maximus/simpl-liste
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases 18 Packages Wiki Activity Actions
pour application android simpl-liste
130 commits 22 branches 19 tags 3.8 MiB
TypeScript 97.3%
JavaScript 2%
Dockerfile 0.4%
CSS 0.3%
Find a file
le king fu 9ee5372404 fix(security): override @expo/cli ws to ^8.20.1 (GHSA-58qx-3vcg-4xpx) (#92) 
npm audit flagged ws 8.0.0-8.20.0 (moderate, uninitialized memory
disclosure) pulled in via expo > @expo/cli > ws@8.20.0. Scope the
override to @expo/cli so only the vulnerable 8.x instance is bumped
(resolved to 8.21.0); metro's ws@7.5.10 and react-native's ws@6.2.3
stay on their majors to avoid breaking the Metro dev server.

All ws here is dev/build tooling (Expo CLI, Metro, react-devtools),
absent from the shipped APK, so this was not exploitable in production
- but the override clears npm audit and stops the Defenseur re-flagging.

npm audit: 0 vulnerabilities. Root smoke green.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-05-30 15:05:10 -04:00
.claude docs(eas-build): document APK upload retry pattern for transient 502/504 2026-05-01 07:17:51 -04:00
.vscode Initial commit 2026-02-20 19:08:56 -05:00
app fix: replace broken swipe-to-refresh with toolbar refresh button (#61) 2026-04-09 09:37:26 -04:00
assets feat: add custom app icon and adjust medium widget to 2x4 2026-02-21 14:12:22 -05:00
src fix: render-optimiste + timing instrumentation for widget toggles (#71) 2026-04-19 16:17:41 -04:00
tests test(smoke): add non-regression smoke for uuid + package overrides 2026-05-02 11:49:13 -04:00
web Merge pull request 'chore(web): fix prefer-const and remove unused import' (#91) from chore/web-lint-cleanup into master 2026-05-30 18:52:34 +00:00
.gitignore Add missing .gitignore patterns (.env, .env.*) 2026-03-04 20:48:06 -05:00
app.json chore: bump version to 1.6.4 (versionCode 16) 2026-05-10 14:48:46 -04:00
babel.config.js feat: initial Simpl-Liste MVP 2026-02-20 19:28:42 -05:00
CLAUDE.md fix: consolidate widget AsyncStorage keys and debounce expand (#29) 2026-03-30 19:45:02 -04:00
drizzle.config.ts feat: initial Simpl-Liste MVP 2026-02-20 19:28:42 -05:00
eas.json feat: initial Simpl-Liste MVP 2026-02-20 19:28:42 -05:00
index.js feat: add Android widget for task overview (3 sizes) 2026-02-21 09:47:15 -05:00
masterplan.md docs: add CLAUDE.md and masterplan for project reference 2026-02-20 21:50:45 -05:00
metro.config.js fix: list navigation, crypto polyfill, SQL transformer, dark mode priorities 2026-02-20 20:15:49 -05:00
nativewind-env.d.ts feat: initial Simpl-Liste MVP 2026-02-20 19:28:42 -05:00
package-lock.json fix(security): override @expo/cli ws to ^8.20.1 (GHSA-58qx-3vcg-4xpx) (#92) 2026-05-30 15:05:10 -04:00
package.json fix(security): override @expo/cli ws to ^8.20.1 (GHSA-58qx-3vcg-4xpx) (#92) 2026-05-30 15:05:10 -04:00
SECURITY.md docs(security): seed STATE.md and SECURITY.md after vuln remediation 2026-04-24 07:30:41 -04:00
spec-simpl-liste-web.md docs: archive spec-simpl-liste-web (milestone 12/12 done) 2026-04-19 15:57:00 -04:00
sql-transformer.js fix: list navigation, crypto polyfill, SQL transformer, dark mode priorities 2026-02-20 20:15:49 -05:00
STATE.md state: sync after #70 2026-05-30 14:53:57 -04:00
tailwind.config.js feat: initial Simpl-Liste MVP 2026-02-20 19:28:42 -05:00
tsconfig.json fix: resolve Logto auth crash on web — remove illegal cookie set in layout 2026-04-08 13:12:59 -04:00