readest

vrr/readest

Fork 0

mirror of https://github.com/readest/readest.git synced 2026-05-18 23:40:46 +00:00

History

Huang Xin 6e7c9d1395 Some checks are pending CodeQL Advanced / Analyze (actions) (push) Waiting to run Details CodeQL Advanced / Analyze (javascript-typescript) (push) Waiting to run Details CodeQL Advanced / Analyze (rust) (push) Waiting to run Details PR checks / rust_lint (push) Waiting to run Details PR checks / build_web_app (push) Waiting to run Details PR checks / test_web_app (push) Waiting to run Details PR checks / build_tauri_app (push) Waiting to run Details Deploy to vercel on merge / build_and_deploy (push) Waiting to run Details feat(sync): bundled `settings` replica kind for cross-device prefs and credentials (#4094 ) * feat(sync): add bundled `settings` replica kind for cross-device prefs and credentials Adds a single-row `settings` replica that syncs a whitelist of `SystemSettings` fields across devices via per-field LWW (one entry per dot-namespaced path). Plaintext for theme / highlight colour / TTS configuration; encrypted (AES-GCM under the user's sync passphrase) for kosync / Readwise / Hardcover credentials. Highlights: - Push-side diff against an in-memory snapshot for plaintext paths and a localStorage SHA-256 hash for encrypted paths, so a refresh doesn't re-publish or re-prompt for the passphrase. - Pull-side cipher-fingerprint dedupe + per-row passphrase gate; decryption failures surface as toasts (wrong passphrase / orphan cipher) instead of silent drops. - Auto-recovery for orphaned ciphers: when a row references a saltId no longer in `replica_keys`, clear the local hash and re-encrypt under the current salt on the next save. - Single in-flight `/sync/replica-keys` fetch with a value cache to coalesce the boot-time burst of concurrent unlock callers. * fix(sync): guard settings dot-path helpers against prototype-polluting keys Reject `__proto__`, `constructor`, and `prototype` segments in the settings adapter's `readPath` / `writePath`. Every caller currently passes a constant from `SETTINGS_WHITELIST`, so the guard is purely defensive — but it silences the CodeQL prototype-pollution warning on PR #4094 and keeps the helpers safe if a future call site ever forwards an untrusted path. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>	2026-05-08 19:03:23 +02:00
..
api	feat(docker/podman): self-hosting with docker/podman compose (#3312 )	2026-02-18 14:28:10 +01:00
db	feat(sync): bundled `settings` replica kind for cross-device prefs and credentials (#4094 )	2026-05-08 19:03:23 +02:00

Huang Xin 6e7c9d1395

CodeQL Advanced / Analyze (actions) (push) Waiting to run

Details

CodeQL Advanced / Analyze (javascript-typescript) (push) Waiting to run

Details

CodeQL Advanced / Analyze (rust) (push) Waiting to run

Details

PR checks / rust_lint (push) Waiting to run

Details

PR checks / build_web_app (push) Waiting to run

Details

PR checks / test_web_app (push) Waiting to run

Details

PR checks / build_tauri_app (push) Waiting to run

Details

Deploy to vercel on merge / build_and_deploy (push) Waiting to run

Details

feat(sync): bundled settings replica kind for cross-device prefs and credentials (#4094 )

* feat(sync): add bundled `settings` replica kind for cross-device prefs and credentials

Adds a single-row `settings` replica that syncs a whitelist of
`SystemSettings` fields across devices via per-field LWW (one entry
per dot-namespaced path). Plaintext for theme / highlight colour /
TTS configuration; encrypted (AES-GCM under the user's sync
passphrase) for kosync / Readwise / Hardcover credentials.

Highlights:
- Push-side diff against an in-memory snapshot for plaintext paths
  and a localStorage SHA-256 hash for encrypted paths, so a refresh
  doesn't re-publish or re-prompt for the passphrase.
- Pull-side cipher-fingerprint dedupe + per-row passphrase gate;
  decryption failures surface as toasts (wrong passphrase / orphan
  cipher) instead of silent drops.
- Auto-recovery for orphaned ciphers: when a row references a
  saltId no longer in `replica_keys`, clear the local hash and
  re-encrypt under the current salt on the next save.
- Single in-flight `/sync/replica-keys` fetch with a value cache
  to coalesce the boot-time burst of concurrent unlock callers.

* fix(sync): guard settings dot-path helpers against prototype-polluting keys

Reject `__proto__`, `constructor`, and `prototype` segments in the
settings adapter's `readPath` / `writePath`. Every caller currently
passes a constant from `SETTINGS_WHITELIST`, so the guard is purely
defensive — but it silences the CodeQL prototype-pollution warning
on PR #4094 and keeps the helpers safe if a future call site ever
forwards an untrusted path.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

---------

Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-08 19:03:23 +02:00

api feat(docker/podman): self-hosting with docker/podman compose (#3312 ) 2026-02-18 14:28:10 +01:00

db feat(sync): bundled settings replica kind for cross-device prefs and credentials (#4094 ) 2026-05-08 19:03:23 +02:00