-off-by: dependabot[bot] <support@github.com>
2021-04-15 11:03:49 +00:00
dependabot[bot]
9b8e7d0735
chore(deps-dev): bump prettier-plugin-sh from 0.6.0 to 0.6.1
Bumps [prettier-plugin-sh](https://github.com/rx-ts/prettier) from 0.6.0 to 0.6.1.
- [Release notes](https://github.com/rx-ts/prettier/releases)
- [Changelog](https://github.com/rx-ts/prettier/blob/master/CHANGELOG.md)
- [Commits](https://github.com/rx-ts/prettier/compare/prettier-plugin-sh@0.6.0...prettier-plugin-sh@0.6.1)

Signed-off-by: dependabot[bot] <support@github.com>
2021-04-15 11:03:31 +00:00
repo-ranger[bot]
a05c4e4ae2
Merge pull request #3134 from cdr/jsjoeio/remove-dev-dockerfile
refactor: remove debian10/Dockerfile and update CONTRIBUTING
2021-04-14 23:59:38 +00:00
Joe Previte
ec86aa7ab1
docs: update global requirements for CONTRIBUTING 2021-04-14 16:19:09 -07:00
Joe Previte
638b2d5dd5
refactor: remove debian10 and references 2021-04-14 16:18:29 -07:00
Joe Previte
ddae4056e4
Merge pull request #3130 from cdr/dependabot/npm_and_yarn/eslint-config-prettier-8.2.0
chore(deps-dev): bump eslint-config-prettier from 8.1.0 to 8.2.0
2021-04-14 11:20:26 -07:00